Overview

Colander web platform is a case and digital investigation platform that integrates seamlessly with the hardware and software components. Colander provides a centralized hub for managing investigations, streamlining workflows, and enabling effective collaboration among team members.

  • Knowledge management: Colander facilitates the organization and sharing of investigative knowledge, ensuring that insights are readily available to team members, promoting collaboration and efficiency.

  • Artifact management: Colander streamlines the handling and preservation of digital evidence, maintaining chain of custody and ensuring admissibility in legal proceedings.

  • Digital investigation: Colander simplifies the digital investigation process, offering a central platform for case management, evidence handling, gathering threat intelligence for 3rd-party, collaboration, and network traffic analysis.

Key features

  • Organize knowledge in different cases
  • Invite team member to collaborate on your cases
  • Represent the real world with generic entities such as artifacts, actors, observables, events and more
  • Graph knowledge using the web graph editor
  • Write documentation at any time
  • Import intelligence from third-party services such as VirusTotal or OTX Alien Vault via Threatr
  • Collect and sign artifacts directly from your PiRogue
  • Analyze decrypted network traffic and payloads
  • Decode network payloads with CyberChef
  • Apply Yara rules directly on the network traffic
  • Ensure artifact integrity and authenticity
  • Generate comprehensive data transmission reports
  • Create feeds to export your findings in different formats