Friday, September 28, 2007

MacOS (OSX-Softwares-Ebooks-Tricks) part 79

MacForensicLab
INFO. http://www.macforensicslab.com/

Quote:
MacForensicsLab is a complete suite of forensics and analysis tools in one cohesive package. Combining the power of many individual functions into one application in order to provide a single solution for law enforcement professionals.

It is the first of its kind on the market specifically for the Apple Mac range of personal computers, as well as other Apple-related products such as the iPod and third-party devices that also work with the Macintosh computer.

MacForensicsLab contains an array of useful functions:
  • The ‘Analyze’ function enables the user to examine files in Hex and ASCII mode and scan file sectors at blazing speeds that no other package can approach.
    .
  • The ‘Acquire’ function uses an intelligent algorithm to recover mechanically unsound drives. Even if the drive has been partially mechanically compromised, MacForensicsLab has the best chance at recovering evidence for further data retrieval and analysis.
    .
  • MacForensicsLab’s ‘Salvage’ function retrieves files that have been deleted and will recover potentially lost files from hard drives (Mac, Windows, and Linux), CD-ROMs, external storage devices (Zip, Jaz, Syquest), digital camera memory cards, iPods, and much more.
    .
  • The ‘Catalog’ process searches through the directory structure to log all files, as well as to help zero in on suspect material. MacForensicsLab can create a list of all files within a directory structure including the catalog information, MD5, SHA1, and SHA256 checksums, and other basic file information, allowing the investigator to use filters where desired.
    .
  • MacForensicsLab’s ‘Logs’ function keeps a detailed log of every action and all points of interest to support the evidence. In the Logs window, the investigator has access to comprehensive details of the date and the time of the investigation, the actions performed on and performed by MacForensicsLab, and the outcome of these. Whether a case is finished or partially complete the investigator can export the logs into a web format (HTML) and view them in any web browser, thus making the sharing of case data much easier.
Link donlot-nya 'dah pernah di post disini ...MacForensicLab

Posted by rivaimuhammad at 9:23 PM

Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)