Difference between pages "Paraben SIM Card Seizure" and "Xplico"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
 
(New page: {{Infobox_Software | name = Xplico | maintainer = Gianluca Costa & Andrea de Franceschi | os = {{Linux}} | genre = {{Analysis}} | license = {{GPL}} | website = [http://www....)
 
Line 1: Line 1:
{{wikify}}
+
{{Infobox_Software |
 +
  name = Xplico |
 +
  maintainer = [[Gianluca Costa & Andrea de Franceschi]] |
 +
  os = {{Linux}} |
 +
  genre = {{Analysis}} |
 +
  license = {{GPL}} |
 +
  website = [http://www.xplico.org www.xplico.org] |
 +
}}
  
Paraben has acquired SIMCon and has integrated it into SIM Card Seizure and Device Seizure. Recover deleted sms/text messages and perform comprehensive analysis of SIM card data. SIM Card Seizure takes the SIM Card acquisition and analysis components from Paraben's Device Seizure and puts it into a specialized SIM Card forensic acquisition and analysis tool. SIM Card Seizure includes the software as well as a Forensic SIM Card Reader. If you already have Device Seizure & the Device Seizure Toolbox, there's no need for you to get SIM Card Seizure as well because they contain the components to perform a forensic SIM Card acquisition and analysis. This tool is for the investigator who only wants to acquire SIM Cards and does not want to perform forensic exams of all cell phone data.
+
The '''Xplcio''' is a Network Forensic Analysis Tool (NFAT). The main scope of Xplico is extract from a network capture (pcap file or real-time acquisition) all application data content. For example, Xplico from a pcap file is able to extract all emails carried by the POP and SMTP protocols and all content carried by HTTP protocols.
 
+
SIM Card Seizure has unicode support to read multiple languages such as Arabic, Chinese, & Russian: Features:
+
 
+
    * Forensic SIM Card Reader Included
+
    * Calculates MD5 & SHA1 Hash Values
+
    * Search Function
+
    * Recovers Deleted SMS Data*
+
    * Bookmarking Options
+
    * Report Creation Wizard
+
    * Save Workspaces for Further Review
+
    * Time Stamps Calculate GMT Offset
+
    * Access to Paraben's Forum
+
    * Access to Paraben's 24 Hour Support
+
 
+
Data Acquired from SIM Cards
+
 
+
    * Phase Phase ID
+
    * SST SIM Service table
+
    * ICCID Serial Number
+
    * LP Preferred languages variable
+
    * SPN Service Provider name
+
    * MSISDN Subscriber phone number
+
    * AND Short Dial Number
+
    * FDN Fixed Numbers
+
    * LND Last Dialed numbers
+
    * EXT1 Dialing Extension
+
    * EXT2 Dialing Extension
+
    * GID1 Groups
+
    * GID2 Groups
+
    * SMS Text Messages
+
    * SMSP Text Message parameters
+
    * SMSS Text message status
+
    * CBMI Preferred network messages
+
    * PUCT Charges per unit
+
    * ACM Charge counter
+
    * ACMmax Charge limit
+
    * HPLMNSP HPLMN search period
+
    * PLMNsel PLMN selector
+
    * FPLMN Forbidden PLMNs
+
    * CCP Capability configuration parameter
+
    * ACC Access control class
+
    * IMSI IMSI
+
    * LOCI Location information
+
    * BCCH Broadcast control channels
+
    * Kc Ciphering key
+
 
+
SIM Card Seizure also acquires the whole catalog system with data in a tree-view presentation. Additionally, it can recover some deleted SMS data by analysis of unallocated space.
+

Revision as of 10:37, 3 March 2008

Xplico
Maintainer: Gianluca Costa & Andrea de Franceschi
OS: Linux
Genre: Analysis
License: GPL
Website: www.xplico.org

The Xplcio is a Network Forensic Analysis Tool (NFAT). The main scope of Xplico is extract from a network capture (pcap file or real-time acquisition) all application data content. For example, Xplico from a pcap file is able to extract all emails carried by the POP and SMTP protocols and all content carried by HTTP protocols.