Oxygen Forensic Detective 11.5 Offers Facial Recognition

Oxygen Forensics now offers the most innovative and powerful ability to allow investigators to categorize human faces using built-in facial recognition technology available at no additional charge. The unique features of the built-in Facial recognition component include:

• Industry leading accuracy (as measured by the NIST)
• Detailed face analytics (gender, race, emotion, etc)
• Immediate categorization and matching (5 faces/second)
• Working with huge volumes of dataUsing the built-in Facial recognition, investigators will undoubtedly spend less time looking through thousands of photos or videos found in mobile, cloud or drone extractions. Possible use cases include: identification of known individuals from captured images, assistance in locating endangered children, human trafficking, or other crimes involving images/videos, analysis of videos and images captured by drones used to identify possible known terrorists, etc. The use cases are endless with this technology.

OTHER FEATURES

MTK ANDROID ENCRYPTION BYPASS

Device encryption is one of the greatest challenges for investigators today. Understanding this, we continue working on decryption algorithms to allow investigators to decrypt Android physical dumps. The new Oxygen Forensic® Detective 11.5 introduces a universal method that helps bypass screen locks and extract a decrypted physical dump of Android devices based on Mediatek chipset.


Get The Latest DFIR News

Join the Forensic Focus newsletter for the best DFIR articles in your inbox every month.


Unsubscribe any time. We respect your privacy - read our privacy policy.

MTK Android devices may have software or even hardware encryption. The latest MTK device models are generally encrypted using hardware bound keys. If these keys are not obtained, device physical images cannot be decrypted. However, Oxygen Forensic® Detective 11.5 now allows investigators to bypass both screen lock and disk encryption (no matter if it is software or hardware) to extract a complete decrypted physical dump.

Using this method is easy. Investigators simply choose “MTK Android dump”/ “Bootloader modification” in the Oxygen Forensic® Extractor and then follow the instructions to upload a boot image patch onto the device. Once the extraction is finished the data will be processed, decoded and analyzed.

ICLOUD BACKUPS EXTRACTION

Starting at iOS 11.2 Apple changed the authorization algorithms making it nearly impossible to extract iCloud backups via a username/password or token if 2FA was enabled. The new Oxygen Forensic® Detective 11.5 offers investigators the powerful ability to acquire iCloud backups made from the newest Apple iOS devices. Extraction is available via login and password and complete instructions on the process are given in Oxygen Forensic® Cloud Extractor.

ENHANCED APPLE IOS SUPPORT

We’ve made several great improvements to Apple iOS device support. Now investigators can connect several Apple iOS devices simultaneously, saving valuable time. Staying ahead of releases we have added preliminary support for Apple iOS 13. We also added improvements to our automatic Apple iOS device connections. And finally, we’ve included the ability to parse Screen Time Information from jailbroken Apple iOS devices and GrayKey images in Oxygen Forensic® JetEngine.

LINE MESSENGER EXTRACTION

We have offered Line direct data extraction from Apple iOS and Android devices for some time. However, Oxygen Forensic® Detective 11.5 now enables investigators to additionally access Line data from the cloud. We now offer two options –extract Line account information and contacts from the Line cloud via password, token or QR code and also to acquire calls and messages from Line Google backup via Google master token.

EXPORT TO RELATIVITY PLUGIN

Oxygen Forensic® Detective 11.5 now allows investigators to export contacts, calls, messages and files to the Relativity format. The export to Relativity button is located within the main window of Oxygen Forensic® JetEngine under the Device picture. Relativity Software is cloud-based eDiscovery software that offers case assessment, fact management, review, production, analytics within a suite. Looking to add this to your Oxygen Forensic Detective license please call or email [email protected]

Leave a Comment

Latest Videos

In this episode of the Forensic Focus podcast, Si and Desi explore how artificial intelligence is being leveraged to uncover crucial evidence in investigations involving child sexual abuse material (CSAM) and examine the importance of exercising caution when implementing these tools. 

They also discuss a recent murder case in which cyber experts played a vital role in securing a conviction, and explore the unique challenges associated with using digital evidence as an alibi.

Show Notes:

A Practitioner Survey Exploring the Value of Forensic Tools, AI, Filtering, & Safer Presentation for Investigating Child Sexual Abuse Material (CSAM) - https://dfrws.org/wp-content/uploads/2019/06/2019_USA_paper-a_practitioner_survey_exploring_the_value_of_forensic_tools_ai_filtering_safer_presentation_for_investigating_child_sexual_abuse_material_csam.pdf

Man charged with NI murder ‘faked live stream to provide alibi’ (The Guardian) - https://www.theguardian.com/uk-news/2023/feb/02/man-charged-with-ni-faked-live-stream-to-provide-alibi

A YouTuber accused of murder faked a 6-hour livestream to produce an alibi (Sportskeeda) - https://www.sportskeeda.com/esports/news-a-youtuber-accused-murder-faked-6-hour-livestream-produce-alibi

European Interdisciplinary Cybersecurity Conference (EICC) 2023 - https://www.forensicfocus.com/event/european-interdisciplinary-cybersecurity-conference-eicc-2023/#more-493234

YouTuber reportedly faked GTA livestream to have an alibi while he committed murder (Dexerto) - https://www.dexerto.com/entertainment/youtuber-reportedly-faked-gta-livestream-to-have-an-alibi-while-he-committed-murder-2052974/

Forensic Europe Expo - https://www.forensicfocus.com/event/forensic-europe-expo/#more-493225

In this episode of the Forensic Focus podcast, Si and Desi explore how artificial intelligence is being leveraged to uncover crucial evidence in investigations involving child sexual abuse material (CSAM) and examine the importance of exercising caution when implementing these tools.

They also discuss a recent murder case in which cyber experts played a vital role in securing a conviction, and explore the unique challenges associated with using digital evidence as an alibi.

Show Notes:

A Practitioner Survey Exploring the Value of Forensic Tools, AI, Filtering, & Safer Presentation for Investigating Child Sexual Abuse Material (CSAM) - https://dfrws.org/wp-content/uploads/2019/06/2019_USA_paper-a_practitioner_survey_exploring_the_value_of_forensic_tools_ai_filtering_safer_presentation_for_investigating_child_sexual_abuse_material_csam.pdf

Man charged with NI murder ‘faked live stream to provide alibi’ (The Guardian) - https://www.theguardian.com/uk-news/2023/feb/02/man-charged-with-ni-faked-live-stream-to-provide-alibi

A YouTuber accused of murder faked a 6-hour livestream to produce an alibi (Sportskeeda) - https://www.sportskeeda.com/esports/news-a-youtuber-accused-murder-faked-6-hour-livestream-produce-alibi

European Interdisciplinary Cybersecurity Conference (EICC) 2023 - https://www.forensicfocus.com/event/european-interdisciplinary-cybersecurity-conference-eicc-2023/#more-493234

YouTuber reportedly faked GTA livestream to have an alibi while he committed murder (Dexerto) - https://www.dexerto.com/entertainment/youtuber-reportedly-faked-gta-livestream-to-have-an-alibi-while-he-committed-murder-2052974/

Forensic Europe Expo - https://www.forensicfocus.com/event/forensic-europe-expo/#more-493225

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_7QiFTiuY7Vw

AI In CSAM Investigations And The Role Of Digital Evidence In Criminal Cases

Forensic Focus 22nd March 2023 12:44 pm

Throughout the past few years, the way employees communicate with each other has changed forever.<br /><br />69% of employees note that the number of business applications they use at work has increased during the pandemic.<br /><br />Desk phones, LAN lines and even VOIP have become technologies of the past workplace environment as employees turn to cloud applications on their computers and phones to collaborate with each other in today’s workplace environment.<br /><br />Whether it’s conversations in Teams, file uploads in Slack chats, or confidential documents stored in Office 365, the amount of data stored and where it is stored, is growing quicker than IT and systems administrators can keep up with.<br /><br />Corporate investigators and eDiscovery professionals need to seamlessly collect relevant data from cloud sources and accelerate the time to investigative and discovery review.<br /><br />With the latest in Cellebrite’s remote collection suite of capabilities, investigators and legal professionals can benefit from secure collection with targeted capabilities for the most used workplace applications.<br /><br />Join Monica Harris, Product Business Manager, as she showcases how investigators can:<br /><br />- Manage multiple cloud collections through a web interface<br />- Cull data prior to collection to save time and money by gaining these valuable insights of the data available<br />- Collect data from the fastest growing cloud collaboration applications like Office365, Google Workspace, Slack and Box<br />- Login to a single source for workplace app collection without logging into every app and pulling data from multiple sources for every employee<br />- Utilize a single unified collection workflow for computer, mobile and workplace cloud applications without the need to purchase multiple tools for different types of collections – a solution unique to Cellebrite’s enterprise solution capabilities

Throughout the past few years, the way employees communicate with each other has changed forever.

69% of employees note that the number of business applications they use at work has increased during the pandemic.

Desk phones, LAN lines and even VOIP have become technologies of the past workplace environment as employees turn to cloud applications on their computers and phones to collaborate with each other in today’s workplace environment.

Whether it’s conversations in Teams, file uploads in Slack chats, or confidential documents stored in Office 365, the amount of data stored and where it is stored, is growing quicker than IT and systems administrators can keep up with.

Corporate investigators and eDiscovery professionals need to seamlessly collect relevant data from cloud sources and accelerate the time to investigative and discovery review.

With the latest in Cellebrite’s remote collection suite of capabilities, investigators and legal professionals can benefit from secure collection with targeted capabilities for the most used workplace applications.

Join Monica Harris, Product Business Manager, as she showcases how investigators can:

- Manage multiple cloud collections through a web interface
- Cull data prior to collection to save time and money by gaining these valuable insights of the data available
- Collect data from the fastest growing cloud collaboration applications like Office365, Google Workspace, Slack and Box
- Login to a single source for workplace app collection without logging into every app and pulling data from multiple sources for every employee
- Utilize a single unified collection workflow for computer, mobile and workplace cloud applications without the need to purchase multiple tools for different types of collections – a solution unique to Cellebrite’s enterprise solution capabilities

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_g6nTjfEMnsA

Tips And Tricks Data Collection For Cloud Workplace Applications

Forensic Focus 20th March 2023 12:00 pm

This error message is only visible to WordPress admins

Important: No API Key Entered.

Many features are not available without adding an API Key. Please go to the YouTube Feed settings page to add an API key after following these instructions.

Latest Articles

Share to...