Profiles
What’s in a name? That which we call a profile By any […]
Tag: forensics
Registry Overview
The first step to forensic analysis of the Registry is knowing where […]
MRU
There are a plethora of keys in the Registry dedicated to telling […]
Bulk Extract EXIF
I was asked not too long ago about how to extract metadata […]
Plists
Plist files are found sprinkled throughout OS X and iOS and contain the various configuration settings and other information of use to the OS and applications.
Autoruns
This is an EnCase EnScript I wrote a few years back. The […]