Mac Log Files

This week I talk about Mac Log files that are useful for File Use & Knowledge investigations as well as Incident Response.

Show Notes

 Further Information

See Sarah Edwards’ research on Mac log files at:

https://digital-forensics.sans.org/summit-archives/2012/analysis-and-correlation-of-macintosh-logs.pdf

 

Advanced Console Searching

screen-shot-2016-11-15-at-2-45-12-pm

SDF Training Class of the Week

Learn More

Understanding OS X Timestamps

Got the time? No really, can you interpret all the different OS X Timestamps? Learn how now, in about an hour!
Learn More