The recent deadly shooting last month at a naval air station in Pensacola, Fla., brought in the spotlight the issue of iOS security: attorney General William P. Barr requested Apple to provide access to two phones used by the killer.Continue reading “FBI got data from a locked iPhone 11 using GrayKey: how does this tool work?”
iOS forensic is quite complex: in many cases, jailbreaking is the only way to gather all most information available in iOS devices.Continue reading “iOS Forensics: BFU (Before First Unlock) acquisition, using checkra1n”
In last years, the way that operating systems are developed, deployed, and maintained evolved quickly.
Similarly, the skillsets of memory analysts and their preferred work flows have changed to meet a world with increasingly large volumes of complex data.
In order to address these challenges, the Volatility development team has developed an entirely new version of the framework.
Some weeks ago I’ve already written about information gathering on OSX systems, related to the forensic investigation process.Continue reading “Venator: information gathering on OSX systems”
Today i’ll talk you briefly about the Windows 10 “Timeline“: a feature that can come in handy during a forensic analysis.
How to access it and how to analyze it?