injungbo

Forensic

Qator Enterprise

An internal audit/security accident investigation
solution, Qator Enterprise.

  • Forensic investigation function
  • Confidential data leakage investigation
  • Important data distribution check
  • Collection of various client information
  • Various viewer functions convenient for investigation
인정보 제품

Main Functions

    • Collection & Analysis Function

      Collection & Analysis Function

      User screen information

      User system status information

      USB connection history

      USB automatic imaging

      USB copy file details

      Bluetooth usage history

      Print history

      Keyboard usage history

      Installation program information

      File system change

      File list / Program execution history

      Specific folder Change history

      web browser usage history

      collection of specific emails

    • Forensic Analysis Function

      Forensic Analysis Function

      Remote Disk Imaging

      Remote Disk Analysis

      Windows File System Analysis

      Keyword and Pattern Search

      Various View Functions

      Disk Image Analysis Too

      File Time Series Analysis

      Deleted File Recovery

      Windows Artifact Analysis

    • 관리 기능

      Management Function

      Collection control by policy

      Investigator management

      Time series analysis of collected

      data (action analysis by time zone)

      Bookmark

      Investigation report creation

      File distribution history of multiple systems

  • Collection & Analysis function

    Collect data of the subject of investigation through Qator Collector(collection server)
    Collect data of the subject of investigation through Qator Collector(collection server)
    Investigate the behavior of the subject of investigator through past and current screens of the subject PC
    Investigate the behavior of the subject of investigator through past and current screens of the subject PC

    • - Collected data varies depending on situation of the company

    • - Collect all contents from real-time investigation at the same time

    • - Screen information, file usage information, file name, USB usage history, Bluetooth usage history, events in PC, file system snapshot, installation program, webcam, printer log, printer spool data, specific path storage data, Internet history

  • Forensic Analysis Function

    • Recovery of Deleted File

      - Recovery using the file system meta data

      - Data carving

      - Recovery of overwritten file

    • Recovery of Qator File

      - Remote file recovery through Manager

      - Recovery support using file system metadata

    • Recovery using metadata

      Recovery using metadata

    • Data Carving Recovery

      Data Carving Recovery

    Search and analyze file contents containing specific words or pattern on PC
    Search and analyze file contents containing specific words or pattern on PC
    Perform forensic analysis on PC remotely
    Perform forensic analysis on PC remotely

    • Management Function

      - Report on results of forensic analysis

      - Document information on bookmark and the target of analysis

    • - Check what kinds of behavior took place on the subject PC at a specific time
    • - Display collected contents by time zone
    • - Enable correlation analysis between contents collected