Elcomsoft System Recovery Update simplifies digital triage in the forensic field service. ElcomSoft updates Elcomsoft System Recovery, a bootable tool for unlocking Windows accounts, accessing encrypted volumes, and unlocking encrypted virtual machines.
The new version 7.08 offers the possibility to extract WLAN passwords and helps to identify the owner of the examined computer by extracting the Windows license key. In addition, the file system analysis is facilitated by an integrated file manager with two control panels.
Extract WiFi passwords to reduce detection time
Home users often re-use passwords. The same or very similar passwords, which are created according to a limited number of patterns, are often used to protect access to online resources, to encrypt hard drives, documents and virtual machines. Extracting all of the user's existing passwords provides valuable insight into the way a user creates their passwords, drastically reducing the time it takes to find the correct password and increasing the chance of unlocking secure encryption.
The new version can extract WiFi passwords. Along with other types of passwords, the WiFi passwords can be added to a very targeted custom word list that can be used to break strong encryption and attack passwords that protect encrypted documents, hard drives and accounts.
Show Windows license key
Elcomsoft System Recovery can now disclose Windows product keys so that investigators can identify the owner of the computer by requesting information about the owner of the license from Microsoft.
Password hints, questions and answers
Another important piece of information that can be extracted on site is password information, questions and answers. This information is intended to help users remember their forgotten passwords. In many cases, reviewers can use password hints and Q&A to restore the user's original passwords.
File manager with two control panels
Elcomsoft system recovery with FAR file manager (Image: Elcomsoft).
Elcomsoft System Recovery introduces FAR, one of the most convenient file managers with two control panels. The now integrated FAR Manager is an open source tool for navigating the file system and managing files and archives. The FAR Manager works in text mode and offers a simple and intuitive way to carry out the most common processes, such as viewing files and directories, accessing hidden and system elements, copying data and accessing archives.
“The already powerful digital triage tool for forensic field service has gained additional functionality with this update,” said Andrey Malyshev, CEO of Elcomsoft's Czech office. “Wi-Fi password extraction, hints and Windows account password questions and answers, and handy two-panel file manager make Elcomsoft System Recovery the perfect tool for on-site investigations.”
More at Elcomsoft.de
About ElcomSoft
The software development company ElcomSoft Co. Ltd. was founded in 1990 by Alexander Katalov and has been in his possession ever since. The Moscow-based company specializes in proactive password security software for businesses and private users and sells its products worldwide. ElcomSoft aims to provide users with easy-to-use password recovery solutions to access their data. The software company also provides administrators with security solutions with which they can locate and eliminate unsafe identifiers in company networks under Windows or rescue EFS-encrypted files.