Skip to content
/ UFEDMapper Public

Processes a KML file to generate an interactive map using Plotly or Folium.

License

MIT license
3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ot2i7ba/UFEDMapper

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
assets
assets
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
UFEDMapper.py
UFEDMapper.py
 
 
UFEDMapper.spec
UFEDMapper.spec
 
 
requirements.txt
requirements.txt
 
 
ufedmapper.ico
ufedmapper.ico
 
 

Repository files navigation

UFEDMapper

UFEDMapper is a Python script crafted to process and visualize KML files exported from Cellebrite UFED 1 using Plotly 2. This tool generates various types of interactive map visualizations from the extracted data points. Based on UFEDkml2map, this script has been tailored to meet my professional needs, helping me streamline my workflow. By sharing this, I hope it can also be beneficial to others in similar fields.

Note

This script is specifically used to work with KML files exported from Cellebrite UFED. I have not tested it with other KML files, and therefore cannot guarantee its compatibility or performance with KML files from other sources.

Caution

Please note that this script is currently under development, and I cannot provide a 100% guarantee that it operates in a forensically sound manner. It is tailored to meet specific needs at this stage. Use it with caution, especially in environments where forensic integrity is critical.

Table of Contents

Features

  • Logging: Logs activities both to a file and the console.
  • Parse KML files and extract data points.
  • Generate various types of interactive maps:
    • Scatter Plot
    • Heatmap
    • Lines Plot
    • Circle Markers
    • Polygon
  • Filter data points by date range.
  • Save analysis results and maps in various formats (CSV, Excel, HTML).
  • Enhanced user interaction and error handling.

Requirements

  • Python 3.6 or higher
    • The following Python packages:
    • pandas==1.3.3
    • lxml==4.6.3
    • tqdm==4.62.3
    • pytz==2021.3
    • numpy==1.21.2
    • plotly==5.3.1
    • beautifulsoup4==4.10.0

Installation

  1. Clone the repository:

    git clone https://github.com/ot2i7ba/UFEDMapper.git
cd UFEDMapper

  2. To install the required dependencies, use the following command::

    pip install -r requirements.txt

  3. Run the script:

    python UFEDMapper.py

Usage

  1. Place your KML file in the same directory as the script.
  2. Run the script: 
    python UFEDMapper.py
  3. Follow the prompts to select a KML file, choose plot types, and enter optional filters.

Follow the Prompts

  • KML File Selection: The script will search the directory for KML files and present a numbered list for selection.
  • Prefix for Output Files: Enter a prefix for the output files (optional).
  • Date Range Filtering: Optionally filter data points by entering a date range.
  • Plot Types: Choose one or more plot types for visualization.

Plot Types

The user can choose between the Plotly and Folium plotting libraries. The following plot types are available:

  • Scatter Plot: Visualize data points on a map.
  • Heatmap: Show density of data points.
  • Lines Plot: Connect data points with lines.
  • Circle Markers: Visualize data points with circle markers.
  • Polygon: Draw polygons connecting data points.

PyInstaller

To compile the UFEDMapper script into a standalone executable, you can use PyInstaller. Follow the steps below:

  1. Install PyInstaller (if not already installed):

    pip install pyinstaller

  2. Compile the script using the following command:

    pyinstaller --onefile --name UFEDMapper --icon=ufedmapper.ico --hidden-import pyarrow --hidden-import pyarrow.vendored.version UFEDMapper.py
  • --onefile: Create a single executable file.
  • --name UFEDMapper: Name the executable UFEDMapper.
  • --icon=ufedmapper.ico: Use ufedmapper.ico as the icon for the executable.
  • --hidden-import pyarrow: Ensure that the pyarrow module is included.
  • --hidden-import pyarrow.vendored.version: Ensure that the pyarrow.vendored.version module is included.
  1. Find the executable in the dist directory.

Using UFEDMapper.spec

Alternatively, you can use the provided UFEDMapper.spec file to compile the script.

  1. Compile the script using the spec file:

    pyinstaller UFEDMapper.spec

  2. Find the executable in the dist directory.

Running the executable: After compilation, you can run the executable found in the dist directory.

Releases

A compiled and 7zip-packed version of UFEDMapper for Windows is available as a release. You can download it from the Releases section on GitHub. This version includes all necessary dependencies and can be run without requiring Python to be installed on your system.

Important

An internet connection is required to display the maps in the generated HTML files. This is because the maps are rendered using Plotly, which relies on online resources to load the map tiles and other visualization components. Rest assured, no information from your local system is sent to Plotly during this process. The map data is sourced from OpenStreetMap 3, ensuring compliance with GDPR regulations.

Example

The script lists available KML files and prompts for selection:

Available KML files:
1. Example.kml
2. Locations.kml
e. Exit
Enter the number of the desired KML file (Enter to use 'Locations.kml' or 'e' to exit):

After selecting a file, the script prompts for a prefix for the output files:

Enter a prefix for the output files (optional):

Optionally filter data by date range:

Enter start date (DD.MM.YYYY) or press Enter to skip:
Enter end date (DD.MM.YYYY) or press Enter to skip:

Choose one or more plot types for visualization:

Choose one or more plot types (e.g., 1,2,5):
1. Scatter Plot
2. Heatmap
3. Lines Plot
4. Circle Markers
5. Polygon

Logging

The log file UFEDMapper.log will be created in the same directory as the script.

Screenshots

UFEDMapper main menu UFEDMapper pick prefix UFEDMapper pick period

UFEDMapper pick plots UFEDMapper pick filename Plotly generated heatmap

Plotly generated scatter

Changes

Changes in 0.1.3

  • Import Optimization:
    • Imports have been reordered according to best practices.
  • Exit Handling:
    • sys.exit(0) is now used to properly exit the script.
  • Version Update:
    • The version in the header has been updated to 0.1.3.

Changes in 0.1.2

  • Refactored Code Structure:

    • Grouped functions thematically: configuration, user interaction, file operations, data analysis, and plotting.
    • Improved readability and maintainability.

  • Constants and Global Variables:

    • Introduced global constants (LOG_FILE, DEFAULT_KML_FILE) to avoid magic strings and hard-coded values.

  • Enhanced User Interaction:

    • Added functionality to search for KML files in the script directory and present a numbered list for selection.
    • Implemented an exit option for easier script termination.

  • Documentation and Comments:

    • Added comprehensive docstrings to all functions.
    • Included additional comments for better understanding and readability.

  • Countdown Display:

    • Implemented a 3-second countdown display before clearing the screen and returning to the main menu.

  • Improved Error Handling and Logging:

    • Enhanced error handling with more detailed logging.

  • Functional Enhancements:

    • Added new functions and optimized existing ones for better performance and user experience.

Changes in 0.1.1

  • Initial release.

License

This project is licensed under the MIT license, providing users with flexibility and freedom to use and modify the software according to their needs.

Contributing

Contributions are welcome! Please fork the repository and submit a pull request for review.

Disclaimer

This project is provided without warranties. Users are advised to review the accompanying license for more information on the terms of use and limitations of liability.

Conclusion

This script has been tailored to fit my specific professional needs, and while it may seem like a small tool, it has a significant impact on my workflow. By automating the visualization of KML files from Cellebrite UFED, UFEDMapper saves me time and effort, allowing me to focus on more critical tasks. Greetings to my dear colleagues 4 who avoid scripts like the plague and think that consoles and Bash are some sort of dark magic – the compiled version will spare you the console kung-fu and hopefully be a helpful tool for you as well. 😉

Footnotes

  1. Cellebrite UFED (Universal Forensic Extraction Device) is a forensic tool to extract and analyze data from mobile devices.

  2. Thanks to the Plotly team for their excellent visualization library, which made creating interactive maps a breeze.

  3. OpenStreetMap is a collaborative mapping project that provides freely accessible map data.

  4. Greetings to PPHA-IuK.

About

Processes a KML file to generate an interactive map using Plotly or Folium.

Topics

mobile phone geo geolocation forensics kml locations cellebrite ufed

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

1 tags

Packages

No packages published

Languages