OS X Anti-Forensics Techniques 3 - Expanding the Attack SpaceProviding a yet deeper insight into methods for avoiding forensics while using Mac OS X, the Grugq enumerates several more attack vectors, including those associated with zero width Unicode, application file formats, browser cookies and SQLite. In conclusion, the researcher highlights some essential anti-forensics recommendations overall, and answers a few questions from the HIRBSecConf attendees on the topic.
Source:
OS X Anti-Forensics Techniques 3 - Expanding the Attack Space
