a1l4m / Mac-TriageLinks
A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight, Unified Logs, user data and many more, while preserving the original macOS file system structure. Ideal for incident response, digital forensics, and security investigations.
☆28Updated 3 weeks ago
Alternatives and similar repositories for Mac-Triage
Users that are interested in Mac-Triage are comparing it to the libraries listed below
Sorting:
- Contains compiled binaries of Volatility☆37Updated 6 months ago
- Quick ESXi Log Parser☆28Updated last month
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆67Updated 2 years ago
- Tools and scripts to deploy and manage OpenRelik instances☆14Updated 5 months ago
- ☆27Updated last month
- A tool for fetching DFIR and other GitHub tools.☆24Updated 3 months ago
- ☆22Updated 2 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 4 months ago
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆29Updated 10 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 11 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated 2 years ago
- ESXi Cyber Security Incident Response Script☆25Updated last year
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- Thor Artifacts for Velociraptor☆18Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- A Windows Event Log MCP☆37Updated 2 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆48Updated 8 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆56Updated 8 months ago
- ReWrite of AChoir in Go for Cross Platform☆42Updated last week
- A YARA & Malware Analysis Toolkit written in Rust.☆56Updated last month
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Updated 3 years ago
- ☆11Updated 2 years ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆73Updated 5 months ago
- A simple script to read the contents of a zip/tar/folder and extract metadata☆20Updated last month
- ☆20Updated last month
- macOS Artifacts☆33Updated 8 months ago
- my MSTICpy practice and custom tools repository☆11Updated 6 months ago
- ☆23Updated 8 months ago
- Detection rule validation☆40Updated 2 years ago