Edge Bookmarks

Overview

Evidence: Edge Bookmarks Description: Collect Edge Bookmarks Category: Browser Platform: Windows Short Name: edgebook Is Parsed: Yes Sent to Investigation Hub: Yes Collect File(s): No

Background

Edge browser data provides user activity information including browsing history, downloads, and session data. This data is essential for understanding user behavior, detecting malicious web activity, and investigating browser-based security incidents.

Data Collected

This collector gathers structured data about edge bookmarks.

Edge Bookmarks Data

Collection Method

This collector parses the necessary data from the edge_data table.

Usage

This evidence is crucial for forensic investigations as it provides edge browser activity information. It helps investigators understand user web behavior, detect malicious web activity, and investigate browser-based attacks. The data can reveal visited websites, downloaded files, and potential web-based threats. Analysts can use this information to identify web compromises, trace malicious web activities, and assess web security posture.

Notes

This data may contain sensitive information that should be handled according to data protection requirements. Ensure proper chain of custody is maintained during collection and analysis.