A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight, Unified Logs, user data and many more, while preserving the original macOS file system structure. Ideal for incident response, digital forensics, and security investigations.
☆41Oct 24, 2025Updated 5 months ago
Alternatives and similar repositories for Mac-Triage
Users that are interested in Mac-Triage are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- macOS Artifacts☆33Mar 2, 2025Updated last year
- Contains compiled binaries of Volatility☆36May 18, 2025Updated 10 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing☆41Feb 28, 2026Updated last month
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspect…☆228Mar 21, 2026Updated 3 weeks ago
- Forensics artifacts collection☆21Jun 18, 2021Updated 4 years ago
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆21Jul 18, 2023Updated 2 years ago
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- /ˈhäjˌpäj/ "a confused mixture."☆13Updated this week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Hunt for SQLite files used by various applications☆31Mar 1, 2026Updated last month
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 5 months ago
- Windows Forensics Salt States☆21Updated this week
- Chiron Unpacker, developed by the Malwation MTR Team, is an Unpacker for Packers using the Assembly.Load function.☆22Oct 10, 2024Updated last year
- Configure Internal iOS Settings, like SpringBoard, Carrier Settings, Mobile Asset Settings.☆10Mar 6, 2019Updated 7 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches☆16Nov 29, 2024Updated last year
- Automation tool designed to simplify the analysis of PCAP (Packet Capture) files☆18Mar 31, 2026Updated 2 weeks ago
- Zeromutarts Capture the Flag 2013 challenge writeups☆22Dec 9, 2013Updated 12 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- The API for CVEs and USNs data.☆20Apr 8, 2026Updated last week
- The repository contains three lists. You only need to use one. Global proxy list or proxy list from RU, BU, KZ or proxy list by RU region☆10Mar 27, 2026Updated 2 weeks ago
- Klara docker compose☆11May 19, 2020Updated 5 years ago
- 🌍 🛜 Native AppleTV tvOS 17+ VPN Profiles IKEv2 IPSec PPP L2TP PPTP and 🔐 Secure DNS-over-TLS/QUIC and DNS-over-HTTPS☆13Sep 27, 2023Updated 2 years ago
- ☆25Jul 23, 2024Updated last year
- Injecting DLL into LSASS at boot☆156Apr 29, 2025Updated 11 months ago
- iOS Carrier Bundles - Collected using a GitHub Workflow☆24Mar 24, 2026Updated 3 weeks ago
- ☆24Mar 12, 2025Updated last year
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆65Dec 18, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Scripts, configuration, and other setup information for my Mac.☆15Mar 30, 2026Updated 2 weeks ago
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 8 months ago
- macOS .DS_Store Parser☆79Aug 17, 2021Updated 4 years ago
- ☆28Oct 15, 2025Updated 6 months ago
- A series of scripts to harden macOS 26.x (Tahoe)☆20Mar 20, 2026Updated 3 weeks ago
- AWS X-Ray for Covert Command & Control☆45Oct 13, 2025Updated 6 months ago
- Browser Reviewer is a portable forensic tool for analyzing user activity in Firefox and Chrome-based browsers. It extracts and displays b…☆55Oct 10, 2025Updated 6 months ago