mnrkbys / macosacLinks
Forensic Artifact Collection Tool for macOS
☆117Updated 2 months ago
Alternatives and similar repositories for macosac
Users that are interested in macosac are comparing it to the libraries listed below
Sorting:
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆95Updated 2 years ago
- Parser fo macOS/iOS FSEvents Logs☆38Updated last year
- A parser for Unified logging tracev3 files☆95Updated 3 months ago
- Chrome Logs Events and Protobuf Parser☆39Updated 2 years ago
- macOS .DS_Store Parser☆70Updated 4 years ago
- Norimaci is a simple and lightweight malware analysis sandbox for macOS☆70Updated 5 years ago
- Vehicle Logs Events And Properties Parser☆94Updated 3 weeks ago
- Digital Forensics Artifacts Knowledge Base☆86Updated last week
- Returns Logs Events And Properties Parser☆119Updated 3 weeks ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Updated last year
- Collection of SQL query templates for digital forensics use by platform and application.☆109Updated 4 years ago
- A triage data collection script for macOS☆28Updated 4 years ago
- Forensic toolkit for iOS sysdiagnose feature☆225Updated last week
- Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.☆25Updated last month
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆28Updated 5 months ago
- A cross platform parser for Apple UnifiedLogs!☆281Updated last week
- MacOS forensic acquisition made simple☆190Updated 2 months ago
- Script that checks for available updates for the most commonly used Digital Forensics tools☆59Updated 4 years ago
- Just Another broken Registry Parser (JARP)☆16Updated last year
- A utility to process the iOS Cache.sqlite database and create a timelined KML map for use in Google Earth☆29Updated 10 months ago
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆20Updated 4 years ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆47Updated 8 months ago
- DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…☆85Updated 10 months ago
- xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP☆53Updated this week
- Bash script for performing the logical acquisition of Apple Silicon Mac☆15Updated last year
- Automatically exported from code.google.com/p/mac-osx-forensics☆28Updated 9 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆16Updated 5 years ago
- http://moaistory.blogspot.com/2016/08/ie10analyzer.html☆17Updated last year
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆57Updated 4 months ago
- ☆54Updated 3 months ago