fatcousin
// industry vertical

commercial mobile extraction suite exports

UFDR/XRY/Oxygen/AXIOM/Belkasoft/MobileEdit/FTK/EnCase/Santoku case exports beyond raw iOS/Android backups — parse vendor artifacts + validate extraction chain-of-custody metadata locally.

tools
12
priority
H
processing
local · in browser

start here · primary tools

ordered. work top-down. the first tool is the suggested entry point for this vertical.

  1. cellebrite ufdr export forensic analyzerdrop cellebrite ufdr/xml export · parse device info + app artifacts + chat timelines · runs locally
  2. oxygen forensic suite export forensic analyzerdrop oxygen .ofbx/.xml export · parse key evidence nodes + geo + comms · runs locally
  3. magnet axiom mobile artifact forensic extractordrop axiom mobile case export · parse artifact categories + source path map · runs locally
  4. mobile extraction chain of custody metadata validatordrop extraction tool metadata sidecar · validate examiner + hash + tool version chain · runs locally
  5. case report generatorfill in case number · examiner · dates · findings · drop evidence files for auto hash · generates structured forensic report PDF · runs locally

also useful · secondary tools

cross-cutting tools that surface depending on the specific investigation.

  1. msab xry mobile extraction forensic analyzerdrop msab xry report export · parse file system tree + decoded apps · runs locally
  2. belkasoft evidence center export forensic analyzerdrop belkasoft .bex export · parse artifacts + timeline + bookmarks · runs locally
  3. mobiledit forensic express export forensic analyzerdrop mobiledit forensic express report · parse contacts + messages + files index · runs locally
  4. ftk mobile mount image forensic analyzerdrop ftk mobile/ad1 mount export · parse partition map + logical files · runs locally
  5. encase mobile phone acquisition forensic analyzerdrop encase mobile l01/ex01 slice · parse acquisition metadata + hash set · runs locally
  6. santoku mobile forensic workbench export analyzerdrop santoku mfw case export · parse android/ios triage artifacts · runs locally
  7. evidence manifest generatordrop evidence files · compute md5 sha1 sha256 · chain of custody manifest · case number · analyst · export pdf and csv · runs locally

want deeper extraction coverage?

this vertical is intentionally sparse — deep-moat coverage grows over time. tracked in the forensics rollout.

ready