Mac OS X Forensics
نویسندگان
چکیده
منابع مشابه
Mac OS X persistent evidences for forensics purposes
Computer forensics is a discipline focused on obtaining evidences that provide a clue about how, when and who did an action over an asset. This is important in the event of attacks from intruders and malware. However, no open source forensics tools have been developed to extract the Mac OS X file persistent evidences, despite recent trend of malwares and attacks on the operating system and appl...
متن کاملMac MarshalTM: A Tool for Mac OS X Operating System and Application Forensics
Computer forensic tools for Apple Mac hardware have traditionally focused on low-level file system details. Mac OS X and common applications on the Mac platform provide an abundance of information about the user’s activities in configuration files, caches, and logs. We have developed Mac MarshalTM, an extensible tool suite for the analysis of files on Mac OS X disk images. Mac Marshal provides ...
متن کاملDetecting Objective-C Malware through Memory Forensics
Memory forensics is increasingly used to detect and analyze sophisticated malware. In the last decade, major advances in memory forensics have made analysis of kernel-level mal-ware straightforward. Kernel-level malware has been favored by attackers because it essentially provides complete control over a machine. This has changed recently as operating systems vendors now routinely enforce drivi...
متن کاملMac OS 9 - the missing manual
This is the second edition of the Honeynet Project’s opus, and I was interested in seeing what had been added. If you follow the Honeynet Project closely, a lot will be familiar. But the second half of the book contains forensics case studies that will alone be worth the purchase price for many readers. Well, there is a root account in MacOS X; you just need to know how to enable it. The Missin...
متن کاملAn Evaluation of Windows-Based Computer Forensics Application Software Running on a Macintosh
The two most common computer forensics applications perform exclusively on Microsoft Windows Operating Systems, yet contemporary computer forensics examinations frequently encounter one or more of the three most common operating system environments, namely Windows, OS-X, or some form of UNIX or Linux. Additionally, government and private computer forensics laboratories frequently encounter budg...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2006