Presentation is loading. Please wait.

Presentation is loading. Please wait.

E-Detective Network Investigation Toolkit - NIT (2010) Decision Group www.edecision4u.com.

Published byMarilynn Floyd Modified over 8 years ago

Similar presentations

Presentation on theme: "E-Detective Network Investigation Toolkit - NIT (2010) Decision Group www.edecision4u.com."— Presentation transcript:

1 E-Detective Network Investigation Toolkit - NIT (2010) Decision Group www.edecision4u.com

2 Introduction to Network Investigation Toolkit What are the capabilities of NIT?  Interception of Ethernet LAN traffic through mirror port (or by network tap).  Interception of WLAN traffic (up to 4 different WLAN channels).  Intercept ion of Ethernet LAN HTTPS/SSL traffic by MITM attack.  Intercept ion of WLAN HTTPS/SSL traffic by MITM attack.  Real-time raw data decoding and reconstruction.  Offline raw data decoding and reconstruction.  Forensics analysis and investigation. Solution for: Lawful Enforcement Agencies (Police Intelligence, Military Intelligence, National Security, Counter Terrorism, Cyber Security, Defense Ministry etc.

3 NIT Implementation Mode (1)

4 NIT Implementation Mode (2)

5 NIT Implementation Mode (3)

6 NIT Implementation Mode (4)

7 NIT – Homepage – Status of Operation Display the current operation mode and status of implementation

8 IM/Chat (Yahoo, MSN, ICQ, QQ, IRC, Google Talk Etc.) Email Webmail HTTP (Link, Content, Reconstruct, Upload Download) File Transfer FTP, P2P Others Online Games Telnet etc. NIT Internet Protocols Supported

9 NIT – Homepage – Status of Operation Top-Down view on Case Results GUI.

10 Sample: Email (POP3, SMTP, IMAP)

11 Sample: Webmail (Read and Sent) Webmail Type: Yahoo Mail, Gmail, Windows Live Hotmail, Giga Mail and others

12 Sample: IM (Yahoo, MSN, ICQ etc.) Yahoo: Includes file transfer, webcam, voice call (GIPS Decoder Required) MSN: Includes file transfer, webcam

13 Sample: HTTP Link and HTTP Content

14 Sample: HTTP Video Streaming

15 Sample: Incomplete Connections Incomplete connection sessions can be viewed by binary-text viewer

16 Search – Free Text (Key Words) and Advanced Free Text (Key Words Search) Advanced Search (Conditional Search)

17 NIT – System Specifications (1)

18 NIT – System Specifications (2)

19 NIT – System Specifications (3)

20 NIT – System Specifications (4)

21 References – Implementation Sites and Customers  Criminal Investigation Bureau  The Bureau of Investigation Ministry of Justice  National Security Agency (Bureau) in various countries  Intelligence Agency in various countries  Ministry of Defense in various countries  Counter/Anti Terrorism Department  National Police, Royal Police in various countries  Government Ministries in various countries  Federal Investigation Bureau in various countries  Telco/Internet Service Provider in various countries  Banking and Finance organizations in various countries  Others Notes: Due to confidentiality of this information, the exact name and countries of the various organizations cannot be revealed.

22 Decision Group www.edecision4u.com

Download ppt "E-Detective Network Investigation Toolkit - NIT (2010) Decision Group www.edecision4u.com."

Similar presentations

Decision Group www.edecision4u.com Forensics Investigation Toolkit (FIT) Layer 7 Content Reconstruction Tool.

Decision Group Forensics Investigation Toolkit (FIT) Layer 7 Content Reconstruction Tool.
Recording TV Shows from Network websites. Network TV Websites Many program episodes can be played in Streaming mode from TV Network websites Can watch.

Recording TV Shows from Network websites. Network TV Websites Many program episodes can be played in Streaming mode from TV Network websites Can watch.
Page 1 / 18 Internet Traffic Monitor IM-1000. Page 2 / 18 Outline Product Overview Product Features Product Application Web UI.

Page 1 / 18 Internet Traffic Monitor IM Page 2 / 18 Outline Product Overview Product Features Product Application Web UI.
E-Detective Series of Products Presentation (2009) Decision Group www.edecision4u.com.

E-Detective Series of Products Presentation (2009) Decision Group
Network Forensic Investigations TRAINING. The Essential Need The knowledge of network packet analysis is important for Forensic Investigators and Lawful.

Network Forensic Investigations TRAINING. The Essential Need The knowledge of network packet analysis is important for Forensic Investigators and Lawful.
How the Internet Works Course Objectives Introduce the various web browsers Introduce some new terms Explain the basic Internet to PC hookup  ISP  Wired.

How the Internet Works Course Objectives Introduce the various web browsers Introduce some new terms Explain the basic Internet to PC hookup  ISP  Wired.
Lawful Interception & Packet Forensics Analysis System Casper Kan Chang Decision Group June 2010.

Lawful Interception & Packet Forensics Analysis System Casper Kan Chang Decision Group June 2010.
Wireless-Detective WLAN 802.11a/b/g/n Interception System Decision Group www.edecision4u.com.

Wireless-Detective WLAN a/b/g/n Interception System Decision Group
DECISION-COMPUTER INTERNATIONAL CO., LTD E-Detective Series of Products Decision Computer Group of Company Website:

DECISION-COMPUTER INTERNATIONAL CO., LTD E-Detective Series of Products Decision Computer Group of Company Website:
Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.

Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.
Network Forensics and Lawful Interception Total Solutions Provider

Network Forensics and Lawful Interception Total Solutions Provider
Decision Group Inc. 2014. Contents Introduction and Company Brief Corporate Milestones Globalized Company Solution and Technology Solution Position in.

Decision Group Inc Contents Introduction and Company Brief Corporate Milestones Globalized Company Solution and Technology Solution Position in.
DECISION GROUP The Pioneer of IT Forensics Taipei, Germany, Hong Kong, Singapore.

DECISION GROUP The Pioneer of IT Forensics Taipei, Germany, Hong Kong, Singapore.
Internet…issues Managing the Internet

Internet…issues Managing the Internet
Chapter 2: Application layer  2.1 Web and HTTP  2.2 FTP 2-1 Lecture 5 Application Layer.

Chapter 2: Application layer  2.1 Web and HTTP  2.2 FTP 2-1 Lecture 5 Application Layer.
The Internet. What is the Internet? A community with about 100 million users Available in almost every country about 160,000 people are added each month.

The Internet. What is the Internet? A community with about 100 million users Available in almost every country about 160,000 people are added each month.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
Internet & E-mail Day 2. Web Address/ URL 1.Uniform Resource Locator or web address use to access the web site 2.When you connected to the internet you.

Internet & Day 2. Web Address/ URL 1.Uniform Resource Locator or web address use to access the web site 2.When you connected to the internet you.
Introduction 1 Lecture 7 Application Layer (FTP, e-mail) slides are modified from J. Kurose & K. Ross University of Nevada – Reno Computer Science & Engineering.

Introduction 1 Lecture 7 Application Layer (FTP, ) slides are modified from J. Kurose & K. Ross University of Nevada – Reno Computer Science & Engineering.
Introduction 1-1 Chapter 2 FTP & Email Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.

Introduction 1-1 Chapter 2 FTP & Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.

Similar presentations

Ads by Google