UFED Series Expanding Mobile Forensic Solutions

UFED Touch UFED TK UFED 4PC

UFED CHINEX UFED Applications

UFED Series

Device Support

UFED Series supports the widest range of mobile devices & platforms

Ultimate License

Ultimate License: Highlights Physical, logical, file system & password extractions with advanced decoding, analysis & reporting capabilities

Access to data inaccessible by logical methods

Full access to device’s memory chip (NAND & NOR)

Proprietary boot loaders enables forensically sound physical extraction

Extract intact or deleted data:

Passwords, call history, SMS, contacts, email, calendar, media files, geo tags, app’s, internal phone data – IMSI

history, past SIM card usage, user lock code history etc.

Supports widest range of devices & platforms including phones manufactured with Chinese chipsets

Recovery of deleted data such as GPS fixes

Frequent device support updates

iOS devices

BlackBerry

Android

Nokia BB5

Tablets

Portable GPS devices

Phones with Chinese chipsets

iOS real-time decryption &

passcode recovery

BlackBerry physical decoding

Android physical decoding

New applications

Plug-in & chain management

TomTom trip-log decryption

Watch List

Timeline

Advanced filters

Advanced views

Analysis of multiple extractions

Formats: PDF, HTML, XML & Excel.

Customized reports

Look & feel: header, footer, case related

information & content

Ultimate License

Logical License

Supports wide range of devices & platforms

Frequent software updates for new device support

Rich data types:

Passwords, phonebook, SMS, photos, videos, call logs, audio files, ESN, IMEI, ICCID, IMSI etc.

SIM identification cloning :

Bypasses phones with PIN-locked SIMs, missing SIM cards

Neutralizes phone from network activity during analysis

MD5 & SHA256 signature for data verification

Multilingual user interface

UFED Logical Analyzer – analysis & reporting tool

Logical License: Highlights

UFED Touch

UFED Touch: At a Glance Standalone UFED platform – two versions: Logical & Ultimate

High performance solution for high performance devices

Fast data extraction

Unrivalled device support

Proprietary hardware, software & boot loaders

Touch screen & intuitive GUI

Portable – integrated battery

All-inclusive field-ready operational kit – smaller, lighter connector tips,

external hard drive & more

UFED 4PC

UFED 4PC: At a Glance All-in-one mobile forensic software solution – available with Ultimate/Logical license

Streamlined work flow on a single platform

UFED 4PC software, UFED Physical/Logical Analyzer, UFED Phone Detective,

UFED Reader

Windows-compatible software easily adaptable to a variety of user workflows &

environments

UFED 4PC all-inclusive kit comes in a compact & lightweight case

NEW UFED Device Adapter

Device extraction via USB & RJ 45

SIM cloning & extraction

Extraction via Bluetooth module

Dual USB power support

UFED 4PC: At a Glance

Custom boot loaders ensuring forensically sound extractions

Unrivaled device support – BlackBerry, iOS, Android, Nokia, Symbian, Microsoft Mobile, Palm, phones

manufactured with Chinese chipsets & more

Supported data types include – passwords, applications, call history, SMS,

contacts, calendar, email, chat, media files, geo tags, location information GPS fixes etc.

Touch screen enabled & user friendly UI

Analysis

Reporting

Mobile Device Identification

Extraction

Decoding

UFED 4PC: All-in-one Software Suite

UFED TK

UFED TK: At a Glance

All-in-one mobile forensic solution – streamlined work flow on a single platform:

UFED 4PC software, UFED Physical/Logical Analyzer, UFED Phone Detective,

UFED Reader

Panasonic Toughbook® / Toughpad® bundle – rugged reliability; fit for field & lab

Diverse offering: Toughbook® CF19, Toughbook® CF53 & Toughpad® G1

Outstanding battery life

Same trusted UFED technology providing users with all data extraction,

decoding, analysis & reporting capabilities

Field proven hardware & software

UFED TK: At a Glance

Military & energy standard compliances – certified for a range of extreme

conditions - drops, shocks, vibration, humidity, altitude, dust, temperature

extremes & thermal shock

UFED TK all-inclusive kit comes in a purpose-built ruggedized case

NEW UFED Device Adapter

Device extraction via USB & RJ 45

SIM cloning & extraction

Extraction via Bluetooth module

Dual USB power support

Custom boot loaders ensuring forensically sound extractions

Touch screen enabled & user-friendly UI

UFED TK: All-in-one Rugged Tactical Kit3 ruggedized options:

Toughpad® G1

Toughbook® CF-19

Toughbook® CF-53

Analysis

Reporting

Mobile Device Identification

Extraction

Decoding

UFED 4PC vs. UFED TK

UFED 4PC vs. UFED TK

UFED 4PC UFED TK

License Logical/Ultimate Logical/Ultimate

Edition Standard Only Ruggedized Only

Software Components • UFED 4PC• UFED Logical/Physical Analyzer • UFED Phone Detective• UFED Reader

• UFED 4PC• UFED Logical/Physical Analyzer • UFED Phone Detective• UFED Reader

New Hardware Components • UFED Device Adapter • 3 Axillary cables

• UFED Device Adapter • 3 Axillary cables

Tips & Cables Kit Similar Content toUFED Touch

Similar Content toUFED Touch

Carrying Case New Bag with embedded cable folder • Pelican case• Mission case• Cable folder• Accessories pouch

UFED CHINEX

An Advanced Solution for Phones Manufactured with Chinese Chipsets

UFED CHINEX

UFED CHINEX

Extracts evidentiary data from phones manufactured with Chinese

chipsets – MTK & Spreadtrum

Automatic pin-out recognition

Standalone, field-ready solution

Proprietary boot loaders – forensic integrity

Advanced decoding within UFED Physical Analyzer

Call logs, contacts, SMS, MMS, video, images etc.

Deleted data extraction capability

User password extraction

UFED Applications

UFED Applications

UFED Link Analysis

UFED Physical Analyzer

UFED Logical

Analyzer

UFED Phone

Detective

UFED Reader

UFED Link AnalysisPromotes Productive & Efficient Investigations

UFED Link Analysis

Transform isolated mobile data into links between devices owners and entities

Understand relationships between entities

Discover how strongly entities are connected

Quickly identify key individuals/groups

Visualize communication directions

Pinpoint both regular & irregular activity patterns

Drill down to specific events

Analysis Flow

Do they know each other or

have they contacted mutual

parties?

What are the important

connections?

How do they communicate?Is there investigation related

data?

Generate report with

investigation results

?Caught 3 suspects

UFED Physical AnalyzerThe Most Powerful Decoding, Analysis & Reporting Tool in the Industry

UFED Physical AnalyzerThe most advanced analysis, decoding & reporting application in the

industry

Rich set of data – Includes call logs, contacts SMS, MMS, chats etc.

Hash verification – Ensures the extraction decoded is the same extraction received

from UFED device

Advanced search – Based on several parameters - open text or specific parameters

Watch list – Highlight information based on predefined list of values

Timeline – Monitors all events performed via the device in a single chronological view

Image carving – Recover deleted image files & fragments when only parts are

available

All projects field search – Quick search within decoded data

Conversation view – View communications between sources

UFED Physical Analyzer

Entities bookmarks – Quick reference pointer set to an analyzed data

item & data file item

Report generator – Generate & customize reports in different formats

Hex viewer – Hexadecimal view of extracted data, enables advanced

search based on multiple parameters, regular expressions & more

Parsed content highlighting in the Hex – Highlights exact position in

extraction for each decoded content entry, enabling full tractability

between analyzed data & Hex

Hex bookmarks – Define & save specific locations in Hex data

SQLite databases viewer – Viewing, searching & exporting tables &

content (including deleted data) from SQLite database files

Python scripting – Using Python shell, enhances capabilities for content

decoding

UFED Physical Analyzer

Plugin & chain management – Run Python scripts via plugins, edit &

create new decoding chains

Malware Detection – Perform on-demand searches for viruses, spyware,

Trojans & other malicious payloads in files

Project Analytics – View statistics on communications & identifying

relationship strengths

Timeline Graph – Visualize events over time, view distances between

events & see the number of events within a defined timespan

Exporting Locations – Export selected latitudes, longitudes, &

timestamps to KML reports

Exporting Emails – Export selected emails to EML format

Embedded Text Viewer – View text files including file information,

content & Hex

UFED Physical Analyzer

UFED Physical Analyzer: Unique Capabilities

Advanced decoding of BlackBerry Messenger (BBM), emails, locations, applications & more

Advanced decoding of iOS, BlackBerry & Android applications

Real-time decryption of protected content from selected BlackBerry devices running OS 4+ using a given password

Bypassing simple & complex passcode on selected devices running iOS 3.0 or higher including iOS 6

Portable GPS devices extraction & decoding

TomTom trip-log files extraction, decryption & decoding

Symbian devices content decoding (SMS, contacts & call log)

Vast support for Samsung feature phones (GSM+CDMA) (Extraction via UFED Touch)

Sony Ericsson A2 content decoding

Advanced Applications Decoding

Supporting 75%of the GPS market

Portable GPS Device Support

UFED Logical AnalyzerExtracted Data Reporting Tool

UFED Logical Analyzer

Rich set of data

Handles ever growing rich set of data types

Watch list

Highlight information based on predefined list of values

Timeline

Monitor all events in single chronological view

Conversation view

View communications between sources

Report generator

Generate & customize reports in different formats

Advanced search

Based on several parameters; open text or specific parameters

All projects field search

Quick search within data available in few projects

Entities bookmarks

Quick reference pointer can be set to analyzed data item & data file item

Multilingual user interface

UFED Logical Analyzer

UFED Phone DetectiveIdentifies Mobile Phone Vendor & Model

UFED Phone Detective

Identifies phone quickly

Answer up to 8 questions related to visual attributes

/ by TAC

Phone is identified & displayed according to

answers

Shows phone data supported for

extraction

Database of more than 5,000 phones

UFED Phone Detective

UFED ReaderView & Share Extracted Data Without Limitation

UFED Reader

Available to any investigator

Ready to use – quick installation, no license required

Rich functionality:

Report customization & generator

Advanced search capabilities

Entity bookmark management

Save & print reports

Same look & feel as the UFED Physical Analyzer

Reads reports generated by UFED Logical Analyzer & UFED Physical Analyzer

Thank Youwww.cellebrite.com