mnrkbys / ma2tlLinks
macOS forensic timeline generator using the analysis result DBs of mac_apt
☆95Updated 2 years ago
Alternatives and similar repositories for ma2tl
Users that are interested in ma2tl are comparing it to the libraries listed below
Sorting:
- Forensic Artifact Collection Tool for macOS☆114Updated 2 months ago
- JPCERT/CC public YARA rules repository☆110Updated 9 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆69Updated 2 years ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆54Updated 2 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆108Updated last week
- YARA rule analyzer to improve rule quality and performance☆103Updated 5 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- ReWrite of AChoir in Go for Cross Platform☆41Updated last month
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆103Updated 3 weeks ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆104Updated last year
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆80Updated 4 months ago
- Detection Engineering with YARA☆87Updated last year
- Chrome Logs Events and Protobuf Parser☆39Updated 2 years ago
- The core backend server handling API requests and task management☆47Updated last week
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 9 months ago
- A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight,…☆25Updated 7 months ago
- A YARA & Malware Analysis Toolkit written in Rust.☆51Updated 2 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- ☆68Updated last week
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆28Updated 2 years ago
- Information about the open-source-dfir slack community☆30Updated 2 years ago
- macOS Artifacts☆31Updated 7 months ago
- Just Another broken Registry Parser (JARP)☆16Updated last year
- Forensic Artifact Collection Tool Matrix☆90Updated 10 months ago
- Quick ESXi Log Parser☆26Updated 3 weeks ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆32Updated 3 years ago