The Cider Press: Extracting Forensic Artifacts from Apple Continuity - SANS DFIR Summit 2017

preview_player
Показать описание
Apple Continuity allows us to move between our devices without disruption in activity. Just think of the ultimate handoff where you can start browsing the Internet on your iPhone, continue on your Mac without the hassle of having to type a search a second time.
Essentially, your devices work together enabling you to do less. Imagine how this looks on a Mac, iPhone or Apple Watch. What will the forensic artifacts look like? Will you be able to tell which device the user conducted an activity on? What if it makes or breaks your
investigation?

  1. SANS Digital Forensics and Incident Response
  2. digital forensics
  3. incident response
  4. threat hunting
  5. cyber threat intelligence
  6. dfir training
Рекомендации по теме
The Cider Press: 0:39:12

The Cider Press: Extracting Forensic Artifacts from Apple Continuity - SANS DFIR Summit 2017

Extreme Cupping Therapy! 0:00:16

Extreme Cupping Therapy! #shorts #cupping

🌊🚤 Don’t you 0:00:15

🌊🚤 Don’t you just love the motion of the ocean? Boat size matters when the waves toss you around....

Mac Forensics: Looking 0:21:14

Mac Forensics: Looking into the Past with FSEvents - SANS DFIR Summit 2017

What is actually 0:06:26

What is actually mind reading?

#DFIRFIT or Bust! 0:34:28

#DFIRFIT or Bust! - A Forensic Exploration of iOS Health Data - SANS DFIR Summit 2018

Advanced Features available 0:25:12

Advanced Features available with OSForensics

Lucky (iOS) #13: 0:31:29

Lucky (iOS) #13: Time to Press Your Bets w/ Jared Barnhart - SANS DFIR Summit 2020

Compare and Contrast 0:02:33

Compare and Contrast Forensic Hardware and Software Used for Apple Devices

😣Sarah Edwards 0:00:28

😣Sarah Edwards

Digital Forensic Investigation 1:26:23

Digital Forensic Investigation with Sarah Edwards

Viral Trypophobia Trend 0:01:00

Viral Trypophobia Trend on Tik Tok Ticks

Forensic 4cast Awards 0:11:54

Forensic 4cast Awards - SANS Digital Forensics & Incident Response Summit 2017

DEF CON 23 0:44:34

DEF CON 23 - Sarah Edwards - Ubiquity Forensics: Your iCloud and You

Bluetooth Forensic 0:00:33

Bluetooth Forensic

FOR585A: iOS Forensic 0:02:28

FOR585A: iOS Forensic Analysis Stay Sharp course | Interview with Domenica 'Lee' Crognale

Digital forensics and 0:03:03

Digital forensics and the HTC deal with Apple

Beats & Bytes: 0:30:35

Beats & Bytes: Striking the Right Chord in Digital Forensics - SANS DFIR Summit 2017

What you need 0:01:35

What you need to know about SANS FOR518; Mac and iOS Forensic Analysis and Incident Response

Fast Unix-like Incident 0:37:33

Fast Unix-like Incident Response Triage Using UAC Tool

Archive Explorer - 0:03:20

Archive Explorer - an AILab demo (HD)

The New GIAC 0:42:36

The New GIAC MacOS and iOS Examiner Certification (GIME)

Rob Lee 'The 0:21:12

Rob Lee 'The Most Lethal Forensicator We Know' Award - SANS DFIR Summit 2017

THROWBACK – Advanced 0:19:56

THROWBACK – Advanced Mobile Device Forensics with Heather Mahalik (EP348)

Комментарии
Автор

I wonder if this can lead to open-source implementations of Apple's Continuity and HandOff features.

nicnl