Yogesh Khatri is a veteran digital forensics and incident response leader with over two decades of experience investigating malware, IP theft, zero-days, DDoS, insider misuse and complex electronic crimes. Currently Director - Capability at CyberCX in Sydney, he blends hands-on reverse engineering and automation with strategic capability building, having served as a principal investigator, academic program director, and guest lecturer at UCLA. A certified expert (EnCE, GREM, GCIA, GPEN) and regular CEIC speaker since 2007, Yogesh also contributes widely to open-source DFIR tooling—most notably mac_apt and contributions to ALEAPP/iLEAPP—bringing practical artifact parsing improvements and NSKeyedArchive deserialization to the community. His profile combines deep technical rigor and research (swiftforensics.com) with proven leadership in training and incident response operations, and an uncommon knack for turning forensic artifacts into repeatable, automatable processes.
9 years of coding experience
14 years of employment as a software developer
Indian School Bahrain
MS Computer Engineering, MS Computer Engineering at Syracuse University
BE Electronics, BE Electronics at Sardar Patel College of Engineering, Mumbai University
Contributions:28 releases, 2 reviews, 522 commits in 5 years
Contributions summary:Yogesh primarily contributed to a macOS artifact parsing tool, focusing on core functionality and utility improvements. Their contributions include implementing a new plug-in for reading the history of terminal sessions and handling associated history files. Additionally, the user has worked on improving and refactoring existing plugins with bug fixes and improved output formatting.
Contributions:159 commits, 63 PRs, 29 pushes in 11 months
Contributions summary:Yogesh primarily focused on refactoring and bug fixes within the Android Logs Events And Protobuf Parser repository. Their work involved modifications to the `usagestats.py` script, including updates to protobuf parsing and file handling. The user also updated paths and made improvements to the `aleappGUI.py` and `scripts/report.py` files, indicating involvement in the tool's overall functionality and reporting capabilities. Additionally, the user contributed to the `recentactivity.py` and `smsmms.py` artifacts and to the overall code base.
protobuf-parsereventsprotobufloggingandroid
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.