Skip to content

1.1.0 - Sysdiagnose and more

Latest
Latest
Compare
Choose a tag to compare
@Lazza Lazza released this 21 Aug 22:39
1.1.0
6594b62

Fuji: Forensic Unattended Juicy Imaging

Sysdiagnose and more

This release includes several enhancements and bug fixes, along with a few interesting new features:

  • Sysdiagnose acquisition method (#10): This new functionality acquires system data and unified logs using the sysdiagnose command. Fuji will automatically convert the Unified Logs to SQLite for you, making analysis much easier.
  • List of drives and partitions (#15): Fuji now includes a table of drives and partitions, along with information about them. Mounted partitions can be set as the source with a single click. Thanks to @BrunoFischerGermany for the suggestion (#12) and the initial proof-of-concept implementation (#13). The "used space" for the main / mount point is estimated by examining the state of the whole APFS container.
  • Better support for old macOS versions (#14): The ASR and Rsync acquisition methods have been tested successfully even on macOS versions as old as 10.13 High Sierra (released in 2017). See also #8. Please note that the Sysdiagnose acquisition method needs more testing and verification on legacy OSes.

⚠️ Carefully read the README file before using this software. ⚠️

Screenshot 2024-08-21 alle 23 21 21

Contributors

BrunoFischerGermany
Assets 4
Loading