TESTING MEMORY FORENSICS TOOLS FOR THE MACINTOSH OS X OPERATING SYSTEM

被引：0

作者：

Leopard, Charles B. ^{[1
]}

Rowe, Neil C. ^{[1
]}

McCarrin, Michael R. ^{[1
]}

机构：

[1] US Naval Postgrad Sch, Dept Comp Sci, Monterey, CA 93940 USA

来源：

JOURNAL OF DIGITAL FORENSICS SECURITY AND LAW | 2018年 / 13卷 / 01期

关键词：

digital forensics; acquisition; main memory; Macintosh; OSX; testing;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Memory acquisition is essential to defeat anti-forensic operating-system features and investigate cyberattacks that leave little or no evidence in secondary storage. The forensic community has developed tools to acquire physical memory from Apple's Macintosh computers, but they have not much been tested. This work tested three major OS X memory-acquisition tools. Although the tools could capture system memory accurately, the open-source tool OSXPmem appeared advantageous in size, reliability, and support for memory configurations and versions of the OS X operating system.

引用

页码：31 / 42

页数：12

共 50 条

[1] Memory Forensics and the Macintosh OS X Operating System
Leopard, Charles B.
Rowe, Neil C.
McCarrin, Michael R.
DIGITAL FORENSICS AND CYBER CRIME, ICDF2C 2017, 2018, 216 : 175 - 180
[2] MEGA: A tool for Mac OS X operating system and application forensics
Joyce, Robert A.
Powers, Judson
Adelstein, Frank
DIGITAL INVESTIGATION, 2008, 5 : S83 - S90
[3] MolViewX:: a molecular visualization program for the Macintosh OS X system
Smith, TJ
JOURNAL OF APPLIED CRYSTALLOGRAPHY, 2004, 37 : 654 - 657
[4] Mac OS X forensics
Craiger, Philip
Burke, Paul
ADVANCES IN DIGITAL FORENSICS II, 2006, 222 : 159 - +
[5] MACINTOSH OPERATING SYSTEM
WEAKLEY, L
LIBRARY SOFTWARE REVIEW, 1992, 11 (05): : 62 - 70
[6] iPhone forensics based on Macintosh open source and freeware tools
Hoene, Thomas
Creutzburg, Reiner
MULTIMEDIA ON MOBILE DEVICES 2011 AND MULTIMEDIA CONTENT ACCESS: ALGORITHMS AND SYSTEMS V, 2011, 7881
[7] MACINTOSH OPERATING SYSTEM DEBUTS
MCLEOD, J
ELECTRONICS-US, 1994, 67 (13): : 1 - 1
[8] TESTING FRAMEWORK FOR MOBILE DEVICE FORENSICS TOOLS
Anobah, Maxwell
Saleem, Shahzad
Popov, Oliver
JOURNAL OF DIGITAL FORENSICS SECURITY AND LAW, 2014, 9 (02) : 221 - 234
[9] Browser Forensics: Extracting Evidence from Browser Using Kali Linux and Parrot OS Forensics Tools
Qureshi, Sirajuddin
He, Jingsha
Tunio, Saima
Zhu, Nafei
Akhtar, Faheem
Ullah, Faheem
Nazir, Ahsan
Wajahat, Ahsan
International Journal of Network Security, 2022, 24 (03): : 557 - 572
[10] THE MACINTOSH A/UX OPERATING SYSTEM RELEASE 3.0
PERRONE, G
COMPUTER, 1993, 26 (02) : 103 - 106

← 1 2 3 4 5 →