Collector
Collect and upload endpoint and mobile artifacts with collection credentials.
Turn PC and mobile data into a timeline, then review privacy exposure and suspicious activity with links back to the original evidence.
Collect data, understand the sequence of events, ask questions, and prepare a report in one place.
New to forensic analysis?
Prepare a case, connect the collector, and begin evidence-grounded analysis by following only the steps you need.
Step 1
Create a separate workspace for the material you will review.
Step 2
Follow the guide to connect a device or forensic image to the case.
Step 3
Review AI analysis alongside evidence numbers and source records.
Connect device evidence, messenger data, and browser records to the same case. Supported stores are decrypted when the required key or backup material is available.
Collect and upload endpoint and mobile artifacts with collection credentials.
Decrypt supported stores to analyze chats, accounts, attachments, visits, and searches. Coverage depends on the available key or backup material.
Attach acquired images and volumes as case analysis sources.
Normalize verified forensic tool outputs into analyzable evidence records.
Professional-grade digital intelligence without the complexity
Connect the material you need through the collector or evidence upload, then scope collection by operating system, device, and artifact. Supported formats and verified import paths are listed separately in the evidence-intake guide.
AI assists with threat-candidate triage and pattern analysis. MITRE ATT&CK tactic/technique mapping and timeline anomaly review are available in one workflow. After collection or upload, parsing, embeddings, AI analysis, manual review, timelines, and relationship analysis cite the same evidence records.
AI automatically profiles a user's occupation, interests, and behavioral patterns from device data alone. No investigation experience needed.
Analysis data is encrypted in transit and at rest, then processed for deletion after the selected retention period. Service access is controlled by authentication, case ownership, and audit logs.
Save hours on report writing. Automatically generate reports with Chain of Custody, hash verification, and timestamp proofs. (Admissibility as legal evidence depends on the jurisdiction.)
Start at $9.90. Credit costs are shown before use, with no expensive licenses required.
Help privacy officers and CPOs organize candidate personal-data scope, exposure indicators, affected data categories, and draft review notes from forensic evidence.
Summarize candidate emails, phone numbers, identifiers, and financial data as counts and evidence references without exposing raw values.
Review USB, browser downloads, cloud uploads, archives, and malware indicators in chronological order.
Track missing facts and next steps to review before notification decisions.
Prepare structured output for executive reporting, data subject notices, and legal review.
Experience AI-powered data analysis
From concerned individuals to professional investigators
Suspicious activity? Second-hand laptop? Check it first before calling anyone.
"I found suspicious files on my teen's computer. What are they?"
Dramatically reduce your triage time. Focus on what matters, let AI handle the rest.
"Analyze USB connection and file copy patterns from the last 30 days."
Check departing employees' laptops before wiping. Protect your IP.
"Check if any confidential files were copied to external devices."
Pay only for what you use. No monthly subscriptions, recharge when needed
For simple analysis tests
Most popular choice
For professional investigation teams
For large investigation projects
All packages include: AES-256 encryption, privacy-control design, email support
Estimate credits from monthly cases, upload size, and AI questions
Estimate based on data processing at 10cr/GB and an average 2K tokens per AI question (6cr/question).
We apply encryption, permission checks, and audit records to reduce unnecessary exposure of customer data
Evidence data is encrypted with user- and case-separated keys, and service access requires authentication and case ownership checks.
Under the current operating configuration, AI analysis runs on our own infrastructure and evidence, queries, and analysis results are not sent to external AI provider APIs such as OpenAI, Google, or Anthropic.
Uploaded originals are temporary processing inputs, not long-term retained case data. After parsing, configured retention applies to parsed records, embeddings, analysis outputs, reports, and related service copies under deletion procedures.
Our security architecture and encryption methods are publicly documented. Trust starts with transparency.
Have questions? Here are answers to the most common ones.