Forensic Data

When you first access Forensic Analysis, you can view a summary of forensic data with information about threats, associations, device information, transmitting traffic, and receiving traffic. Below is an example of a forensic data file:

If you select one of the tabs, the summary is expanded into more detailed forensic data so that you can learn more about the wireless device and if necessary, take immediate action.

Note

The tabs displayed will vary depending on the device selected and on whether you have installed Basic Forensic Analysis or Advanced Forensic Analysis.

You can access the following tabs in Forensic Analysis for more detail:

• Adoption History (APs and Switches.) For APs, adoption history provides a table of devices that have adopted the selected AP. For switches, it provides a table of devices that the selected switch has adopted.
• Association Analysis (BSSs and Wireless Clients) lists the associations between the device being analyzed and other wireless devices.
• Bandwidth Analysis (APs and Switches) displays a chart showing the bandwidth utilization for the selected AP or switch.
• Channel Analysis (BSSs and Wireless Clients) provides a visual representation of all channels.
• Device Info (All devices) displays the current settings for the device being analyzed.
• Device Analysis (All Devices) provides a visual representation of all channel bandwidths.
• Performance Analysis (Switches) provides performance raw data and usage percentages for the selected switch.
• Radio Analysis (APs) provides information that can be used to analyze the radio on the selected AP.
• Radio Info (APs) provides radio information that is recorded at the time displayed on the selected AP.
• Signal Analysis (BSSs and Wireless Clients) displays the signal strength of a device (in dBm) as measured by various sensors.
• Threat Analysis (All devices) displays a table of alarms generated by the device being analyzed.
• Threat Breakdown (APs, BSSs and Wireless Clients) displays devices broken down by type/manufacturer.
• Traffic Analysis (BSSs and Wireless Clients) displays traffic transmitted and received by the device being analyzed.
• Traffic Breakdown (APs, BSSs and Wireless Clients) displays devices broken down by type/manufacturer.