Hacker News with Generative AI: Forensics

Show HN: Ibex – a cross-platform iOS backup decryption tool (github.com/initz3r0)
ibex is a cross-platform tool designed for decrypting and extracting iOS backups. It provides forensic investigators, security researchers, and power users with the ability to access and analyze encrypted iOS backup data. It can be built and used on macOS, Linux, and Windows and is permitted to be used only with the explicit and informed consent of the backup data owner.
Security, iOS, Tools, Forensics
8 points by initzero 7 days ago | 0 comments
Glowing gunshot residue: New method illuminates crime scene clues (phys.org)
Crime scene investigation may soon become significantly more accurate and efficient thanks to a new method for detecting gunshot residues.
Forensics, Science, Technology
7 points by geox 9 days ago | 0 comments
Cyber Forensic Expert in 2k Cases Faces FBI Probe (krebsonsecurity.com)
A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry from the Federal Bureau of Investigation (FBI). Legal experts say the inquiry could be grounds to reopen a number of adjudicated cases in which the expert’s testimony may have been pivotal.
Cybersecurity, Forensics, Law, Investigations, FBI
22 points by todsacerdoti 22 days ago | 1 comments
Conducting forensics of mobile devices to find signs of a potential compromise (github.com/mvt-project)
Mobile Verification Toolkit (MVT) is a collection of utilities to simplify and automate the process of gathering forensic traces helpful to identify a potential compromise of Android and iOS devices.
Mobile Security, Forensics, Android, iOS, Tools
151 points by 34679 40 days ago | 72 comments
The 'Invisibility Cloak' – Slash-Proc Magic (dfir.ch)
While working my way through the excellent “Linux Attack, Detection and Live Forensics” course from Defensive Security, I read the following line: If you are looking for a simple way how to hide your process from the process list, then the bind mount operation is the answer.
Cybersecurity, Linux, Forensics
76 points by lapnect 169 days ago | 15 comments
A Cartography of Genocide (forensic-architecture.org)
Genocide, History, Art, Forensics, Data Visualization
9 points by lapnect 181 days ago | 0 comments
Presence and collection of DNA from air and air conditioner units (wiley.com)
DNA, Forensics, Science, Environmental
58 points by bookofjoe 372 days ago | 41 comments