jjarava / mac-osx-forensicsLinks
Automatically exported from code.google.com/p/mac-osx-forensics
☆28Updated 9 years ago
Alternatives and similar repositories for mac-osx-forensics
Users that are interested in mac-osx-forensics are comparing it to the libraries listed below
Sorting:
- Forensic Artifact Collection Tool for macOS☆113Updated last month
- A parser for Unified logging tracev3 files☆92Updated last month
- Slides and material from my conference presentations☆16Updated last year
- Script that checks for available updates for the most commonly used Digital Forensics tools☆59Updated 4 years ago
- A DFIR tool to collect artifacts on macOS☆55Updated 5 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆16Updated last year
- Carves and recreates VSS catalog and store from Windows disk image.☆99Updated 2 years ago
- Comae Hibernation File Decompressor☆154Updated 2 years ago
- Python library for parsing AccessData AD1 images☆33Updated 2 years ago
- macOS Artifact Intelligence Tool☆13Updated 6 years ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Updated last year
- A small tool to easily mount APFS image on macOS for forensics.☆16Updated 5 years ago
- Windows link file (shortcuts) examiner☆68Updated last year
- Yet another registry parser☆134Updated 3 years ago
- AFF4 Standard Documents☆29Updated 3 years ago
- Norimaci is a simple and lightweight malware analysis sandbox for macOS☆70Updated 5 years ago
- Command line utility and Python package to ease the (un)mounting of forensic disk images☆124Updated 2 years ago
- Different DFIR and CTI utilities☆37Updated 5 years ago
- machofile is a module to parse Mach-O binary files☆87Updated 3 weeks ago
- Parses the WMI object database....looking for persistence☆33Updated 5 years ago
- Yara Based Detection Engine for web browsers☆49Updated 3 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆21Updated 6 years ago
- A sort of a toolkit to decrypt Dropbox Windows DBX files☆30Updated 8 years ago
- Scripts for MacOS related tasks.☆18Updated 5 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- Scripts to extract compound bplists in the iOS -> KnowledgeC.db -> structuredmetadata table.☆27Updated 6 years ago
- ☆15Updated 2 years ago
- unXOR will search a XORed file and try to guess the key using known-plaintext attacks.☆143Updated 5 years ago
- Parse Manifest.mbdb files from iTunes backup directories☆20Updated 8 years ago
- Dashboards for conducting forensic investigation using windows events in Kibana☆18Updated 6 years ago