Expertly preserve email evidence without breaking a sweat. Get plug & play output for digital forensic investigations and eDiscovery.
Forensic Email Collector is a powerful tool—it can forensically acquire emails from Exchange Servers, Office 365, Gmail, G Suite and virtually any IMAP server with many output options and detailed logs. It is also remarkably intuitive. You can get started in just a few minutes and preserve emails and document your efforts with a few clicks.
This small Gmail and Google Calendar collection takes place in about a minute—complete with logs, hashing, and simultaneous output in EML, MSG and PST formats. That’s faster than the time it takes to launch some software!
Forensic Email Collector can connect to most popular email servers and cloud email providers. You are not stuck with IMAP or POP for forensic email preservation.
FEC can connect to Exchange servers—including Office 365—via Exchange Web Services. You can preserve emails faster and more accurately, and without having to configure the target Exchange server for IMAP access.
FEC authenticates with Gmail and G Suite using OAuth and forensically acquires mailboxes at eye-watering speeds via Gmail API. Say goodbye to downloading the same message multiple times because of overlapping labels.
FEC connects to IMAP & POP servers in a read-only manner and preserves email evidence without modifying the target mailbox. Outlook.com, Hotmail, Yahoo Mail, Zoho, iCloud and AOL Mail are just a few supported providers.
Instantly search Gmail / G Suite, Office 365 / Exchange, and IMAP mailboxes before the acquisition.
Did an acquisition get interrupted? No problem; we can resume a past project when you are ready.
Detailed acquisition and exception reports so that you can record and document exactly what happened, when and why.
FEC can automatically retry acquisition as many times as you want. You don’t have to go back to square one because of a pesky server or due to network issues.
You can connect to Gmail, G Suite, and Office 365 via OAuth 2.0 instead of using credentials. No need to enable “access for less secure apps”.
FEC can output to EML, MSG or PST format. You can export to all three simultaneously—complete with MD5, SHA1 or SHA256 hashing of the output.