An iOS Acquisition Guide  

March 27, 2021 , atropos4n6

Mattia Epifani gave another great talk on iOS state-of-the-art forensics. Motivated by his talk, I used the material he shared to create an iOS Acquisition Guide, in order to help anyone who does not know how to best handle such devices. Download it, use it and thanks Mattia for it.

How to use Partition%4DiagnosticParser  

December 7, 2020 , atropos4n6

In this post, Dimitrios presents how someone can use his Partition%4DiagnosticParser, in order to automatically extract all the available VSNs that reside in “Microsoft-Windows-Partition%4Diagnostic.evtx”.