mdegrazia / OSX-QuickLook-Parser
Parse the Mac Quickook index.sqlite database
☆53Updated 8 years ago
Alternatives and similar repositories for OSX-QuickLook-Parser:
Users that are interested in OSX-QuickLook-Parser are comparing it to the libraries listed below
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆103Updated 7 years ago
- Resources for HFS+ Forensics☆35Updated 9 years ago
- OSX Events Monitor☆22Updated 6 years ago
- Audit Preference Pane and Log Reader for OS X☆39Updated 11 years ago
- A module to expose the Endpoint Security library to Swift☆20Updated 5 years ago
- Parser for OSX/iOS FSEvents Logs☆244Updated 3 months ago
- macOS XProtect definition files☆40Updated 2 years ago
- Automatically exported from code.google.com/p/pac4mac☆40Updated 6 years ago
- XProtect configuration files stats☆20Updated 7 years ago
- Decrypts local iOS backups and recreates file system, with a framework for automatically extracting useful information☆42Updated 9 years ago
- Dump the iOS Frequent Location binary plist files☆82Updated 6 years ago
- ☆62Updated 7 years ago
- Notifies the user when macOS Security components like Gatekeeper and XProtect have been updated☆61Updated 4 years ago
- Research about malware that infects the EFI and SMC of Apple MacBooks.☆57Updated last year
- Security Scanner for OSX☆42Updated 9 years ago
- Script to parse Safari Binary Cookies from Cookies.binarycookies file☆38Updated 7 years ago
- 010 template for apfs☆24Updated 4 years ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆68Updated 4 years ago
- Presentation Archives for my macOS and iOS Related Research☆242Updated 5 months ago
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆66Updated 4 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Updated 5 years ago
- Automatically exported from code.google.com/p/mac-osx-forensics☆28Updated 9 years ago
- Python Module for parsing Apple ASL Logs☆15Updated 8 years ago
- checks if an application is pristine (untampered) and from the official Mac App Store☆73Updated 4 years ago
- A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.☆78Updated 5 years ago
- iOS forensics utility☆12Updated 6 years ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆39Updated 3 years ago
- Binary property list (plist) parser☆49Updated 6 years ago
- Slides and material from my conference presentations☆15Updated 11 months ago
- Mapping XProtect's obfuscated malware family names to common industry names.☆84Updated 10 months ago