Silensec's Nyuki Forensics Investigator (Mobile Forensics)
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Android
AndroidApps
AndroidAuxiliary
AndroidMisc
TimelinePlugins
Widgets
_html
iOS
.gitignore
AppExplorer.py
Catalog.py
ConvertUtils.py
DBHandler.py
Dashboard.py
Debug.py
ExtractStore.py
FileHandlers.py
HtmlExtract.py
HttpServe.py
IApp.py
IAuxiliary.py
IDeviceVersion.py
IMainModule.py
IMiscSource.py
INSTALL
IScanner.py
Includes.py
LICENSE
MimeGuesser.py
MiscUtils.py
ModuleImporter.py
MountPoints.py
ParseHandlers.py
README.md
SQLite3Initializer.py
SystemSettings.py
TODO
Timeline.py
TimelineDefn.py
TimelinePlugin.py
nfi.cfg
nfi.py

README.md

Nyuki Forensics Investigator

Introduction

Nyuki Forensics Investigator is an open source application, that aims to provide a user friendly interface for the analysis of mobile device artefacts, that exist on Smartphone devices running the Android and iOS Operating System. It can be used to extract specific and aggregated information from individual applications and system files using a simple modular architecture, which is capable of accommodating any changes to individual artefacts.

Nyuki Forensics Investigator can be used by forensic analysts or mobile application penetration testers to analyze the contents of individual applications or global databases for information that can reveal user actions or internal application structures.

Nyuki Forensics Investigator was initially developed during an Android application penetration test in our spare time. It later grew into platform that students could use during the Mobile Forensic Bee™ course offered by Silensec (read more). Finally, it was decided that the application could become something more than a training assistant and thus we began developing what would later be called the Nyuki Forensics Investigator.

Dependencies

Before running Nyuki Forensics Investigator there are several python modules we need to make sure we have in our system, namely:

You may install these packages using pip

pip install cherrypy python-magic biplist mako

Running

Execute the software using:

./nfi.py -H

For additional help execute:

./nfi.py --help

More info

View more info at Silensec's Website here