This repository presents a Browser Forensics Project, focusing on analyzing browser data to extract meaningful insights for cybersecurity and forensic investigations. The project was conducted using Browser History Examiner to analyze data from Mozilla Firefox and Microsoft Edge.
- Extract and analyze browsing histories from Edge and Firefox.
- Identify and compare online behavior, including:
- Websites visited.
- Search terms used.
- Bookmarks and saved credentials.
- Highlight key forensic artifacts like cookies, downloads, and session data.
- Browser History Examiner: Used for data extraction and analysis.
- SQLite: Format for browser history databases.
- Browsers analyzed: Mozilla Firefox & Microsoft Edge.
- Data Extraction π οΈ
- Browser history files were securely extracted from the operating system.
- Tools like Browser History Examiner imported and parsed the data.
-
Data Analysis π
- Extracted data included:
- URLs of visited sites.
- Timestamps and frequency of visits.
- Cached files and images.
- Saved login credentials and search terms.
- Extracted data included:
-
Data Comparison π
- Mozilla Firefox and Microsoft Edge were compared based on:
- Volume of data stored.
- Types of sites visited.
- Mozilla Firefox and Microsoft Edge were compared based on:
-
Reporting π
- Exported detailed reports in PDF and HTML formats for further analysis and documentation.
- Edge contained more detailed browsing activity compared to Firefox.
- Retrieved sensitive data included:
- Bookmarks: 21 in Edge, 4 in Firefox.
- Logins and passwords: Hostnames, dates created, and usage counts.
- Cached files and images: Content types and sizes.