Over 80% of crimes carry network evidence, usually through packet captures or wiretaps. Wireshark is a poor fit for application-oriented investigations, so LEAs need better solutions for processing and gathering digital forensics evidence from PCAPs, especially classification for OTT communications apps.
Sandvine’s Digital Witness's products leverage patent-pending Real-Time Application Forensics technology to accelerate lawful intercept investigations drastically for any investigations using PCAPs. Digital Witness increases the ability and velocity of an LEA to determine suspects, gather evidence, and prosecute criminals despite encryption and anonymizing applications.
Sandvine’s Digital Witness portfolio is developed to enhance traditional Lawful Intercept solutions, by enabling a new dimension for investigations: encrypted IP-based communications and services. Existing tools like Wireshark are labor-intensive and unaware of encrypted applications. With unique visibility into the applications and tools used by criminals to communicate, investigations become more efficient and criminals can be more quickly arrested with Sandvine solutions.