cclgroupltd / ccl-asl
Python Module for parsing Apple ASL Logs
☆14Updated 8 years ago
Related projects: ⓘ
- A minimal malware analysis sandbox for macOS☆26Updated last year
- macOS XProtect definition files☆38Updated 2 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆21Updated 8 years ago
- OSX Events Monitor☆21Updated 6 years ago
- Automatically exported from code.google.com/p/mac-osx-forensics☆26Updated 8 years ago
- Volatility plugin to extract FileVault 2 VMK's☆49Updated 3 years ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆37Updated 3 years ago
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆100Updated 6 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆34Updated last year
- Why hunt when you can seine?☆21Updated 9 years ago
- ☆31Updated this week
- iOS Backup Examiner - A forensics tool for parsing an iOS backup's Info.plist file☆22Updated 7 years ago
- Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values☆23Updated 8 years ago
- New and Improved☆16Updated 8 years ago
- Golang command line tool for the macOS Endpoint Security Framework☆29Updated 4 years ago
- A small utility to read and write to Macs physical memory using default AppleHWAccess.kext.☆25Updated 9 years ago
- Resources for HFS+ Forensics☆35Updated 8 years ago
- XProtect configuration files stats☆20Updated 6 years ago
- Automatically exported from code.google.com/p/pac4mac☆39Updated 5 years ago
- machofile is a module to parse Mach-O binary files☆47Updated 7 months ago
- r2yara - Module for Yara using radare2 information☆33Updated 11 months ago
- ☆33Updated 12 years ago
- Set of utilities for getting information about Windows Events☆15Updated 6 years ago
- A collection of Volatility Framework plugins.☆26Updated 11 years ago
- ☆17Updated this week
- ☆16Updated this week
- RegRipper wrapper for simplified bulk parsing or registry hives☆10Updated 6 years ago
- Some thingy that copies macOS specific forensic artifacts to the location where the script is run from and also generates some folders. B…☆14Updated 2 years ago
- Tools for macOS Forensic Bootable media☆15Updated 4 years ago