Alternatives and similar repositories for macosac:

Users that are interested in macosac are comparing it to the libraries listed below

• mnrkbys / ma2tl
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆91Updated last year
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆84Updated last year
• bradleyjkemp / sigma-esf
  Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework
  ☆20Updated 4 years ago
• nicoleibrahim / DSStoreParser
  macOS .DS_Store Parser
  ☆66Updated 3 years ago
• abrignoni / DFIR-SQL-Query-Repo
  Collection of SQL query templates for digital forensics use by platform and application.
  ☆102Updated 3 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆77Updated 9 months ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆29Updated 9 months ago
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆31Updated last year
• mandiant / macos-UnifiedLogs
  ☆232Updated 3 weeks ago
• moaistory / IE10Analyzer
  http://moaistory.blogspot.com/2016/08/ie10analyzer.html
  ☆16Updated 7 months ago
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆50Updated 7 months ago
• Lazza / Fuji
  MacOS forensic acquisition made simple
  ☆78Updated this week
• markmckinnon / cLeapp
  Chrome Logs Events and Protobuf Parser
  ☆36Updated 2 years ago
• stark4n6 / SQLiteWalker
  Python script to walk a folder or a zip file for SQLite Databases
  ☆38Updated last year
• jankais3r / Forensic-Version-Checker
  Script that checks for available updates for the most commonly used Digital Forensics tools
  ☆58Updated 4 years ago
• abrignoni / VLEAPP
  Vehicle Logs Events And Properties Parser
  ☆81Updated 3 weeks ago
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆28Updated 9 years ago
• AXYS-Cyber / iCatch
  A utility to process the iOS Cache.sqlite database and create a timelined KML map for use in Google Earth
  ☆26Updated 2 months ago
• dod-cyber-crime-center / sqlite-dissect
  DC3 SQLite Dissect
  ☆59Updated 3 months ago
• Broctets-and-Bytes / Darwin
  Scripts for MacOS related tasks.
  ☆18Updated 5 years ago
• AndrewRathbun / KAPE-EZToolsAncillaryUpdater
  A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…
  ☆55Updated 2 weeks ago
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆84Updated 9 months ago
• cclgroupltd / ccl-segb
  Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.
  ☆18Updated 8 months ago
• EricZimmerman / SQLECmd
  ☆48Updated last week
• abrignoni / RLEAPP
  Returns Logs Events And Properties Parser
  ☆101Updated 3 weeks ago
• richiercyrus / Venator-Swift
  Swift Command line tool used for proactive detection of malicious activity on macOS systems.
  ☆68Updated 4 years ago
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆48Updated last year
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆54Updated 5 months ago
• flamusdiu / xleapp
  xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP
  ☆50Updated last week
• WithSecureLabs / macOSTriageCollectionScript
  A triage data collection script for macOS
  ☆27Updated 4 years ago