Scripts to parse various iOS sysdiagnose logs. Based upon the forensic research of Mattia Epifani, Heather Mahalik and Cheeky4n6monkey.
☆205Oct 29, 2022Updated 3 years ago
Alternatives and similar repositories for iOS_sysdiagnose_forensic_scripts
Users that are interested in iOS_sysdiagnose_forensic_scripts are comparing it to the libraries listed below
Sorting:
- Forensic toolkit for iOS sysdiagnose feature☆250Updated this week
- Bash script to extract data from a "chekcra1ned" iOS device☆159Jun 7, 2020Updated 5 years ago
- iOS Logs, Events, And Plist Parser☆1,039Updated this week
- Apple Pattern of Life Lazy Output'er☆640Feb 25, 2024Updated 2 years ago
- Forensic Scripts☆156Mar 28, 2025Updated 11 months ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 9 months ago
- ☆67Feb 19, 2025Updated last year
- A script to mine SQLite databases for hidden gems that might be overlooked☆58Sep 19, 2020Updated 5 years ago
- ☆22Oct 3, 2019Updated 6 years ago
- Fun with iOS☆13Aug 3, 2013Updated 12 years ago
- A parser for Unified logging tracev3 files☆97Jul 25, 2025Updated 7 months ago
- Forensic Artifact Collection Tool for macOS☆118Jul 28, 2025Updated 7 months ago
- Returns Logs Events And Properties Parser☆125Dec 24, 2025Updated 2 months ago
- A curated list of iOS Forensics References, organized by folder with specific references (links to blog post, research paper, articles, a…☆228Dec 1, 2023Updated 2 years ago
- Parser for OSX/iOS FSEvents Logs☆278Dec 4, 2024Updated last year
- MS Word (DOCx) Parsing Tool☆25Mar 14, 2026Updated last week
- Bash script to extract data from an Android device☆281Oct 28, 2022Updated 3 years ago
- macOS (& ios) Artifact Parsing Tool☆1,015Mar 8, 2026Updated last week
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- macOS .DS_Store Parser☆78Aug 17, 2021Updated 4 years ago
- Script to recover deleted entries in an SQLite database☆196Apr 12, 2016Updated 9 years ago
- Script to download and decrypt memories and MEO from Snapchat on IOS. Requires the keys for memories to be present in the keychain, as we…☆15Oct 31, 2022Updated 3 years ago
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆229Jan 6, 2026Updated 2 months ago
- Script to process PDF files☆21May 23, 2025Updated 9 months ago
- macOS forensic acquisition made simple☆234Mar 6, 2026Updated 2 weeks ago
- Proxy wired iOS internet connection and only allow cert server communication for safe agent signing☆13Aug 3, 2023Updated 2 years ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆52Jan 26, 2025Updated last year
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 9 months ago
- FQLite - SQLite Forensic Toolkit. FQLite is a tool to find and restore deleted records in SQlite databases. It therefore examines the dat…☆142Feb 20, 2026Updated last month
- A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.☆27Oct 27, 2019Updated 6 years ago
- Android Usagestats XML + Protobuf Parser☆28Oct 11, 2020Updated 5 years ago
- Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "adv…☆440Updated this week
- Tools for macOS Forensic Bootable media☆16May 20, 2020Updated 5 years ago
- The home of the BriMor Labs rdpieces Perl script that tries to rebuild parsed RDP Bitmap Cache images☆89Aug 29, 2023Updated 2 years ago
- Apple Encrypted Archive☆26Sep 26, 2025Updated 5 months ago
- ☆345Sep 23, 2025Updated 5 months ago
- ☆13Mar 18, 2023Updated 3 years ago
- A cross platform parser for Apple UnifiedLogs!☆334Mar 8, 2026Updated 2 weeks ago
- A script to convert a Cellebrite UFDR to the original file structure.☆74Mar 21, 2022Updated 4 years ago