Design And Implementation Of Dynamic Forensics System Based On Mac OS Platform

Nowadays,with the popularization and application of computer networks,social activities such as production and life,work,shopping,dating,and entertainment of people are inseparable from the network.While the network brings convenience and a new life to people,it also Criminal traffickers provide convenience and new forms of crime.The purpose of computer forensics is to understand the behavior of those involved in the case by analyzing the user's computer storage content and network activities.Computer forensics is the main means to combat computer crime.However,China started late in forensics technology.At the same time,the research on Apple computer forensics technology is not thorough and thorough.Therefore,this paper proposes and designs a dynamic forensics system based on Mac OS platform based on the needs of Apple computer forensics.To provide new ideas for forensic research on Mac computers in China.First,this article introduces the background of the project and the current status of research at home and abroad,and explains the purpose and significance of the project.Secondly,it introduces the basic knowledge and related technologies used in the research and design of the system,including the differences between static and dynamic forensics,Mac OS system structure,iOS system structure,and so on.Then,based on the research status at home and abroad,the overall design goals of Mac OS computer are proposed.Based on the overall design of the system,the function is divided into five parts:basic system data,user traces,browser data,communication data,and mobile device backup data.The system obtains administrator rights through password bypass,and scientifically and efficiently obtains stored data on Apple Computer and traces of user use.Use web crawlers,AhoCorasick,reverse source tracing,statistical analysis and other technologies to expand and analyze the acquired information,so that the content of forensic data is more detailed,making it a legitimate,credible,Reliable electronic digital data.The dynamic forensic system based on Mac OS platform proposed in this paper is composed of three parts:data acquisition,data analysis and analysis,and data cloud storage.Each of the three components performs its duties and publicly completes forensic tasks.The system can not only effectively extract the data information in Mac computers,but also the mobile terminal data information that users have backed up in computers,such as iPhone,iPad and other mobile terminal devices.Through forensic analysis of multiple devices,it can provide judicial forensics.More detailed,credible electronic digital evidence information.