AD Analytics Desktop Start Guide 1. Welcome to the forefront of Digital Investigations Analytics Desktop isa digital data investigation system designed for better utilization of digital data with the purpose of unlocking more insights, surfacing additional findings and accelerating investigations. Streamlining data ingestion Save time by streamlining data ingestion directly rom UFED Physical Analyzer [aka PAI, When both apps are locally installed on the same PC, use the option to Send to Analytics when creating a case in PA. PA will also check for hash database matches for Project VIC and CAID (for suspected child abuse) 2. Analytics engines - reduce case cycle time Person Resolution Analytics automatically merges identifiers into ‘digital persons", an operation that if performed manually is time consuming and prone to error. ocr Analytics automatically performs text extraction from images categorized as documents and screenshats. Greatly increase the breadth of data that is scanned by watch lists and text analytics engines to uncover leads. Media Analytics Quickly single out places, faces, and objects to find the connections faster. Media Analytics all but eliminates manual review of media files so investigators never miss a lead Neural network machine learning algorithms automatically detect child exploitation, weapons, cash, drugs, faces and more in images and videos Think of it like a “watchlist” for visual data, EQ Text Analytics When you don’t know what you're looking for or where to start ~ begin by scanning Entities discovered by NLP algorithms. Text Analytics ‘automaticaly identifies over a dozen Entities ~ people, locations, URLs, nationalities and more in multiple languages. Discover codenames and surface other unspecified entities of interest.AD Analytics Desktop Start Guide 3. Contextual views Dashboard (a e Get a glimpse into the digital activity of every device owner, with a summary of top contacts, sru8 favorite places, most-used apps, and top media categories, Persons ‘See who's been in touch, mentioned, or involved. The person repository offers 3 comprehensive list of digital persons from contacts, phone numbers, email addresses, ‘app accounts, avatars, and more. Graph = ‘See who's connected, via which channels, and ? when “ Timeline 7 See the entire picture with all ofthe digital events arranged in chronological order Gallery See all the image and video media in the sa digital evidence, including attachments. Map See GPS locations and geolocation metadata for images, messages, etc a Filter for mutual locations to find who's been n close proximity or visited the same ocationAD Analytics Desktop Start Guide 4. Create a case After entering case information ° 1. Click Lead fite/folder to upload evidence. a Supported filetypes: —— * Cellebrite report package ui, uf. * Micro Systemation XRY (* XML], 2. The system automatically creates a “digital person” foreach il. I relevant, organize your ; ° evidence: rename persons, merge several. eas evidence files tothe same person or upload — additional files. 3 3. Rev up your Analytics’ engines: =] * Select media categories of interest, * Enable OCR text extraction, F e + Select relevant watchlists, — Ready! Create the case and begin your investigation, 5. Create a report Report your findings to other stakeholders and present actionable evidence, 1. During your investigation, take snapshots in any of the contextual views and select what to capture, Keep snapshots organized with clear names and descriptions. 5 2. When ready to compile your report * Go to the Report builder. * Enter report details * Drag-and-drop the snapshots into the report. ! 3. Click Preview then Export to produce your report.