1 |
Golden G. Richard III, "Scalpel : A Frugal, High Performance File Carver," http://www.digitalforensicssolutions.com/Scalpel/
|
2 |
Philip Craiger, Paul K. Burke, "Mac Forensics : Mac OS X and the HFS+ File System," Department of Engineering Technology University of Central Florida.
|
3 |
Seokhee Lee, Antonio Savoldi, Sangjin Lee, Jongin Lim, "Windows Pagefile Collection and Analysis for a Live Forensics Context", F2GC 2007.
|
4 |
Seokhee Lee, Antonio Savoldi, Sangjin Lee, Jongin Lim, "Password Recovery Using an Evidence Collecting Tool and Countermeasures," IIH-MSP 2007.
|
5 |
David H. Crocker, "ARPA Internet Text Messages," http://tools.ietf.org/html/rfc822
|
6 |
Philip Craiger, Paul Burke, "Mac OS X Forensics," IFIP 2006
|
7 |
Nick Peelman, "Basic Mac Forensics," Purdue University
|
8 |
Air Force Office of Special Investigations, The Center for Information Systems Security Studies and Research, "Foremost," http://foremost.sourceforge.net/
|
9 |
Amit Singh, “Mac OS X Internals : A Systems Approach,” Addison Wesley.
|
10 |
Robert A. Joyce, Judson Powers, Frank Adelstein, “MEGA : A tool for Mac OS X operaing system and application forensics,” Digital Investigation 2008.
|
11 |
Apple, “Introduction to Property Lists,” http://developer apple.com/
|
12 |
Edward R. Marczak, “Mac OS X Advanced System Administration v10.5,” Apple.
|
13 |
Apple, “NSTimeInterval, NSCalendarDate,” http://developer.apple.com/
|
14 |
Robert A. Joyce, Judson Powers, Frank Adelstein, "Mac MarshalTM: A Tool for Mac OS X OperatingSystem and Application Forensics," DFRWS 2008.
|
15 |
Ryan R. Kubasiak, “Macintosh Forensics,” New York State Police.
|