An iOS Acquisition Guide
March 27, 2021 , atropos4n6
Mattia Epifani gave another great talk on iOS state-of-the-art forensics. Motivated by his talk, I used the material he shared to create an iOS Acquisition Guide, in order to help anyone who does not know how to best handle such devices. Download it, use it and thanks Mattia for it.
How to use Partition%4DiagnosticParser
December 7, 2020 , atropos4n6
In this post, Dimitrios presents how someone can use his Partition%4DiagnosticParser, in order to automatically extract all the available VSNs that reside in “Microsoft-Windows-Partition%4Diagnostic.evtx”.