Alternatives and similar repositories for dtformats

Users that are interested in dtformats are comparing it to the libraries listed below

• mnrkbys / macosac
  Forensic Artifact Collection Tool for macOS
  ☆110Updated 8 months ago
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆86Updated last year
• mandiant / macos-UnifiedLogs
  ☆248Updated this week
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆86Updated last year
• dlcowen / FSEventsParser
  Parser for OSX/iOS FSEvents Logs
  ☆251Updated 6 months ago
• cheeky4n6monkey / iOS_sysdiagnose_forensic_scripts
  Scripts to parse various iOS sysdiagnose logs. Based upon the forensic research of Mattia Epifani, Heather Mahalik and Cheeky4n6monkey.
  ☆194Updated 2 years ago
• EC-DIGIT-CSIRC / sysdiagnose
  Forensic toolkit for iOS sysdiagnose feature
  ☆201Updated this week
• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆69Updated 4 years ago
• libyal / libfshfs
  Library and tools to access the Mac OS Hierarchical File System (HFS)
  ☆37Updated 11 months ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆35Updated last year
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆51Updated last year
• Jinmo / applescript-disassembler
  A simple run-only applescript disassembler
  ☆125Updated 3 years ago
• ydkhatri / spotlight_parser
  Read and extract data from macOS spotlight databases
  ☆112Updated last month
• cugu / apfs.ksy
  APFS filesystem format for Kaitai Struct
  ☆82Updated 3 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆208Updated 5 months ago
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆28Updated 9 years ago
• cugu / afro
  File recovery for APFS
  ☆161Updated 3 years ago
• knightsc / XProtect
  macOS XProtect definition files
  ☆40Updated 3 years ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆201Updated 2 years ago
• mnrkbys / ma2tl
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆94Updated last year
• themittenmac / TrueTree
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆256Updated 9 months ago
• nmantani / FileInsight-plugins
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆161Updated 5 months ago
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆122Updated 2 years ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆203Updated 6 months ago
• kacos2000 / Queries
  SQLite queries
  ☆82Updated 2 years ago
• mac4n6 / Presentations
  Presentation Archives for my macOS and iOS Related Research
  ☆253Updated 2 months ago
• Omar-Ikram / EndpointSecurityDemo
  This is a complete Xcode project of the Endpoint Security Demo gist: https://gist.github.com/Omar-Ikram/8e6721d8e83a3da69b31d4c2612a68ba
  ☆19Updated 5 months ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated last year
• aaronst / macholibre
  Mach-O & Universal Binary Parser
  ☆148Updated 2 years ago
• vastlimits / esmat
  macOS Endpoint Security Message Analysis Tool
  ☆47Updated 3 years ago