Difference between revisions of "Paraben"

From ForensicsWiki
Jump to: navigation, search
 
Line 1: Line 1:
 +
=Paraben=
 +
 +
This company offers a wide variety of tools for analyzing disk drives and portable devices like cell phones and PDAs.
 +
 +
 +
[http://www.paraben-forensics.com/ Paraben website]
  
  
Line 4: Line 10:
  
 
==File Systems Understood==
 
==File Systems Understood==
 +
 +
* Major Windows formats
 +
* RAW format
 +
 +
===Email Examiner===
 +
 +
Their tool for searching email ("Email Examiner") can pull apart these files:
 +
 +
* Outlook (PST)
 +
* Outlook Express (DBX)
 +
* AOL 6,7,8,9 (PFC)
 +
* MBox
 +
* Eudora
 +
* Mozilla Mail
 +
* Fox Mail
 +
* Juno
 +
* Calypso
 +
* MSN Mail
 +
* USENET newsgroups
 +
  
 
==File Search Facilities==
 
==File Search Facilities==
 +
 +
  
 
==Historical Reconstruction==
 
==Historical Reconstruction==
Line 13: Line 41:
 
==Searching Abilities==
 
==Searching Abilities==
  
Can it search? Does it build an index? Can it focus on file types or particular kinds of metadata?
+
* With "Text Searcher". Offers complex queries and searching of slack space.
 +
* Comes with an index building wizard.
  
 
==Hash Databases==
 
==Hash Databases==
Line 22: Line 51:
 
==Evidence Collection Features==
 
==Evidence Collection Features==
  
Can it sign files? Does it keep an audit log?
+
* Offers a feature called "Case Agent Companion v1.0" for tracking what the case agent does.
  
 
=History=
 
=History=
 
+
Originally written in (YEAR), it has now developed into a Forensic Edition and an Enterprise Edition.
+
  
 
==License Notes==
 
==License Notes==
  
Is it commercial or open source? Are there other licensing options?
+
Commercial.
  
 
= External Links =
 
= External Links =
  
EnCase Homepage - http://www.guidancesoftware.com/lawenforcement/ef_index.asp
+
[http://www.paraben-forensics.com/ Paraben website]
  
 
==External Reviews==
 
==External Reviews==

Revision as of 11:51, 6 March 2006

Paraben

This company offers a wide variety of tools for analyzing disk drives and portable devices like cell phones and PDAs.


Paraben website


Features

File Systems Understood

  • Major Windows formats
  • RAW format

Email Examiner

Their tool for searching email ("Email Examiner") can pull apart these files:

  • Outlook (PST)
  • Outlook Express (DBX)
  • AOL 6,7,8,9 (PFC)
  • MBox
  • Eudora
  • Mozilla Mail
  • Fox Mail
  • Juno
  • Calypso
  • MSN Mail
  • USENET newsgroups


File Search Facilities

Historical Reconstruction

Can it build timelines and search by creation date?

Searching Abilities

  • With "Text Searcher". Offers complex queries and searching of slack space.
  • Comes with an index building wizard.

Hash Databases

Can it create hashes of files and/or blocks? Can it compare these hash values to any databases? What sort of hash functions does it use?

Evidence Collection Features

  • Offers a feature called "Case Agent Companion v1.0" for tracking what the case agent does.

History

License Notes

Commercial.

External Links

Paraben website

External Reviews