Ingest module for the Autopsy Forensic Analysis platform, developed in JAVA, within the scope of the Computer Science Degree of the 'Escola Superior de Tecnologia e Gestão do Instituto Politécnico de Leiria', Portugal
The main goal of this module is to extract all webactivity of a user to a local database and then generate a report to display this information. This module runs on windows and linux and extract information of Google Chrome and Firefox. You can run it as a Autopsy module or without any dependencies.
- JDK 8 (mandatory)
- Autopsy (Optional - to run it as a autopsy module)
- Ant, ivy (Optional - if you want to contribute)
You have 2 options to use this module:
-
As a Autopsy module
- Download Labcif-bhh-autopsy.nbm
- Tools - Plugins - Downloaded - Add Plugins...
- Select Labcif-bhh-autopsy.nbm downloaded previously
- Click Install - Next - Check terms acceptance - Install - Continue - Finish
-
As a standalone application
- Download Browser-History-Histogram.jar
-
As a Autopsy module
- Running the ingest module will create a database browser-history.db in the same directory as the case opened
- Tools - Run Ingest Modules - "Select image" Ex: PC01.E01
- Select Labcif - Browser History Histogram
- Finish
- After running the ingest module, you will be able to run the report Module.
- Generate Report
- Select Labcif - Browser History Histogram
- Finish
- Running the ingest module will create a database browser-history.db in the same directory as the case opened
-
As a standalone application
- Double click on Browser-History-Histogram.jar
- Choose a directory
- Extract (it will create browser-history.db)
- Generate report
- Kevin Baptista
- Tomás Honório
- Work developed under the guidance and coordination of Professors Patrício Domingues and Miguel Frade