Alexis Brignoni :python: :donor:<p>🆕 New blog post on Apple Unified Logs (iOS) and how to query them effectively.<br>🪵 Learn how to generate a .logarchive using a macOS device, third-party tools, or straight from files in a full file system extraction.<br>🪵 Use a macOS device to convert the .logarchive into a JSON file for use outside of a macOS environment.<br>🪵 Process the JSON file with iLEAPP in order to query the data using SQLite.</p><p>If you are not looking at unified logs you are missing incredibly valuable evidence in your cases. </p><p>Thanks to the following researchers for their invaluable contributions:<br>🙏 Lionel Notari<br>🙏 Tim Korver<br>🙏 Johann POLEWCZYK<br>🙏 Heather Charpentier</p><p>Read the blog post here:</p><p><a href="https://abrignoni.blogspot.com/2025/05/extraction-processing-querying-apple.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">abrignoni.blogspot.com/2025/05</span><span class="invisible">/extraction-processing-querying-apple.html</span></a></p><p><a href="https://infosec.exchange/tags/DigitalForensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalForensics</span></a> <a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DFIR</span></a> <a href="https://infosec.exchange/tags/MobileForensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MobileForensics</span></a> <a href="https://infosec.exchange/tags/UnifiedLogs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnifiedLogs</span></a> <a href="https://infosec.exchange/tags/AppleForensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AppleForensics</span></a> <a href="https://infosec.exchange/tags/iOSForensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iOSForensics</span></a> <a href="https://infosec.exchange/tags/iLEAPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iLEAPP</span></a><br><a href="https://infosec.exchange/tags/DigitalForensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalForensics</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.
Administered by:
Server stats:
223active users
eupolicy.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.6
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload