libyal / dtformats

Related projects ⓘ

Alternatives and complementary repositories for dtformats

• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆80Updated 10 months ago
• mnrkbys / macosac
  Forensic Artifact Collection Tool for macOS
  ☆98Updated 2 months ago
• mandiant / macos-UnifiedLogs
  ☆212Updated this week
• dlcowen / FSEventsParser
  Parser for OSX/iOS FSEvents Logs
  ☆236Updated 8 months ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆188Updated last year
• ydkhatri / spotlight_parser
  Read and extract data from macOS spotlight databases
  ☆104Updated last year
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆120Updated last year
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆27Updated 8 years ago
• digitalsleuth / time_decode
  A timestamp and date decoder written for python 3
  ☆33Updated 3 months ago
• themittenmac / TrueTree
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆245Updated 2 months ago
• mac4n6 / Presentations
  Presentation Archives for my macOS and iOS Related Research
  ☆239Updated last month
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆82Updated 6 months ago
• msuhanov / regf
  Windows registry file format specification
  ☆325Updated 6 years ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated 6 months ago
• puffyCid / macos-fseventsd
  A library to parse macOS FsEvents
  ☆18Updated 2 years ago
• cheeky4n6monkey / iOS_sysdiagnose_forensic_scripts
  Scripts to parse various iOS sysdiagnose logs. Based upon the forensic research of Mattia Epifani, Heather Mahalik and Cheeky4n6monkey.
  ☆169Updated 2 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆130Updated 2 years ago
• cugu / afro
  File recovery for APFS
  ☆159Updated 2 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆201Updated last month
• cugu / apfs.ksy
  APFS filesystem format for Kaitai Struct
  ☆81Updated 2 years ago
• ydkhatri / MacForensics
  Scripts to process macOS forensic artifacts
  ☆181Updated 3 months ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆192Updated 2 weeks ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆26Updated 2 years ago
• dod-cyber-crime-center / sqlite-dissect
  DC3 SQLite Dissect
  ☆54Updated 2 weeks ago
• libyal / libfshfs
  Library and tools to access the Mac OS Hierarchical File System (HFS)
  ☆34Updated 4 months ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆26Updated 6 months ago
• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆64Updated 3 years ago
• nicoleibrahim / DSStoreParser
  macOS .DS_Store Parser
  ☆61Updated 3 years ago
• bring2lite / bring2lite
  ☆29Updated 4 years ago
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆48Updated 9 months ago