Focus on Apple
Back to list
Mar 08 2007 08:12AM
thomas stridh its uu se
Re: Forensics utility
Mar 09 2007 12:47AM
Richard Glaser (richard scl utah edu)
Here is a forensics presentation by Derrick Donnelly you can watch a
stream of the presentation and slides are available for download.
Derrick Donnelly will discuss the state of forensics on Mac OS and
tasks like using a Mac to create a forensics image of a Mac or PC
drive and commands to sift through the amount of information stored
on today's hard drives.
Derrick is considered one of the foremost experts in Mac forensic
analysis. He currently serves as the CTO of BlackBag Technologies, a
leading provider of multi-platform forensic software and hardware
solutions. Before BlackBag Technologies, he led the IT Security
Department at Apple Computer where he played key roles in securely
implementing iTunes, .Mac and the Apple online stores. He was a law
enforcement officer for the Royal Canadian Mounted Police. He has
developed and teaches courses to law enforcement agencies
internationally, including the FBI Computer Analysis and Response
Team (CART). He also has worked with the US Department of Justice. He
attended St. Francis Xavier University in Nova Scotia, Canada where
he studied Information Systems.).
BlackBag Technologies, Inc. - Macintosh Forensic Software Overview
Subrosasoft - MacForensicsLab
Hope this helps
On Mar 8, 2007, at 1:12 AM, thomas.stridh (at) its.uu (dot) se [email concealed] wrote:
> I'm searching after forensics utility that can be used on Mac OS X
> I have looked through the Apple security documentation but found very
> little about forensics investigation.
> I hope someone on this list now where to find help.
> Thomas Stridh, IT Support Department, Uppsala University, Uppsala,
> Tele: +46 (0)18 471 77 68, Fax: +46 (0)18 471 78 76
> mailto:thomas.stridh (at) its.uu (dot) se [email concealed]
> My PGP public key (nr. BCDB5521) is available from PGP key servers.
University of Utah - Student Computing Labs
richard (at) scl.utah (dot) edu [email concealed]
[ reply ]
Copyright 2010, SecurityFocus