How to Utilize Log Entries in Cellebrite Physical Analyzer to Solve Cases Faster
Under the analyzed data section in Cellebrite Physical Analyzer, there is a category for “System & Logs” under which falls log entries. Oftentimes log entries are overlooked, although they contain very important information such as identity lookup services, possible communications, and network data usage.
Looking through the log files, you can see all the information associated with specific times, when the device was used, and different date/time stamps. Sometimes all the information is highlighted, but it is necessary to take the time to filter, keyword search, and identify key artifacts.
Always be sure to go to the source once you have collected specific information to verify your findings.