jbradley89/osx_incident_response_scripting_and_analysis external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jbradley89/osx_incident_response_scripting_and_analysis

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jbradley89/osx_incident_response_scripting_and_analysis)

Close

jbradley89 / osx_incident_response_scripting_and_analysisView on GitHubMore

• External links
• Readme badge

Scripts from my book OS X Incident Response Scripting and Analysis -> https://www.amazon.com/dp/012804456X/ref=cm_sw_r_tw_dp_U_x_fQeLAb68REHCM

☆50Sep 23, 2016Updated 9 years ago

Alternatives and similar repositories for osx_incident_response_scripting_and_analysis

Users that are interested in osx_incident_response_scripting_and_analysis are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• richiercyrus / Venator-Swift

  View on GitHub
  Swift Command line tool used for proactive detection of malicious activity on macOS systems.
  ☆67Jul 1, 2020Updated 5 years ago
• captainGeech42 / synapse-sinkdb

  View on GitHub
  Synapse Rapid Power-up for SinkDB
  ☆11Jun 24, 2025Updated 10 months ago
• dougiep16 / actortrackr

  View on GitHub
  Home to the ActorTrackr source code
  ☆24Jun 21, 2017Updated 8 years ago
• wv8672 / AWS-Linux-Mem-Dump

  View on GitHub
  A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…
  ☆12Jul 15, 2020Updated 5 years ago
• haidermdost / Threat-Detection-Maturity-Framework

  View on GitHub
  ☆18Sep 13, 2021Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• johestephan / VerySimpleHoneypot

  View on GitHub
  Fetch all Honeypot
  ☆12Oct 3, 2018Updated 7 years ago
• mattreduce / eddie

  View on GitHub
  Eddie Vetter - triage macOS applications for security research
  ☆16May 24, 2021Updated 4 years ago
• mlnrt / incident-response-and-forensic

  View on GitHub
  Incident Response and Forensic on AWS
  ☆20May 19, 2020Updated 5 years ago
• brysontyrrell / Jook

  View on GitHub
  A Jamf Pro webhook simulator
  ☆14Jul 3, 2017Updated 8 years ago
• mattulm / volgui

  View on GitHub
  rename
  ☆19Jul 19, 2017Updated 8 years ago
• pereljon / Casper-Scripts

  View on GitHub
  Helpful utility scripts for managing Mac OS clients with JAMF Casper JSS
  ☆11May 12, 2016Updated 9 years ago
• mac4n6 / Presentations

  View on GitHub
  Presentation Archives for my macOS and iOS Related Research
  ☆263Mar 18, 2025Updated last year
• tmhoule / AppUpdates

  View on GitHub
  Mac App Update Management, via JAMFJSS
  ☆14Feb 12, 2018Updated 8 years ago
• target / casper-auto-provisioning

  View on GitHub
  ☆13Feb 17, 2016Updated 10 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• paulpc / quickIR

  View on GitHub
  Auxiliary scripts for Incident Response with ELK
  ☆11Oct 7, 2015Updated 10 years ago
• michael-yip / MaltegoVT

  View on GitHub
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆82Nov 29, 2015Updated 10 years ago
• pstirparo / mac4n6

  View on GitHub
  Collection of forensics artifacts location for Mac OS X and iOS
  ☆345Nov 11, 2021Updated 4 years ago
• t-lark / Falcon-Punch

  View on GitHub
  force reinstall and remediation of broken Crowdstrike Falcon agents on macOS
  ☆14Jun 17, 2022Updated 3 years ago
• joxeankoret / deeptoad

  View on GitHub
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Apr 5, 2020Updated 6 years ago
• primalcurve / macsupportpub

  View on GitHub
  Shareable Scripts for use in a Mac Support Environment
  ☆14Oct 18, 2019Updated 6 years ago
• xme / tweetsniff

  View on GitHub
  Grab a Twitter user timeline for further processing (storing to Elasticsearch, highligthing, etc)
  ☆41Aug 28, 2015Updated 10 years ago
• mondada / kinobi

  View on GitHub
  An external patch definition server for Jamf Pro
  ☆76Oct 14, 2021Updated 4 years ago
• ninxsoft / Jade-CLI

  View on GitHub
  A Mac command-line tool that automatically downloads your Jamf assets.
  ☆24Dec 5, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• cedowens / Presentations

  View on GitHub
  Collection of Slides From My Conference Talks
  ☆21Nov 21, 2022Updated 3 years ago
• hacktics / vehicle

  View on GitHub
  Viewstate Hidden Control Enumerator
  ☆17Sep 12, 2013Updated 12 years ago
• AppOmni-Labs / event-maturity-matrix

  View on GitHub
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆30Apr 16, 2026Updated 3 weeks ago
• defnone / quickfeeds

  View on GitHub
  A simple self-hosted RSS reader with AI article summarization feature. 🧶☕️📜
  ☆10Apr 18, 2026Updated 3 weeks ago
• Foundstone / InvestigationPlaybookSpec

  View on GitHub
  InvestigationPlaybookSpec
  ☆71Sep 26, 2017Updated 8 years ago
• jgarcesres / git2jamf

  View on GitHub
  Github action to create, update and delete scripts in jamf
  ☆24Sep 12, 2025Updated 7 months ago
• krakow2600 / atomic-threat-coverage

  View on GitHub
  The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
  ☆25Aug 12, 2019Updated 6 years ago
• macadmins / ddm_examples

  View on GitHub
  Examples of DDM on macOS for use with kmfddm
  ☆18Jul 5, 2024Updated last year
• golbiga / macOS_Smartcard

  View on GitHub
  ☆23Apr 30, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• nopernik / mytools

  View on GitHub
  Some simple and useful tools
  ☆15May 8, 2018Updated 8 years ago
• acodega / macos

  View on GitHub
  Mac scripts unrelated to a specific MDM
  ☆22Feb 4, 2025Updated last year
• log2timeline / dftimewolf

  View on GitHub
  A framework for orchestrating forensic collection, processing and data export
  ☆347Updated this week
• anvilsecure / dawgmon

  View on GitHub
  dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software
  ☆55Nov 14, 2019Updated 6 years ago
• sonofagl1tch / MalwareResearch

  View on GitHub
  This directory contains random scripts from threat hunting or malware research
  ☆11Feb 15, 2018Updated 8 years ago
• sevickson / osquery_tables_graph

  View on GitHub
  Repository containing Jupyter Notebooks for working with OSQuery tables and data
  ☆17May 8, 2020Updated 6 years ago
• z3ndrag0n / forensicator-fate

  View on GitHub
  Bringing DevOps to Forensics
  ☆34Feb 4, 2015Updated 11 years ago