Info

Overview

Evidence: Info
Description: Info
Category: System
Platform: esxi
Short Name: info
Is Parsed: Yes
Sent to Investigation Hub: Yes
Collect File(s): No

Background

Case information metadata tracks collection details, timestamps, tool versions, and case identifiers. This metadata provides provenance for collected evidence, establishes chain of custody, and documents the collection environment and methodology.

Data Collected

This collector gathers structured data about info.

Info Data

Field	Description	Example
`AccessTime`	Access Time	2023-10-15 14:30:25+03:00
`AccessCount`	Access Count	123
`URL`	URL	Example value
`Browser`	Browser	Example value
`Title`	Title	Example value
`VisitDuration`	Visit Duration	Example value
`Referrer`	Referrer	Example value
`TypedCount`	Typed Count	123
`IsHidden`	Is Hidden	true
`TransitionType`	Transition Type	Example value
`VisitID`	Visit ID	123
`TransitionQualifiers`	Transition Qualifiers	Example value
`User`	User	Example value
`Profile`	Profile	Example value
`HistoryFilePath`	History File Path	Example value

Collection Method

This collector captures case metadata including case ID, collection timestamp, collector version, operator information, target system details, and collection parameters used during evidence acquisition.

Forensic Value

Case metadata ensures evidence integrity, establishes timeline accuracy, supports chain of custody documentation, and provides context for investigation reconstruction. Proper case information is essential for legal admissibility and forensic report generation.