FindUSBMSC has been updated
EasyMetaData has updated FindUSBMSC. It’s a script to parse the system logs on macOS. It looks for USBMSC storage…
EasyMetaData has updated FindUSBMSC. It’s a script to parse the system logs on macOS. It looks for USBMSC storage…
SUMURI presented a free step by step Mac forensics guide. You will learn how to obtain system date and time, image a data so…
Yogesh Khatri has started his journey in Apple File System reverse engineering. He has checked APFS documentation and f…
This guide is a supplement to SANS FOR518: Mac Forensic Analysis and SANS FOR585: Advanced Smartphone Forensics, and enhance…
APFS is here! Macintosh forensics expert and SUMURI CEO Steve Whalen gives you the critical information you need to stay ahe…
In the 52 episode of Mac Admins Podcast Sarah Edwards talks about Digital Forensics on the Mac, and using system tools,…
This article explores a novel approach to file carving by viewing it as a decision problem. This allows us to design algorit…
New versions of your favourite open source DFIR tools – the Sleuth Kit and Autopsy, – have been released. The Sl…
Yogesh Khatri has published a very useful post – he shows how to find the serial number of a Mac computer or laptop. T…
Sarah Edwards has updated her Mac MRU Parser. Now it parses the Spotlight Shortcuts plist and also the Bookmark an…
Login