Recruit-CSIRT / macOSTriageToolLinks
A DFIR tool to collect artifacts on macOS
☆55Updated 5 years ago
Alternatives and similar repositories for macOSTriageTool
Users that are interested in macOSTriageTool are comparing it to the libraries listed below
Sorting:
- A DFIR tool to analyze artifacts on macOS☆33Updated 4 years ago
- R-CSIRT Linux Triage tool☆39Updated 6 years ago
- macOS Artifact Intelligence Tool☆13Updated 6 years ago
- A rewrite of mactime, a bodyfile reader☆37Updated 10 months ago
- CDIR Analyzer - parsers for data collected by CDIR Collector☆18Updated 2 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆16Updated last year
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Updated last year
- ☆23Updated 5 years ago
- Website crawler with YARA detection☆88Updated last year
- Windows Thingies in Python for live use.☆24Updated 6 years ago
- ☆24Updated 2 years ago
- A script to track malware IOCs with OSINT on Twitter.☆53Updated last year
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- Misc Tools for Virus Total Interaction☆35Updated 7 years ago
- XOR Key Extractor☆50Updated 10 months ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆42Updated 4 years ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆47Updated 3 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆27Updated 4 years ago
- ☆22Updated 8 months ago
- Queries for parsed spotlight database in sqlite☆12Updated 4 years ago
- Automatically exported from code.google.com/p/mac-osx-forensics☆28Updated 9 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆15Updated 4 years ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆21Updated this week
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Converting data from services like Censys and Shodan to a common data model☆49Updated 9 months ago