Presentation Archives for my macOS and iOS Related Research
☆261Mar 18, 2025Updated 11 months ago
Alternatives and similar repositories for Presentations
Users that are interested in Presentations are comparing it to the libraries listed below
Sorting:
- Dump the iOS Frequent Location binary plist files☆89Nov 4, 2018Updated 7 years ago
- Resources for HFS+ Forensics☆37Nov 15, 2015Updated 10 years ago
- Apple Pattern of Life Lazy Output'er☆635Feb 25, 2024Updated 2 years ago
- Collection of forensics artifacts location for Mac OS X and iOS☆343Nov 11, 2021Updated 4 years ago
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆108Feb 22, 2018Updated 8 years ago
- macOS/iOS database location scraper to extract location data☆88Oct 26, 2022Updated 3 years ago
- macOS (& ios) Artifact Parsing Tool☆1,003Updated this week
- Parser for OSX/iOS FSEvents Logs☆276Dec 4, 2024Updated last year
- Script to recover deleted entries in an SQLite database☆196Apr 12, 2016Updated 9 years ago
- Python Module for parsing Binary Property List and NSKeyedArchiver files☆84Feb 23, 2016Updated 10 years ago
- Collection of SQL query templates for digital forensics use by platform and application.☆112Apr 17, 2021Updated 4 years ago
- A script to mine SQLite databases for hidden gems that might be overlooked☆58Sep 19, 2020Updated 5 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆122May 29, 2024Updated last year
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Python utilities related to plists☆55Oct 28, 2025Updated 4 months ago
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- Forensic Scripts☆155Mar 28, 2025Updated 11 months ago
- A forensic evidence collection & analysis toolkit for OS X☆1,893Jun 19, 2019Updated 6 years ago
- A tool to find gadgets in the iOS kernelcache.☆33Jun 20, 2018Updated 7 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- A Windows Event Processing Utility☆47Feb 21, 2018Updated 8 years ago
- Discover USB device history for a specific user☆23Dec 28, 2015Updated 10 years ago
- iOS forensics utility☆12May 8, 2018Updated 7 years ago
- Example programs used in the automating DFIR series☆63Mar 4, 2019Updated 6 years ago
- A parser for Unified logging tracev3 files☆97Jul 25, 2025Updated 7 months ago
- A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database☆14Nov 19, 2021Updated 4 years ago
- iOS Logs, Events, And Plist Parser☆1,023Feb 12, 2026Updated 2 weeks ago
- Log Examination Tool☆27Oct 11, 2016Updated 9 years ago
- Page File analysis tools.☆131Dec 3, 2015Updated 10 years ago
- Read and extract data from macOS spotlight databases☆128Dec 7, 2025Updated 2 months ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Broken web app intentionally built with pentesting obstacles☆15Jun 21, 2019Updated 6 years ago
- Queries to parse sysmon event log file with microsoft logparser☆58Mar 31, 2015Updated 10 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆36Jun 1, 2023Updated 2 years ago
- ☆35Aug 4, 2018Updated 7 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 6 years ago
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- Forensic Scanner☆41Nov 29, 2012Updated 13 years ago