In mobile forensics, with each update brings new challenges and opportunities. Join us as we dissect the latest iOS 17.4 impacts, including the nuances of SQLite databases and the advent of write-ahead logs in Advanced Logical extractions. Our episode is brimming with insights that could change the way you approach data extraction and parsing.
The forensic landscape is ever-evolving, and this episode isn't shy about the hurdles we face, or the workarounds that keep us ahead. Discover how matching forensic work environments with devices' native operating systems and utilizing tools like Christian Perter's and Lionel Notari's for Logical and Unified Log extraction can streamline your investigative processes.
Building a personal brand in digital forensics isn't just about notoriety; it's about cultivating a reputation that commands respect and opens doors. This episode celebrates those who contribute to the community, from the creation of new parsers to the latest features in FTK 8, and how these actions bolster not just your standing but the entire field. We explore the unique journeys that shape our professional identities and share laughter over common forensics foibles. It's an episode that champions growth, community, and the personal touch that makes all the difference in a technical world.
Notes-
A Gift From Apple:
https://www.msab.com/blog/apple-deleted-data-itunes-backups/
UFADE Universal Forensic Apple Device Extractor:
https://github.com/prosch88/UFADE
iOS Unified Logs tool:
https://www.ios-unifiedlogs.com/blog
FTK LevelDB Support:
https://www.exterro.com/ftk-product-downloads
What's New with the LEAPPS?
https://github.com/abrignoni