Andrea Fortuna
Just some random thoughts about the Meaning of Life, The Universe, and Everything

Sometimes, during an incident analysis, you may need to replicate behaviours of a specific host, perhaps already acquired with a forensic method.

During a forensic analysis on mobile devices, especially when you are not able to perform a full memory acquisition, a network traffic analysis could be useful in order to identify suspicious activities.

Today I’d like to share a brief list of useful tools I use for OSX analysis.

In order to expand the address space that is effectively usable by a process and to expand the amount of dynamic RAM, modern operating systems use the method known as swapping.

“Technology is just a tool. In terms of getting the kids working together and motivating them, the teacher is the most important” – Bill Gates

Several year ago (at least 15), I’ve been involved in a exciting project: the development of a video game. Not as developer, but as musician!

A simple step-to-step tutorial for iOS full acquisition.

A brief update on Cobalt Strike detection in forensics analysis, with a couple of new resources.

Some privacy concerns about Apple Silicon and MacOs Big Sur.

FAMA (Forensic Analysis For Mobile Apps) is a forensic framework developed in Python (2.7+) by Lab of Cybersecurity and Digital Forensics at IPLeiria (LabCIF).