Recruit-CSIRT / macOSTriageTool
A DFIR tool to collect artifacts on macOS
☆53Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for macOSTriageTool
- R-CSIRT Linux Triage tool☆37Updated 6 years ago
- A DFIR tool to analyze artifacts on macOS☆31Updated 3 years ago
- macOS Artifact Intelligence Tool☆13Updated 5 years ago
- Carves and recreates VSS catalog and store from Windows disk image.☆96Updated last year
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆13Updated 8 months ago
- A rewrite of mactime, a bodyfile reader☆36Updated 3 months ago
- VSCode extension for the YARA pattern matching language☆63Updated 10 months ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated last year
- A YARA Rule Performance Measurement Tool☆58Updated 8 months ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆43Updated 2 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆14Updated 4 years ago
- Providing timelines based on OSINT Reports☆32Updated last year
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆89Updated last year
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.☆20Updated 2 years ago
- ☆23Updated 5 years ago
- ☆54Updated 4 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆41Updated 3 years ago
- RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.☆68Updated 2 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆26Updated 3 years ago
- ☆24Updated 2 years ago
- A DFVFS Backed Forensic Viewer☆39Updated 4 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Malware similarity platform with modularity in mind.☆76Updated 3 years ago
- Website crawler with YARA detection☆88Updated last year
- Just Another broken Registry Parser (JARP)☆16Updated 5 months ago
- Script that checks for available updates for the most commonly used Digital Forensics tools☆57Updated 3 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Random hunting ordiented yara rules☆95Updated last year