Mobile device forensics & digital investigation

Monthly report n⁰46 - 2026-02

https://pts-project.org/blog/monthly-report-n46-2026-02/

Project overview

PiRogue Tool Suite (PTS) provides a platform combining analysis tools, knowledge management, incident response management and artifact management, which allows civil society organizations with limited resources to equip themselves at a low cost. The project consists of an open source tool suite that provides a comprehensive mobile device forensics and digital investigations platform.

Website: pts-project.org
Email: hello [at] pts-project.org
GitHub: Source code - Roadmap
Get support: Discord
Support us: OpenCollective

📢 Announcements

🚀️ PTS Community Meeting on Friday, March 27 · 2:00 – 3:00pm CEST. We are looking forward to hear from you join us on Google Meet

🎉 Impacts and results

Real-time threat intelligence is now supported in Colander. Network flows and Suricata security alerts from PiRogue devices are now displayed directly in Colander. Users can query Threatr for threat intelligence on any IP address and import flows into their cases.
The core functionality for deploying PiRogue as an emergency VPN server is now possible, enabling organizations to analyze network traffic from at-risk individuals who don’t have physical access to a PiRogue device.

📒 Activity report

You can find more details about the different activities in the project roadmap.

📦 US100 - Documentation

Documenting the project is key in its usability. We are continuously documenting the different tools and features we develop and build new learning materials to facilitate skills development.

This month

We have started restructuring our documentation. In the coming month you will oversee changes on the documentation structure.

Next month

Continuous updates on the Documentation.
Pushing the changes to our public repo

📦 US101 - Maintenance

We manufacture PiRogues to supply organizations, while taking care of its maintenance. We will include OS upgrades, improvement of the documentation and fixing bugs. Regarding Colander and Threatr, we maintain the public Colander server, upgrade dependencies, improve the documentation and fix bugs.

This month

Better PiRogue status monitoring consultation

We enhanced the display and the expiration of PiRogue statues.

At-a-glance overview of PiRogue system versions

A PiRogue owner can quickly check system updates.

Better remote PiRogue User Access management

A PiRogue owner can now easily create and share accesses to Colander teams. Colander operators assigned to these teams will be able to use the access granted to them for their investigations.

Simplified device monitoring workflow

We have simplified the configuration and start-up of device monitoring. A Colander operator can now launch profiling with fewer fields and clicks.

Next month

We will continue the maintenance of the tools, Debian packages we maintain and Colander ecosystem.

📦 US102 - Community and outreach

Given the success of events, webinars and demos with members of the civil society, NGOs and security researchers, we continue with our outreach plan. We organize trainings and demonstration sessions as well as creating spaces for the community to share feedback and request new features via our mailing list, GitHub issues or Discord server. We analyze one Android app that has received the community’s interest (ex COP28 app) per month. The application to be analyzed is chosen by the community. The analysis report is first privately shared with the community and one month later it is publicly released.

We organize monthly calls open to all members of the community to share project updates and get the community’s feedback.

This month

No Android apps were analyzed this month due to a lack of time.
We have received your feedback about PTS project from the research conduct by TheEngineRoom.
The next PTS community meeting will happen on March, 27th 2026 at 2pm CET, join us on Google Meet.

Next month

We will continue with our recurring activities.

📦 US104 - Product management

This month

We are happy to announce that our collaboration have started with the Impact & Engagement Lab from OTF. We are closely collaborating together on imporving the User Experiences and looks and feel of different PTS products to better serve our community.
We have received very community survey and interviews feedback conducted by The Engine Room. The feedback mainly focused on different aspects our community would like us to improve and work on on the next roll-outs of our products. We took them into account and will be happy to announce them soon.
PTS documentation restructuring and redefinition

Next month

Continue working on the documentation of PTS
Accelerating the collaboration with the Impact & Engagement Lab from OTF.