Category Archives: Authenticate

Time After Time: Amped Authenticate Shows a Lot of Dates/Times Related to Your Image, Learn How to Interpret Them!

Dear Tip Tuesday addict, welcome to this week’s Tip! While using Amped Authenticate have you ever noticed that, for most images, you can find a lot of different places showing dates and times? Why are they so many, and what is the difference between them? Keep reading to find out!

Continue reading

Behind the Scenes: Customize the Rules Beneath File Format Warnings and Make Authenticate as Strict as You Like

Dear Tip Tuesday lovers, welcome to this week’s Tip! When you load an image into Amped Authenticate and click on the File Format filter, a lot of tests are executed to analyze your image’s encoding properties and metadata. When Authenticate finds something suspicious, it raises a warning to help you focus your attention. Today, we will briefly review what these tests do, and show how you can customize the parameters determining their behavior.

Continue reading

Amped Authenticate’s Smart Report: Making It Quicker and Easier for You to Report Relevant Filters

In Amped Authenticate Update 12336 we introduced a new and exciting reporting method designed to make it quicker and easier to report relevant filters.

The new Smart Report tool means users can now quickly produce an image authentication report as it automatically selects the most appropriate filters for each evidence image. This new feature allows for a more visual representation of evidence images and will allow you to quickly and effortlessly triage and share Authenticate results.

Check out this video to see the new Smart Report in action!

Working on Many Chains? Multiple Panes Will Ease the Pain! Learn How to Split Amped FIVE’s Viewer and Boost Your Work

Hello, Tip Tuesday’s loyal friends! With all the enhancement and restoration tools featured in Amped FIVE, it can easily happen that you are undecided about which filter is better to use in a specific case, or which filter configuration is the best. This week’s Tip will show you how to visually compare the output of different chains and hopefully settle the question quickly.

Continue reading

Better to Take a Look Than to Overlook: Image Thumbnails May Contain Hidden Information, Authenticate Helps You Find Out!

Hello Amped blog readers! Following last week’s Tip Tuesday idea that “simple things matter”, today we’ll show you how one of the most straightforward filters in Amped Authenticate, that is, the Thumbnail filter, can sometimes reveal interesting information.

First of all, what is the image thumbnail? It is (well… it should be) a much lower resolution version of the image, commonly in the order of 160 x 120 pixels. It is mostly used by file/image manager applications for efficiently creating image galleries: they just need to decode a few thousand instead of millions of pixels during gallery creation and browsing, while the full-size picture will be decoded when the user “opens” it. The Exif standard provides rules for embedding the thumbnail into the image file as a stand-alone JPEG object, allowing to decode it without having to process the full-sized image.

Continue reading

Even the (Byte)Streams Can Tell More Than It Seems: Learn How to Spot Hidden Data in Images Using Amped Authenticate!

This week is Amped Authenticate‘s turn, and we are going to look at our images from a different perspective than usual, that is… their bytestream! We’ll see how Amped Authenticate’s Hex Viewer and Hex Strings filters can help you spot hidden information in your evidence images.

Continue reading

Recaptured Images Are a Good Way to Fool Forensic Analysts… but Not those Equipped with Amped Authenticate!

Hello dear Amped Blog readers, welcome to this week’s Tip Tuesday. Today we’ll be dealing with one of the most sneaky kinds of fakes: recaptured images. A recaptured image is a “picture of a picture”: you display your (possibly forged) image on a screen, or you print it on paper, and then you take a picture of it. This apparently naive approach is much more clever than it seems: the obtained image will be a “camera original” image to all extents, so it will likely pass every test based on metadata/format analysis. Are we left alone against this subtle threat? Of course not, Amped Authenticate is here to help. Let’s find out how.

Continue reading

Amped Authenticate’s “Show Saturation” Feature Saves You from April Fools!

April Fools’ Day has just passed and we hope you didn’t go through any nasty trick! Alas, for people working with digital evidence, the risk of getting fooled by some ambiguous finding is always around the corner. In the case of digital image forensics, among the most frequent pitfalls, we find false positives produced by forgery localization algorithms (that is, when an algorithm marks as manipulated a region that was not so). Today’s Tuesday Tip deals with them and shows how Amped Authenticate helps you rule out some of them.

Continue reading

Is your image embedded in a PDF file? No worries, Amped Authenticate can handle that!

Welcome to this week’s Tip Tuesday! Today we are showing you an interesting, perhaps a bit hidden, functionality of Amped Authenticate. There is no need to introduce the PDF file format: it is surely the most widespread format for sharing digital documents. Therefore, it may easily happen that you have to deal with a PDF containing images and that some of them get questioned.

What would you do in such a case (after realizing that if you drag-and-drop the PDF into Amped Authenticate, nothing happens, because it’s not an image file)? Would you take a screen capture of the picture and work with that? “Nooo!” – I hope you said! Screenshots are evil for image forensics! Ok, you would get some pixels to work with, but you would lose all metadata, you would lose encoding properties, you could be recompressing data… That means you cannot check image integrity, and finding manipulations becomes much harder. No, there’s a better way of dealing with images embedded in PDFs, and we’ll show you how!

Continue reading

Quick Triage with Amped Authenticate’s Batch File Format Analysis Can Save You Lots of Time

Dear Amped friends, welcome to this week’s Tip Tuesday!

In our last Tip we’ve talked about how Amped FIVE users can save time by trimming and cropping the video they’re working on, so to focus the analysis only on interesting parts. Probably, we opted for that topic because February is the shortest month, and it may give you the feeling that time flows away too quickly. Since we can’t stop time, let’s at least save it when possible!

This week is Amped Authenticate‘s turn, so let’s see how we can save time when investigating our digital images. Once more, it’s a matter of focus: to save time, we have to focus the analysis on the right images (i.e., properly select them) and run only the analysis filters that we need on them. We will focus on the first aspect today, and leave the second for a coming-soon Tip.

Continue reading