Open Source – Mac APT

Specialized Corporate Investigator’s forensic computer analyst open sources an extensive Mac OS X Artifact Parsing Kit which allows for deep forensics on Apple Mac OS operating systems for the modern era. Everything from accessing the system passwords, to every print made from the system to all Messages, and Spotlight searches. Like we say at Specialized, “its almost offensive what data is left behind on everyday devices.”

Case Study – GPS breadcrumbs evidenced woman lied about being a domestic violence victim

While not explicitly enabled on the client’s phone, we developed software which accessed client’s online and device accounts and extracted GPS data from Maps, MileIQ, Facebook, Google, and other applications including cell tower communication logs, and plotted over time location maps used to cross reference allegations from two women claiming our client was stalking them. The data including phone logs proved that the women were in fact the aggressors by fabricating the stalking allegations and phone logs showed they called our client over 10 time for every 1 call. The protective order was dismissed and the two women were discredited, along with a priest, and four other adults.