OSXCollector: Forensic Collection and Automated Analysis for OS X

Presented at BSidesSF 2015, April 19, 2015, 11 a.m. (60 minutes)

OSXCollector is an open source forensic evidence collection and analysis toolkit for OS X. It automates the painful parts of forensic evidence collection & analysis incident responders traditionally manually. #dfir #mac4n6

Presenters:

• Ivan Leichtling - Engineering Manager - Yelp
  Ivan Leichtling leads an amazing team of engineers focused on securing Yelp's visitors, mobile apps, websites, employees, and infrastructure. Ivan holds a BS in Computer Science from the Columbia University School of Engineering and Applied Sciences. Prior to Yelp, Ivan spent a dozen years writing software, building hardware, and leading teams at Microsoft. Ivan is an anagram of vain and as such appreciates Twitter followers at @c0wl and @YelpEngineering.

Links:

• https://bsidessf2015.sched.com/event/2t10/osxcollector-forensic-collection-and-automated-analysis-for-os-x

Similar Presentations:

• Black Hat USA 1999 / Introduction to Cyber Forensic Analysis
• DEF CON 7 (1999) / Introduction to Cyber Forensic Analysis
• BruCON 0x07 (2015) / OSXCollector: Automated forensic evidence collection & analysis for OS X