Howard Oakley at The Eclectic Light Company has answered a simple question – how long does macOS Sierra retain entries in its new log? But the answer isnât as simple as the question, you can find it here.
-
Cybercrime and Digital Forensics
A new book by Jason Wayne, “Cybercrime and Digital Forensics”, has been releas… -
Docker Explorer – a Tool to Help Forensicate Offline Docker Acquisitions
This project helps a forensics analyst explore offline Docker filesystems. Docker uses lay… -
Autopsy 4.7.0 and The Sleuth Kit 4.6.1 have been released
New versions of most popular open source DFIR tools, Autopsy and TSK, have been released. …
Load More Related Articles
-
Creating custom YARA rules
Didier Stevens has posted about how to use IOCs (Indicators Of Compromise) to create your … -
Uh Oh! Unified Logs in High Sierra (10.13) Show Plaintext Password for APFS Encrypted External Volumes via Disk Utility.app
Sarah Edwards has found a very usefull bug in macOS High Sierra – unified logs show … -
What âthe Last Version of Windowsâ Means for Digital Forensics
In this post Jamey Tubbs, Magnet Software Training Director, shows how the latest versions…
Load More In Tips & Tricks
