cheeky4n6monkey / iOS_sysdiagnose_forensic_scriptsLinks

Scripts to parse various iOS sysdiagnose logs. Based upon the forensic research of Mattia Epifani, Heather Mahalik and Cheeky4n6monkey.

☆201

Alternatives and similar repositories for iOS_sysdiagnose_forensic_scripts

Users that are interested in iOS_sysdiagnose_forensic_scripts are comparing it to the libraries listed below

Sorting:

RealityNet / ios_triage
Bash script to extract data from a "chekcra1ned" iOS device
☆151Updated 5 years ago
ydkhatri / UnifiedLogReader
A parser for Unified logging tracev3 files
☆95Updated 3 months ago
EC-DIGIT-CSIRC / sysdiagnose
Forensic toolkit for iOS sysdiagnose feature
☆225Updated 2 weeks ago
mac4n6 / APOLLO
Apple Pattern of Life Lazy Output'er
☆622Updated last year
abrignoni / iOS-Mobile-Installation-Logs-Parser
☆67Updated 8 months ago
abrignoni / iOS-Snapshot-Triage-Parser
☆19Updated 6 years ago
abrignoni / iLEAPP
iOS Logs, Events, And Plist Parser
☆962Updated last week
jfarley248 / iTunes_Backup_Reader
Python 3 Script to parse out iTunes backups
☆188Updated 2 years ago
mandiant / macos-UnifiedLogs
A cross platform parser for Apple UnifiedLogs!
☆283Updated 2 weeks ago
AXYS-Cyber / iCatch
A utility to process the iOS Cache.sqlite database and create a timelined KML map for use in Google Earth
☆29Updated 10 months ago
pstirparo / mac4n6
Collection of forensics artifacts location for Mac OS X and iOS
☆339Updated 3 years ago
dlcowen / FSEventsParser
Parser for OSX/iOS FSEvents Logs
☆264Updated 10 months ago
edward-greybeard / iOS-UNF
Quick iOS Backup UnFunkerizor
☆21Updated 4 years ago
mac4n6 / Presentations
Presentation Archives for my macOS and iOS Related Research
☆257Updated 7 months ago
cclgroupltd / ccl-segb
Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.
☆26Updated last month
abrignoni / DFIR-SQL-Query-Repo
Collection of SQL query templates for digital forensics use by platform and application.
☆109Updated 4 years ago
RealityNet / iOS-Forensics-References
A curated list of iOS Forensics References, organized by folder with specific references (links to blog post, research paper, articles, a…
☆227Updated last year
ydkhatri / mac_apt
macOS (& ios) Artifact Parsing Tool
☆948Updated last week
ydkhatri / MacForensics
Scripts to process macOS forensic artifacts
☆202Updated last year
ydkhatri / spotlight_parser
Read and extract data from macOS spotlight databases
☆122Updated last month
mnrkbys / macosac
Forensic Artifact Collection Tool for macOS
☆117Updated 3 months ago
abrignoni / RLEAPP
Returns Logs Events And Properties Parser
☆120Updated last month
ydkhatri / nska_deserialize
NSKeyedArchive plist deserializer
☆27Updated last year
Banaanhangwagen / apfs2hashcat
Extract APFS hashes
☆36Updated 5 years ago
Magpol / HowTo-decrypt-Signal.sqlite-for-IOS
Decrypt signal.sqlite IOS
☆52Updated 5 years ago
prosch88 / UFADE
Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "adv…
☆307Updated last week
RealityNet / android_triage
Bash script to extract data from an Android device
☆259Updated 3 years ago
dod-cyber-crime-center / sqlite-dissect
DC3 SQLite Dissect
☆71Updated 11 months ago
abrignoni / VLEAPP
Vehicle Logs Events And Properties Parser
☆94Updated last month
kacos2000 / Queries
SQLite queries
☆85Updated 2 years ago