mnrkbys / macosac

Related projects ⓘ

Alternatives and complementary repositories for macosac

• mnrkbys / ma2tl
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆89Updated last year
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆80Updated 10 months ago
• nicoleibrahim / DSStoreParser
  macOS .DS_Store Parser
  ☆61Updated 3 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆75Updated 6 months ago
• mandiant / macos-UnifiedLogs
  ☆211Updated this week
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆49Updated 4 months ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆26Updated 6 months ago
• abrignoni / VLEAPP
  Vehicle Logs Events And Properties Parser
  ☆74Updated 4 months ago
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆31Updated last year
• markmckinnon / cLeapp
  Chrome Logs Events and Protobuf Parser
  ☆34Updated last year
• jankais3r / Forensic-Version-Checker
  Script that checks for available updates for the most commonly used Digital Forensics tools
  ☆57Updated 3 years ago
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆82Updated 6 months ago
• Digital-Forensics-Discord-Server / ArtifactParsers
  A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts
  ☆51Updated last week
• abrignoni / DFIR-SQL-Query-Repo
  Collection of SQL query templates for digital forensics use by platform and application.
  ☆100Updated 3 years ago
• bradleyjkemp / sigma-esf
  Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework
  ☆20Updated 3 years ago
• cclgroupltd / ccl-segb
  Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.
  ☆14Updated 5 months ago
• abrignoni / RLEAPP
  Returns Logs Events And Properties Parser
  ☆98Updated last month
• flamusdiu / xleapp
  xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP
  ☆48Updated this week
• Digital-Forensics-Discord-Server / LawEnforcementResources
  Resources provided by the community that can serve to be useful for Law Enforcement worldwide
  ☆98Updated 3 months ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆113Updated last month
• cheeky4n6monkey / iOS_sysdiagnose_forensic_scripts
  Scripts to parse various iOS sysdiagnose logs. Based upon the forensic research of Mattia Epifani, Heather Mahalik and Cheeky4n6monkey.
  ☆169Updated 2 years ago
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆270Updated last month
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆67Updated last year
• Lazza / Fuji
  Graphical interface for the forensic logical acquisition of Mac computers
  ☆64Updated 3 months ago
• dod-cyber-crime-center / sqlite-dissect
  DC3 SQLite Dissect
  ☆54Updated 2 weeks ago
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆48Updated 9 months ago
• AndrewRathbun / KAPE-EZToolsAncillaryUpdater
  A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…
  ☆53Updated last year