[CFNews] AIS Inc. 发布苹果取证产品MacResponse LE
2012-05-16 17:43
489 查看
AIS, Inc. announces the availability of their newest software product, MacResponse LE™. MacResponse LE is designed to provide law enforcement with critical capabilities needed to reliably collect and analyze data from live computer systems running various versions of Mac OS X.
MacResponse LE was developed by AIS, Inc. through a National Institute of Justice (NIJ) Electronic Crime grant and is available for free.
Current Version Available: MacResponse LE™ v1.0
MacResponse LE™: Live AcquisitionMacResponse LE™: Live Acquisition includes the following modules:
Disk Information
Filesystem Information
FileVault Detection
Spotlight Application List
Loaded Drivers
Login Sessions
Network Configuration
Network Connections
Physical Memory
Process Information
Property Lists
Screenshot
System Information
System Date and Time
User Information
Known Limitations:
Physical Memory module does not currently work for OS X 10.7
Physical Memory module requires admin privileges
Process Information module collects limited data without admin privileges
Spotlight Application List module carries a dependency to Mac’s Spotlight application
The user can limit the effectiveness of this module by either disabling Spotlight, or by applying Spotlight filters to not show specific applications in the listing
Dependencies:
None, assuming it is being run against one of the listed supported Mac OS X versions
MacResponse LE™: Analysis Console
MacResponse LE™: Analysis Console has been tested against the following operating systems:
Mac OS X 10.6 (32 and 64 bit)
Mac OS X 10.7 (64 bit)
Windows XP (32 bit)
Windows Vista (32 and 64 bit)
Windows 7 (32 and 64 bit)
Ubuntu Linux 11.04 (32 and 64 bit)
Ubuntu Linux 11.10 (32 and 64 bit)
MacResponse LE™: Analysis Console provides a platform for viewing the data collected by the Live Acquisition component of MacResponse LE™, and for generating custom reports. The Analysis Console provides:
Data viewing/browsing
Custom report generation (include/exclude data from selected modules)
PDF exports
Dependencies:
MacResponse LE™: Analysis Console was built with Java SDK version 6, and requires a minimum of Java version 6 JVM running on the target operating system.
For more information, visit www.macresponseforensics.com.
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- [CFNews] MicroSystemation 发布手机取证分析工具XAMN
- [CFNews] MacForensicsLab发布MacLockPick 3.0
- [CFNews] Elcomsoft发布EPPB 1.84.1338,支持iCloud取证
- [CFNews] 首届国际电子数据取证调查会议将于9月21日在北京召开
- 苹果各个时期发布的产品―1976 至 2011 苹果产品回顾
- [取证产品信息] Belkasoft发布Evidence Center 2012
- 苹果发布 Mac OS X Lion Preview 2 开发者预览版
- 苹果发布Mac OS X “Lion”操作系统[多图]
- [CFNews] 取证调查员手册Forensic Computer Examiner Quick Reference Guide更新
- [CFNews] Oxygen Forensic Suite发布4.6
- Mac技巧之找到 Mac OS X 系统更新升级包下载后的存储位置,避免多台苹果电脑重复下载&&&&苹果OS X 10.7.4发布,升级包下载
- 苹果发布Mac OS X “Lion”操作系统[多图]
- [DFNews] eDEC发布“狼蛛”2.0手机取证系统
- 苹果向开发者发布 Mac OS X 10.6.6 10J521 系统
- 华硕6月2日将发布一款超薄产品 与苹果对垒
- [CFNews] CelleBrite发布UFED 1.1.9.7以及Physical Analyzer 3.0