Two new releases of Evimetry are now available for download: a bugfix release (v3.0.2), and a preview release (v3.1.3). The v3.0.2 release fixes a device enumeration bug in the Windows Light Agent, and enhances support for volatile memory acquisition of KASLR enabled kernels in the Linux Light Agent.
Oxygen Forensic have updated their Detective product to version 9.6 introducing drone support (they specify DJI Phantom 3 and DJI Inspire 1, but it may be others as well), as well as improvements to cloud extractor and “bypass screen lock on a greater variety of Motorola devices and supports simultaneous Android data extraction”.
Christa Miller has compiled all of the recent Magnet Forensics posts on Android device acquisition.
We had the opportunity to sit down with Tayfun Uzun, Product Manager here at Magnet Forensics, to understand the issues that the cloud represents and how AXIOM Cloud will tackle them. In part one, we discuss the industry and the impact of could data in general.
X-Ways Forensics v19.4 was just released !
What’s New in E3: Universal Aurora Edition 1.4
Insight’s case management system has been created to help users efficiently keep track of hard drive-related information. Even if a hard drive has already been used for a while, imaging and hashing have already been performed, it is still possible to open the case and make adjustments to its details.
We recently sat down to talk with Magnet Forensics VP of Product Management, Geoff MacGillivray, about the Magnet Forensics product line, including what’s new in Magnet AXIOM and our commitment to Magnet IEF.
In today’s world, everything is stored in the cloud. Your backups can be stored in the cloud. The “big brother” knows where you had lunch yesterday and how long you’ve been there. Your photos can back up to the cloud, as well as your calls and messages. Finally, your passwords are also stored online – at least if you don’t disable iCloud Keychain. Let’s follow the history of Apple iCloud, its most known hacks and our own forensic efforts.
SR-6: Ability to extract files from GZ archives that are larger than 4 GB. Matching hash values against hash databases as part of volume snapshot refinement did not work when triggered through the command line. That was fixed.