My agency just purchased a Mac Pro for Computer Forensics work. I am relatively new to OSx system and wanted to know what other examiners are using as analysis software. I currently use FTK and Encase as examination software and would like what is comparable to these two products for the Mac.  

A very similar thread can be found at www.forensicfocus.com/...ic/t=8966/  

ro63rt.sm1th, I saw that link but that seems to mentioning examination of a Mac product. Although, I did see the link for Mac Forensics Labs, and will look into that further. Besides that, are there any others worth looking into that will run on the Mac OS?  

Blackbagtech - Blacklight is pretty good.

For using Windows based tools install VirtualBox and you can load up the usual (XWays, etc.)  

mrpumba:

If you are looking for forensic tools to run in the MacOS on your MacPro, I again refer to the posts in the other thread. You will need to research those tools to determine what systems they are capable of examining. Some, if not all, of the tools mentioned can be used for examining systems other than MacOS.

Alternatively, you can run Windows or other operating systems of your choice using bootcamp or a VM. This will allow you to install forensic tools that have not been ported to natively install on the MacOS (EnCase, FTK, X-Ways, etc).

I do not know who first made the connection, but I have found it to be very helpful...

When examining a Mac device, use a Mac and related tools to conduct the examination. Likewise with Windows or any other OS.  

I have Blacklight and Mac Forensics Lab. I really like Blacklight, and it's much more user friendly. Also if you are LE you can get some free Mac tools through acesle.org and Mac Marshall.  

Noted ro63rt.sm1th. darin2 I just picked up P2P and Mac Marshal, I'm working on the use of those programs. I will also check out Blacklight and see what that has to offer.