bolodev / osxripperLinks
Tool to rip system and user data from OSX and macOS
☆17Updated 2 years ago
Alternatives and similar repositories for osxripper
Users that are interested in osxripper are comparing it to the libraries listed below
Sorting:
- A triage data collection script for macOS☆28Updated 4 years ago
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆20Updated 4 years ago
- Queries for parsed spotlight database in sqlite☆12Updated 4 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆18Updated last year
- macOS Artifact Intelligence Tool☆13Updated 6 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆27Updated 4 years ago
- Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…☆14Updated 4 years ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆68Updated 5 years ago
- a collection of profiles for macOS designed for penetration testing or red teaming☆34Updated 6 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆35Updated 2 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆13Updated last year
- Parser fo macOS/iOS FSEvents Logs☆36Updated last year
- Python web app for previewing data in a Chrome Profile Folder☆22Updated last year
- ☆15Updated 6 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆16Updated 5 years ago
- parser for Google search strings☆38Updated 5 years ago
- Parser for Sdba memory pool tags☆18Updated 4 years ago
- Git for me to put all my forensics stuff☆22Updated 7 months ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Updated 3 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- ☆35Updated 7 years ago
- Disk Image Mounting Script☆10Updated 3 weeks ago
- Eddie Vetter - triage macOS applications for security research☆16Updated 4 years ago
- Windows 10 Live Information viewer☆36Updated 3 years ago
- Forensic Artifact Collection Tool for macOS☆113Updated last month
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Updated 8 months ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- A minimal malware analysis sandbox for macOS☆31Updated 2 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Updated last year
- Forensic cheatsheets for use with cheat☆15Updated 3 years ago