A DFIR tool to analyze artifacts on macOS
☆35Jan 18, 2021Updated 5 years ago
Alternatives and similar repositories for MacRipper
Users that are interested in MacRipper are comparing it to the libraries listed below
Sorting:
- A small tool to easily mount APFS image on macOS for forensics.☆16Jul 30, 2020Updated 5 years ago
- A DFIR tool to collect artifacts on macOS☆56Mar 1, 2020Updated 6 years ago
- Quick iOS Backup UnFunkerizor☆22May 25, 2021Updated 4 years ago
- A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.☆26Oct 27, 2019Updated 6 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆20Nov 28, 2023Updated 2 years ago
- CLBX file format☆20May 13, 2021Updated 4 years ago
- ☆22Aug 29, 2024Updated last year
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Nov 16, 2023Updated 2 years ago
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- Forensic Artifact Collection Tool for macOS☆118Jul 28, 2025Updated 7 months ago
- Scripts to process macOS forensic artifacts☆205Aug 4, 2024Updated last year
- A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database☆14Nov 19, 2021Updated 4 years ago
- ☆11Aug 3, 2018Updated 7 years ago
- 010 template for apfs☆26Feb 26, 2021Updated 5 years ago
- A modified fork of Be.HexEditor for use in debug tools☆15Jan 5, 2022Updated 4 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 4 months ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Jul 16, 2019Updated 6 years ago
- Tools for macOS Forensic Bootable media☆15May 20, 2020Updated 5 years ago
- A curated list of iOS Forensics References, organized by folder with specific references (links to blog post, research paper, articles, a…☆227Dec 1, 2023Updated 2 years ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆14Mar 4, 2019Updated 6 years ago
- ☆12Jun 3, 2022Updated 3 years ago
- Windows 10 Live Information viewer☆38Jan 27, 2022Updated 4 years ago
- ☆21Nov 19, 2025Updated 3 months ago
- A script to convert a Cellebrite UFDR to the original file structure.☆74Mar 21, 2022Updated 3 years ago
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices☆158May 21, 2020Updated 5 years ago
- PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux☆37Mar 20, 2022Updated 3 years ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆306May 7, 2025Updated 9 months ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆42Apr 23, 2020Updated 5 years ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Sep 13, 2023Updated 2 years ago
- CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library☆165Oct 25, 2024Updated last year
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Search Index Database Reporter☆131Oct 28, 2025Updated 4 months ago
- Python web app for previewing data in a Chrome Profile Folder☆23Jul 1, 2024Updated last year
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Apr 30, 2025Updated 10 months ago
- A Windows registry file parser written in Rust☆41Oct 30, 2025Updated 4 months ago