Thanks in advance for your answers!
I have thousands of JPGs to analyse. However I'm only interested in files that have inside digitalized, (scanned), documents!
Is there an way to, by analyzing jpg metadata, do it, suing for example a Encase search?
Thanks!
Do you know which scanner was used? If so, it may have embedded exif data into the .jpg image upon which you can search.
Would be interested in learning about any software which can distinguish between scanned text documents and scanned picture documents.
One of my regular tasks is to carry out spot checks on company-owned computers for the presence of 3rd party intellectual property.
My experience so far has been that PDF and TIF tend to be the file types of choice, JPG and JPEG tend to throw up other types of questionnable material which usually takes me down the Internet Explorer History route
Getting back on topic, I usually filter the 'usual suspect' filetypes one at a time and preview them in thumbnail view in Windows Explorer. Not high tech, infallible, or quick. This is MUCH easier now that FTK Imager allows you to Mount an Image, I used to Export all likely folders before filtering.
In my opinion FTK will be very useful, you can OCR files and next search text in that files as a normal text.
This functionality is in AccessData FTK from version 3.1
info from news
"..
now provides Optical Character Recognition (OCR) out of the box. This means that forensic examiners are now able to index and search the text found in graphics files, such as PDFs and TIFFs, greatly enhancing their ability to zero in on critical evidence. Traditionally, a forensic examiner would have to use a separate OCR tool to pull text out of graphics files found on seized hard drives, then dump the text files that were generated by the OCR product back into the computer forensics tool, in order to be able to index the content and search it.
"
Thanks in advance for your answers!
I have thousands of JPGs to analyse. However I'm only interested in files that have inside digitalized, (scanned), documents!
Is there an way to, by analyzing jpg metadata, do it, suing for example a Encase search?
Thanks!
biniek - if jbscarva has 'thousands' of JPEGs and doesn't know which ones are mainly text and which ones are mainly pictorial, how does FTK cope when it tries to OCR the pictorial ones?
miket065 - this might work. I've used Metadataminer Catalogue in the past where we knew that an employee had been using a particualr scanner which left data in the 'Author' field in PDF files. Doesn't work for JPEGs though (
Cults14 - the FTK evidence procesing will try to convert all pictures to text and the text will be indexed and you can search the information wich was placed in pictures.
(It will be very slowl operation comparing to normal procesing but in this case it will be helpful)
The results sometimes will have more text, and sometimes You have only few words from graphics, but still it will be in text.
please, just look at the demo OCR in action in FTK -
http//