DJ Hero Review
The Wall of Sound booms out 125W of tube-driven audio The Wall of Sound: the world's most powerful iPod dock unleashed
The boat tail mounted on the rear of the test truck Boat tail reduces truck fuel consumption by 7.5 percent
Green Wavelength's radical departure from conventional wind turbine design Green Wavelength unveils bumblebee inspired wind turbine
Subaru WRX STI TRAX Subaru WRX STI TRAX hits the backcountry
The Opera camper trailer has every conceivable luxury: electrically-adjustable beds, hot a... ‘Opera’ luxury camper trailer hits a high note
MORE TOP STORIES »
SPY GEAR

It’s Apple Mac-Guyver: pocket sized detective tool hacks into computers

By Mike Hanlon

07:00 April 3, 2007 PDT

Page: 1 2

It’s Apple Mac-Guyver: pocket sized detective tool hacks into computers

It’s Apple Mac-Guyver: pocket sized detective tool hacks into computers

SubRosaSoft’s MacLockPick is a USB sized gizmo that can extract passwords, e-mail addresses, recently accessed files, search strings, bookmarks and internet history from running or sleeping computers. But the US$499 device can only penetrate the defences of Macs running OSX – apparently, anyone who manages to build an empire of crime using Windows deserves to keep it. The “live forensics tool” is based on Flash drive technology and is available only to law enforcement officials - amateur gumshoes will have to tread the mean streets of the internet superhighway without it.

MacLockPick takes advantage of the fact that the default state of the Apple Keychain is open, even if the system has been put to sleep. It also makes use of the openly readable settings files used to keep track of your suspect's contacts, activities and history. These data sources even include items that your suspect may have previously deleted or has migrated from previous Mac OS X computers. The MacLockPick extracts data from the Apple Keychain and system settings to provide the examiner fast access to the suspect's critical information with as little interaction or trace as possible.

A database of the suspect’s information is compiled on the Flash Drive to allow for easy transportation away from the suspect's system. This database can be read by the included log readers on Microsoft Windows, Linux, or Apple Mac OS X computers back at base.

The following is a list of file items that can be extracted using SubRosaSoft’s MacLockPick:

Apple Keychain Passwords

System: The user password of the logged in user. General: Includes (but is not limited to) passwords for encrypted disk images, wifi base stations, iTunes music store, iChat login and Apple Remote Desktop. Internet: Includes (but is not limited to) login and password details for web sites, email accounts, some peer to peer networks, online services and stores, auction sites, and .mac accounts. AppleShare: A list of login and password details for appleshare servers this mac has connected to.

Files and Folder details

Folder Dates: A list of all the key user folders along with their creation date, date of last modification, date of first access, and date of the most recent access. Disk Images: Paths to the most recent disk images that have been mounted on this mac. Preview: Full paths to recent files that have been viewed in the preview program. QuickTime: File names for recently viewed movies for the QuickTime player applications Recent Applications, Documents, and Servers: Program names for the most recently used items on this Macintosh computer.

Instant Messaging

...continued

Page: 1 2

Tags
Post a Comment

Login with your gizmag account:




Or Login with Facebook:


Connect

Related Articles
Email this article to a friend

Just enter your friends and your email address into the form below ...




Privacy is safe with us because we have a strict privacy policy.

Sections
Recent popular articles in Spy Gear
Recent Comments Featured Galleries