bolodev / osxripper

Related projects ⓘ

Alternatives and complementary repositories for osxripper

• ydkhatri / spotlight_queries
  Queries for parsed spotlight database in sqlite
  ☆11Updated 3 years ago
• bradleyjkemp / sigma-esf
  Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework
  ☆20Updated 3 years ago
• mcarmanize / esfriend
  A minimal malware analysis sandbox for macOS
  ☆26Updated last year
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated 3 months ago
• WithSecureLabs / macOSTriageCollectionScript
  A triage data collection script for macOS
  ☆26Updated 3 years ago
• mdegrazia / Google-Analytic-Cookie-Cruncher
  Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values
  ☆23Updated 8 years ago
• forensicmatt / RustyReg
  Registry to JSON. This Project is for learning purposes and is not maintained.
  ☆12Updated 2 years ago
• mdegrazia / Chrome-Parse
  Parse Chrome History and Downloads into TSV or TLN format
  ☆15Updated 8 years ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆26Updated 6 months ago
• zerber0s / mac_int
  macOS Artifact Intelligence Tool
  ☆13Updated 5 years ago
• cclgroupltd / chrome-profile-view
  Python web app for previewing data in a Chrome Profile Folder
  ☆16Updated 4 months ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆32Updated 9 months ago
• tedsmith / NSRL-Stripper
  A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database
  ☆14Updated 3 years ago
• net-protect / google-fs-recover
  Google Filestream Forensic Tool
  ☆16Updated 2 years ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• daguy666 / Transit
  MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.
  ☆20Updated 4 years ago
• nrvana / macOS-triage
  macOS triage is a python script to collect various macOS logs, artifacts, and other data.
  ☆26Updated 3 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆39Updated 4 years ago
• randomaccess3 / 4n6_stuff
  Git for me to put all my forensics stuff
  ☆21Updated 2 months ago
• woanware / volatility-runner
  volatility-runner is a command line application designed to speed up memory forensics using the volatility framework, primarily for insta…
  ☆11Updated 5 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 7 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated last year
• serrastusbear / NewDomainSearch
  Script to pull newly-registered domains and check for similarity against a provided word list.
  ☆13Updated 4 years ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 3 years ago
• 00010111 / gMetaDataParse
  ☆19Updated last year
• ydkhatri / jarp
  Just Another broken Registry Parser (JARP)
  ☆16Updated 5 months ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• mandiant / ARDvark
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆34Updated last year
• strozfriedberg / plistutils
  Python utilities related to plists
  ☆52Updated 10 months ago