FTK 8.1 is packed with cutting-edge features that will transform how you handle digital evidence – be it mobile, computer, or cloud data.
The fastest & most collaborative mobile review tool, with limitless scalable processing power, more mobile artifact parsers, and near-native mobile evidence reporting.
Let FTK connect the dots and create a comprehensive view of relationships, communication patterns and known aliases, giving you a massive head start in your investigations.
Maintain control over your remote workers no matter their location, pinpoint key evidence FASTER in endpoint investigations, and quickly respond to cyber intrusions.
Combining 30 years of market experience with our most innovative and bold approach to DFIR makes FTK a standout tool for investigators.
Demystify complex communication patterns with Entity Management and Social Analyzer .
Identify known aliases and uncover hidden communication patterns between the users or ‘entities’ in the case, before digging into individual artifacts:
• Automatic merging of known aliases, plus the ability to manually merge or edit entities
• Visual identification of the most communicative entities + chat applications
• Message threads grouped by person instead of by chat app name
Redefine mobile device review with iOS and Android Processing and Parsing .
FTK 8.1 gives investigators the best tools to analyze chat app data and Mac artifacts, including support for more than 35 major chat applications, plus:
• Chat date filters to instantly zero in on key timespans
• Support for in-line chat replies and chat language translation
• Retrieval and display of deleted and edited chat messages
• Warrant return and Google Takeout support
• Advanced APFS parsing support for iOS 17, KMZ and Biome artifacts, and more!
Clearly communicate evidence stories with the Lab-to-Court Report Builder .
Fully customizable report builder organizes artifacts and timelines into a clear narrative:
• Embed chats, documents, emails, multimedia and timelines directly into reports.
• Select keywords to be automatically highlighted throughout your report data.
• Add your own branding, logo, headers and footers, and column layout.
• Easily export reports to Word or PDF, or create templates for a convenient head start.
Expedite multimedia analysis with AI Facial and Image Recognition .
Use the power of AI to automatically identify key elements within photos and videos:
• Perform advanced image & facial recognition, and similar face matching across your entire dataset.
• Quickly identify images that contain people, vehicles, money, and more.
• Find and match faces by simply drawing a circle around the face you want to locate.
• Eliminate hours of manual video review by leveraging AI to automatically flag key elements like weapons or drugs.
Request a full-featured copy of FTK 8.1 and see for yourself how FTK helps you complete investigations faster and more cost effectively.
Still the reigning industry leader in remote endpoint investigations
For clients conducting large-scale internal investigations, FTK 8.1 supports collection and remediation from the most diverse range of remote devices yet.
Investigate remote Mac users with Off-Network Mac Collection.
Maintain secure contact with work-from-home and traveling employees:
• Perform off-network collection when a Mac endpoint is disconnected from the VPN yet still online.
• Securely preview on-network Mac endpoint data to assess the need for further collection.
• Mass-deploy remote Mac agents via Jamf® for scalable control over your Mac endpoint network.
Perform Rapid Triage on compromised endpoints with Targeted System Summary Collection .
Respond to suspected incidents and gather insights faster with FTK's new filtered collection presets:
• Save time during investigations by only collecting relevant system data versus a full-disk image.
• Rapidly assess an affected endpoint to determine whether further evidence collection is needed.
• Respond at scale and take action faster by minimizing data collection.
Orchestrate cyber workflows and endpoint collection based on alerts from our Splunk Integration .
Integrate SIEM and SOAR cybersecurity platforms like Splunk with the FTK Suite to enable easy-to-use automations:
• FTK remote agents automatically perform data collections based on Splunk alerts.
• Out-of-the-box integrations eliminate the need for complex manual API scripting.
See how it worksDetective InspectorFTK’s new entity management technology is a game changer. Once we confirm the owner of a device, our first step in an investigation is to determine who that person is, so we spend hours looking at who they were talking to and how they were communicating. With entity management, now we can immediately understand these communication patterns by seeing a birds eye view of all the device user’s conversations across all apps, versus the old way of trying to manually read thousands of chat threads one by one. This feature is going to be a total disruptor in our industry.
Learn more about Exterro FTK and best practices for digital forensic investigations.
Download this product brief to learn how FTK 8.1 empowers digital forensic investigators to uncover crucial intelligence by investigating mobile, Windows, and Mac data on a single platform.
Download this product brief to learn how FTK 8.1 can help you maintain control over your remote workers, pinpoint key evidence in endpoint investigations, and quickly respond to cyber intrusions.
Download this product brief to learn how FTK can ingest mobile data for unified review and analysis with related computer evidence.
Schedule a demo to see FTK 8.1 in action.
