The Experts below are selected from a list of 6 Experts worldwide ranked by ideXlab platform
Mccarrin, Michael R - One of the best experts on this subject based on the ideXlab platform.
-
Testing Memory Forensics Tools for the Macintosh OS X Operating System
(Print) 1558-7215, 2018Co-Authors: Leopard, Charles B, Rowe, Neil C, Mccarrin, Michael RAbstract:Memory acquisition is essential to defeat anti-forensic operating-system features and investigate cyberattacks that leave little or no evidence in secondary storage. The forensic community has developed tools to Acquire Physical Memory from Apple’s Macintosh computers, but they have not much been tested. This work tested three major OS X Memory-acquisition tools. Although the tools could capture system Memory accurately, the open-source tool OSXPmem appeared advantageous in size, reliability, and support for Memory configurations and versions of the OS X operating system
Michael Mccarrin - One of the best experts on this subject based on the ideXlab platform.
-
Memory forensics and the macintosh os x operating system
International Conference on Digital Forensics, 2017Co-Authors: Charles B Leopard, Neil C Rowe, Michael MccarrinAbstract:Memory acquisition is essential to defeat anti-forensic operating system features and investigate clever cyberattacks that leave little or no evidence on Physical storage media. The forensic community has developed tools to Acquire Physical Memory from Apple’s Macintosh computers, but they have not much been tested. This work in progress tested three major OS X Memory-acquisition tools. Although all tools tested could capture system Memory in most cases, the open-source tool OSXPmem bettered its proprietary counterparts in reliability and support for Memory configurations and versions of the OS X operating system.
Leopard, Charles B - One of the best experts on this subject based on the ideXlab platform.
-
Testing Memory Forensics Tools for the Macintosh OS X Operating System
(Print) 1558-7215, 2018Co-Authors: Leopard, Charles B, Rowe, Neil C, Mccarrin, Michael RAbstract:Memory acquisition is essential to defeat anti-forensic operating-system features and investigate cyberattacks that leave little or no evidence in secondary storage. The forensic community has developed tools to Acquire Physical Memory from Apple’s Macintosh computers, but they have not much been tested. This work tested three major OS X Memory-acquisition tools. Although the tools could capture system Memory accurately, the open-source tool OSXPmem appeared advantageous in size, reliability, and support for Memory configurations and versions of the OS X operating system
Charles B Leopard - One of the best experts on this subject based on the ideXlab platform.
-
Memory forensics and the macintosh os x operating system
International Conference on Digital Forensics, 2017Co-Authors: Charles B Leopard, Neil C Rowe, Michael MccarrinAbstract:Memory acquisition is essential to defeat anti-forensic operating system features and investigate clever cyberattacks that leave little or no evidence on Physical storage media. The forensic community has developed tools to Acquire Physical Memory from Apple’s Macintosh computers, but they have not much been tested. This work in progress tested three major OS X Memory-acquisition tools. Although all tools tested could capture system Memory in most cases, the open-source tool OSXPmem bettered its proprietary counterparts in reliability and support for Memory configurations and versions of the OS X operating system.
Rowe, Neil C - One of the best experts on this subject based on the ideXlab platform.
-
Testing Memory Forensics Tools for the Macintosh OS X Operating System
(Print) 1558-7215, 2018Co-Authors: Leopard, Charles B, Rowe, Neil C, Mccarrin, Michael RAbstract:Memory acquisition is essential to defeat anti-forensic operating-system features and investigate cyberattacks that leave little or no evidence in secondary storage. The forensic community has developed tools to Acquire Physical Memory from Apple’s Macintosh computers, but they have not much been tested. This work tested three major OS X Memory-acquisition tools. Although the tools could capture system Memory accurately, the open-source tool OSXPmem appeared advantageous in size, reliability, and support for Memory configurations and versions of the OS X operating system
