jbradley89 / osx_incident_response_scripting_and_analysisView external linksLinks
Scripts from my book OS X Incident Response Scripting and Analysis -> https://www.amazon.com/dp/012804456X/ref=cm_sw_r_tw_dp_U_x_fQeLAb68REHCM
☆50Sep 23, 2016Updated 9 years ago
Alternatives and similar repositories for osx_incident_response_scripting_and_analysis
Users that are interested in osx_incident_response_scripting_and_analysis are comparing it to the libraries listed below
Sorting:
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆67Jul 1, 2020Updated 5 years ago
- Home to the ActorTrackr source code☆24Jun 21, 2017Updated 8 years ago
- Sysmon Tools for PowerShell☆12Aug 17, 2018Updated 7 years ago
- Auxiliary scripts for Incident Response with ELK☆11Oct 7, 2015Updated 10 years ago
- Viewstate Hidden Control Enumerator☆17Sep 12, 2013Updated 12 years ago
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- Helpful utility scripts for managing Mac OS clients with JAMF Casper JSS☆11May 12, 2016Updated 9 years ago
- Fetch all Honeypot☆12Oct 3, 2018Updated 7 years ago
- Synapse Rapid Power-up for SinkDB☆11Jun 24, 2025Updated 7 months ago
- ☆11Jun 30, 2016Updated 9 years ago
- Random code snippets☆11Oct 27, 2023Updated 2 years ago
- ☆11Oct 24, 2022Updated 3 years ago
- A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…☆12Jul 15, 2020Updated 5 years ago
- ☆15Oct 24, 2017Updated 8 years ago
- ☆13Feb 17, 2016Updated 9 years ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- Shareable Scripts for use in a Mac Support Environment☆14Oct 18, 2019Updated 6 years ago
- scripts and configs from .conf2016 talk on Hunting the Known Unknowns PowerShell Edition☆15Oct 25, 2016Updated 9 years ago
- A spot for scripts.☆28Feb 29, 2016Updated 9 years ago
- Mac App Update Management, via JAMFJSS☆15Feb 12, 2018Updated 8 years ago
- A Jamf Pro webhook simulator☆14Jul 3, 2017Updated 8 years ago
- SANS Hunting on the Cheap☆36Apr 12, 2016Updated 9 years ago
- Eddie Vetter - triage macOS applications for security research☆16May 24, 2021Updated 4 years ago
- rename☆19Jul 19, 2017Updated 8 years ago
- AutoMacTC: Automated Mac Forensic Triage Collector☆558Mar 31, 2022Updated 3 years ago
- Grab a Twitter user timeline for further processing (storing to Elasticsearch, highligthing, etc)☆41Aug 28, 2015Updated 10 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Apr 5, 2020Updated 5 years ago
- ☆18Jun 8, 2018Updated 7 years ago
- InvestigationPlaybookSpec☆71Sep 26, 2017Updated 8 years ago
- This is a Java program that calls the Jamf Pro API to collect scoping details.☆18Jul 26, 2021Updated 4 years ago
- Collection of Slides From My Conference Talks☆20Nov 21, 2022Updated 3 years ago
- ☆18Sep 13, 2021Updated 4 years ago
- (kinda) Malicious Outlook Reader☆19Mar 2, 2021Updated 4 years ago
- This repo holds the scripts and logic behind our DEPNotify process using WS1☆25Jul 7, 2021Updated 4 years ago
- Presentation materials for talks I've given.☆20Oct 14, 2019Updated 6 years ago
- Dashboard for use with JSS API.☆20Oct 16, 2016Updated 9 years ago
- force reinstall and remediation of broken Crowdstrike Falcon agents on macOS☆15Jun 17, 2022Updated 3 years ago
- Suite of tools to facilitate attacks against the Jamf macOS management platform.☆189Feb 10, 2021Updated 5 years ago
- Presentation Archives for my macOS and iOS Related Research☆261Mar 18, 2025Updated 10 months ago