Huge #ALEAPP update for Garmin.
🌎 Interactive maps on the HTML report!
📊 Eye catching graphs!
📅 To and from date selectors!
📝 Full Android Notifications kept in Garmin
🤔 Already thinking how to leverage it on all the LEAPPs!
🙏 Thanks to https://github.com/fabian-nunes,
https://github.com/fabian-nunes for these incredible artifacts and functions. Amazing doesn't begint to describe it.
🔗 Get ALEAPP here:
https://buff.ly/3Px6B1L

🙏 Thanks to @stark4n6 for doing important entomological coding work in #ALEAPP.
🙇 For squashing bugs and keeping #DFIR artifacts current.
🔗 Get ALEAPP for parsing #Android extractions here:
https://github.com/abrignoni/ALEAPP

#DFIR thoughts 💭

Data without context serves little to no purpose.

Had a case recently where images of interest were found in the #Android Chrome cache. These images were carved, by the paid #DigitalForensics tool, out of the cache files and that was it. When I looked at the source file I could see a URL as well as other data points. The URL was key since it established receipt of the files which fulfilled certain statutory requirements.

As examiners and tool makers we need provide the necessary context that brings the past to the present. Just parsing things out in categories is not enough. Information only has value when it is aggregated into knowledge.

Android Chrome cache parsing has been added to #ALEAPP.

Thanks to @joshua_hickman1 for his public data sets and testing in Windows.

Get ALEAPP here:
🔗 https://github.com/abrignoni/ALEAPP

RT @Get_ArcPoint@twitter.com

Great news for forensic professionals on the go! We're excited to announce that #ATRIO now has #mobilesupport and integrated #ALEAPP, allowing you to access and use our powerful digital forensics tools anywhere. Upgrade your #digitalforensic toolkit today!

🐦🔗: https://twitter.com/Get_ArcPoint/status/1617976912235692032

Super excited that our #OpenSource tool for parsing artifacts from #Android devices is now part of Atrio.

Tools from the #MobileForensics #DFIR community to all.

Check out #ALEAPP for all your Android #DigitalForensics needs here:
🔗 https://github.com/abrignoni/ALEAPP

#FLOSS #FOSS #MobileForensics #eDiscovery #blueteam

#ALEAPP has been updated to support the Garmin Connect app:

🏃 Cache DB activities
⌚️ Device details
🏃 GCM cache activities
🔔 Notifications
😴 Sleep details
☀️ Weather info

🔗 Download here: https://github.com/abrignoni/ALEAPP/

#Stark4N6: Gabbing about Garmin Connect for Android https://www.stark4n6.com/2023/01/gabbing-about-garmin-connect-for-android.html #DFIR #ALEAPP #FOSS

The Garmin app for Android collects all sorts of nuggets, parsers coming soon #ALEAPP

New #ALEAPP and #RLEAPP binaries out now #DFIR #FOSS #MobileForensics

🔗 ALEAPP >>> https://github.com/abrignoni/ALEAPP/releases/tag/v3.1.5

🔗 RLEAPP >>> https://github.com/abrignoni/RLEAPP/releases/tag/v1.0.31

#FOSS tools aren't perfect and neither are we, there's always room for improvements and tweaks. Just pushed 17 file changes to #ALEAPP to fix some minor timelining and parser 🐛​s

🔗​ Download the latest version here: https://github.com/abrignoni/ALEAPP

#DFIR #MobileForensics cc: @abrignoni

New #ALEAPP artifact parsers for #Android: Native Downloads and Calendar

⬇️Downloaded file details, names, sizes
🗓️Attached calendar details
📅List of calendar events

Get ALEAPP here:
🔗 http://github.com/abrignoni/ALEAPP

#DigitalForensics #MobileForensics #FLOSS #FOSS #DFIR

New #DFIR parser for #Android in #ALEAPP for the Gmail app:
📧​ Email content
🔗​ Attachments
📬​ Email data

Get it here:
https://github.com/abrignoni/aleapp
#DigitalForensics #FLOSS #FOSS #Python #Coding #MobileForensics

New #ALEAPP artifact parser for #Android: Google Maps Search History
📍 Coordinates to and from the location
🌐 Google maps URL search link
🗺 Location address

Get ALEAPP here:
🔗 github.com/abrignoni/ALEAPP

#DigitalForensics #MobileForensics #FLOSS #FOSS #DFIR

@jlindmar may be time to look at making an #ALEAPP parser aye @abrignoni

A parser for this is now in the latest #ALEAPP update, go grab it! https://github.com/abrignoni/ALEAPP

Shout out to @joshua_hickman1 for the research and testing! https://infosec.exchange/@joshua_hickman1/109491784619937398

Super happy to chat with Amy at the 2022 Florida ICAC Conference in Orlando, FL.

They are adding #iLEAAP & #ALEAPP support to their Atrio #DFIR product super soon! I'm stoked to see our community project being embraced by tool vendors and makers. Thank you. 🙏

🔗 https://www.arcpointforensics.com/news/getting-started-with-aleapp

#Stark4N6: Thawing the Ice Age Pt. 2 - Tusky on Android #ALEAPP #DFIR #mobileforensics https://www.stark4n6.com/2022/12/thawing-ice-age-pt-2-tusky-on-android.html

New parser in #ALEAPP: Mastodon app for Android
🐘Thanks to @stark4n6 for the awesome work.
🐘Get notifications, searches, user info, instance details, & more.
🐘Check the blogpost here:
https://www.stark4n6.com/2022/12/thawing-ice-age-mastodon-on-android.html
🐘Get ALEAPP here:
https://github.com/abrignoni/ALEAPP
🐘 #DFIR #DigitalForensics #FOSS #Python

#Stark4N6: Thawing the Ice Age - Mastodon on Android #DFIR #mobileforensics #ALEAPP https://www.stark4n6.com/2022/12/thawing-ice-age-mastodon-on-android.html

Look what's here, @abrignoni made me do it #StreamDeck #ALEAPP #iLEAPP #RLEAPP #FOSS #DigitalForeniscs