1. Product introduction:
ZJSC-DS08 is a professional forensics machine that performs multi-channel forensic analysis and generates court-approved reports for mobile terminal devices such as Apple and Android. It integrates data extraction, analysis, recovery display and report generation functions, and supports up to 8 channels. Parallel forensics can significantly improve the efficiency of mobile phone forensics. The system uses data cables to connect to the device for automatic forensics. The extracted data will be stored locally, and all the evidence will be verified with MD5 values ??during the entire process to prevent The data is damaged to ensure compliance with judicial regulations.
 

2. Product features:
1. Multi-channel parallel forensics: The forensic host supports simultaneous data acquisition of 8 channels of mobile phones in multiple cases, as well as other forms of parallel forensics. Other forensics include mobile phone mirroring forensics, mobile phone backup forensics, etc.;
2. Multi-channel parallel operation: in parallel forensics, data browsing, data search, and report export can be processed at the same time;
3. Ports are bound one by one: the collection ports on the forensic host panel are bound to the display area in the interface one by one, effectively avoiding the chaos when collecting multiple phones of the same model;
4. Centralized status display: Extract the main interface to centrally display the current real-time collection status of all terminals, which changes the traditional display style without manually switching to view;
5. 8-channel physical independent operation: when multiple channels are collected in parallel, it supports independent operation of each channel‘s backup, extraction, analysis, report export and other functions, and the 8 channels do not interfere with each other, and there is no need to wait for the entire case to complete before operating;
6. Step-by-step wizard operation, self-selecting evidence method, fast and automatic evidence collection;
7. The hard disk can be replaced: the hard disk with insufficient storage space can be manually replaced by operating the hard disk compartment on the panel of the host;
8. Automatically identify the device model, quickly determine the device system version and status (jailbreak or ROOT), one-click evidence acquisition,
9. Quickly extract mobile phone data, support the extraction of mainstream mobile phones in the market such as Android system Huawei, Xiaomi, Samsung, VIVO, OPPO, and support extraction of the full range of devices in the Apple system;
10. Support data extraction and analysis of Samsung mobile phone system above 9.0;
11. Support for seamless extraction and analysis of data above 10.0 of Huawei mobile phone (5G mobile phone) system;
12. Supports data extraction and analysis of OPPPO mobile phone system Color OS6 (Android 9.0) and above, and supports simultaneous extraction of 8 mobile phones online;
13. It can be mirrored for analysis and supports formats such as dd, bin, img and mdf. Android can analyze the backup data created by the mobile phone‘s own "backup APP". Apple can analyze the itunes backup data, and can analyze the data after the third forensic tool. Analyze the backup data package;
14. In-depth recovery of mobile data on mobile phones: supports the extraction of existing and deleted data in Apple and Android devices, and performs fragmented integration of WeChat and QQ database sqlite for in-depth recovery;
15. The recovered data is classified into friends, unknown friends (deleted friends), group chat, official account, including text messages, call records, contacts, QQ, WeChat, WhatsApp, Momo, Internet records, photos, Memo (text, audio and video) and other APP data;
16. Support for extracting APP data: SMS, call records, contacts, QQ, WeChat, WhatsApp, Momo, Internet records, photos (audio and video), memos (text and audio and video) Douyin, Multi-Flash, LINE, Taobao, Meituan , Didi, etc.;
17. The software extracts data and displays it from the first perspective (showing the relationship between deleted data and existing data from the perspective of a dialogue account), supports dialogue view display, QQ, WeChat, SMS, call records and other application data provide dialogue view display, audio and video Play directly
18. The software provides online upgrade and at the same time guarantees that the original data is not deleted;
19. Can generate bcp package and import it into other big data platforms;
20. Show the fragments of WeChat and QQ database sqlite (Chinese analysis), which can be used by investigators to quickly find the fragments
twenty one. To key clues;
twenty two. Extract and analyze the incomplete iTunes file data;
twenty three. Extract the data of the WeChat Moments of iPhone mobile phone, and extract the content of Moments that have been browsed, Moments of this account, and friends who have browsed friends;
twenty four. Recover private chat or group chat records of deleted friends on WeChat;
25. Recover the "withdrawal message" of text messages sent by WeChat holders (supports the latest system versions of Android and Apple);
26. Support mobile phone WeChat voice-to-text deletion recovery;
27. WeChat transfer and red envelope fund statistics (total expenditure and total income) and export;
28. Statistics on Alipay transfer and red envelope funds (total expenditure and total income) and export;
29. Support the extraction of Alipay data, which can extract text, photos, audio and video, and restore deleted data, such as transfer information;
30. Support mobile Baidu map and AutoNavi map extraction, which can extract and analyze navigation tracks and footprint points;
31. Support WeChat friend message verification, extraction and analysis;
32. Support the latest Android and ios mobile phone systems with browser data extraction and analysis;
33. Extract and analyze chat records of ios and Android WeChat applets;
34. Support full text search of evidence report and mark display of search keywords (support IE10, IE11, Edge, Firefox);
35. Support real-time multiple filtering to help users gradually narrow the scope of investigation;
36. Support the function of supporting evidence viewer, without software authorization, can view evidence data anywhere;
37. Domestic independent research and development, with software copyright certificate.

3. Hardware configuration:
1. 1 host (built-in):
2. CPU: I7-8700;
3. Memory: 64 GB;
4. Hard disk: 1 TB SSD+4 TB mechanical hard disk;
5. 7 auxiliary machines (built-in):
6. CPU: 3855U;
7. Memory: 8 GB;
8. Hard disk: 512 GB SSD;
9. Others: 1 34-inch curved screen monitor, 1 mouse, 1 keyboard, and related accessories 1