New Email Tool - feedback requested
[Posted with permission]
I have just released a new email investigation tool. The tool is an indexing engine with a visual results display.
The current version is V1. We plan to release V1.1 in a month or so.
I would appreciate feedback on what other features people think would be valuable.
Here are the features we plan to add to the next version.
Documents Preview, Mbox indexing , hit highlighting, csv export and conversation thread tracing. All these features are in testing now and will be available in Intella V1.1 released on the 30th of January 2009.
Here is some videos of the tool in action (not a Spielberg production).
The tool can be downloaded from here.
Please send me your suggested features or feedback, good or bad, via the contact page here.
Lastly, for those who use F-Response – we were pleased to discover that when using Intella with F-response we are able to index a PST while open and in use on a remote system. Give it a try !
Using F-Response with Intella opens up lots of possibilities.
Thanks in Advance
Do you anticipate delving into Microsoft Exchange mail store or Lotus Notes mail store support?
Hi - We do intend doing Exchange, most likely in V2 . Current I use either Kroll or Kernel exchange to extract PST's you want to look at.
Intella can do NSF file but it can be made to login to a Notes server and index all mail.
The ability to use Intella in conjunction with F-Response to look at a live Exchange database would be the functionality I would be looking to deploy.
Thanks for posting this information.
That may not be far off…
For right now, you should be able to use ExMerge to get the PST file from the EDB file
Thanks for the link. I previously saw the video using EnCase but had not seen NEMX used. Currently trying to work out some other NEMX issues right now so I may have to test that out when I get squared away.
How did I miss this? The GUI looks like it will be as useful as it is visually appealing. Definitely not the norm!
This is an awesome tool -) as is F-Response!
Thanks for the links.
If you are doing anything with email check out Nuix. Apart from being able to index mbox, pst/ost, nsf, groupwise, dbx/mbx, box, sml, Web mail cache it can do EDB/STM files. In fact it can acutally index an EDB or any email format while it is in use, using F-Response (F-Response Indexing a Live Microsoft Exchange Email Server EDB file). Also you will find Nuix has reverse engineered all of the mail formats it processes (except offline GroupWise stores), which makes it ideal for the job (no dll wrapping here, *cough* NEMX) because if you actually need something fixed when it come to the processing they know the complete structure of the mail format(s) in question, not just the API calls to the wrapped DLL….
Thanks for the feedback many of you supplied. Short note to let you all know that 1.1 has been released.
It encompasses many of the features that were discussed in the feedback given.
The new version is on the www.vound-software.com site.
I've just sent in my download request and am looking forward to trying it out.
For anyone else wondering, the price tag is $3,200. Ouch!
Wouldn't it be nice if we got some discount for finding and debugging these things… for free?
I did try it out, found it quite useful, found some issues, and found Peter to be quite helpful…. I didn't find $3,200 in my budget and rather doubt I will any time soon, alas.
This post is now 12 years old. Wow, I feel old and somewhat surprised I am not in a straightjacket after all this time:-).
|New Email Tool - feedback requested||80 relevance||12 years ago||PeterMer||Forensic Software|
Back again in 12 years?