n0fate / OS-X-Continuity

Related projects ⓘ

Alternatives and complementary repositories for OS-X-Continuity

• AlfredoAbarca / OSXMon
  OSX Events Monitor
  ☆21Updated 6 years ago
• abrignoni / iOS-KnowledgeC-StructuredMetadata-Bplists
  Scripts to extract compound bplists in the iOS -> KnowledgeC.db -> structuredmetadata table.
  ☆22Updated 5 years ago
• erran / keyjacker
  Keyjacker enumerates Mac keychains and displays plain text passwords.
  ☆23Updated 7 years ago
• mac4n6 / Mac-Locations-Scraper
  macOS/iOS database location scraper to extract location data
  ☆77Updated 2 years ago
• n0fate / iChainbreaker
  Breaking the iCloud Keychain Artifacts
  ☆94Updated 10 months ago
• n0fate / walitean
  ☆33Updated 6 years ago
• sud0man / pac4mac
  Automatically exported from code.google.com/p/pac4mac
  ☆40Updated 5 years ago
• mac4n6 / HFSPlus_Resources
  Resources for HFS+ Forensics
  ☆35Updated 9 years ago
• ydkhatri / APFS_010
  010 template for apfs
  ☆24Updated 3 years ago
• secretsquirrel / kyphosis
  Find what's not loaded in memory on an executable (OS X/iOS only)
  ☆9Updated 8 years ago
• rickmark / mojo_thor
  Research about malware that infects the EFI and SMC of Apple MacBooks.
  ☆55Updated 8 months ago
• garrett-davidson / iOS-Backup-Forensics-Toolkit
  Decrypts local iOS backups and recreates file system, with a framework for automatically extracting useful information
  ☆40Updated 9 years ago
• matteyeux / ios-scripts
  Scripts I use to setup a new macOS or Linux machine for iOS research
  ☆16Updated 5 years ago
• libyal / libmodi
  Library and tools to access the Mac OS disk image formats
  ☆20Updated 4 months ago
• tienex / apfs
  Mount, dump and analyze APFS volumes and containers
  ☆40Updated 6 years ago
• LinusHenze / anyKextLoader
  anyKextLoader is a program that can be used to disable SIP without rebooting.
  ☆39Updated 8 years ago
• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆82Updated 6 years ago
• mac4n6 / iOS-Frequent-Locations-Dumper
  Dump the iOS Frequent Location binary plist files
  ☆82Updated 6 years ago
• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆64Updated 3 years ago
• secretsquirrel / Shmoocon2016
  Materials from presentation
  ☆20Updated 8 years ago
• gdbinit / diagnostic_service
  OS X rootkit loader version #1
  ☆18Updated 9 years ago
• tribalchicken / volatility-filevault2
  Volatility plugin to extract FileVault 2 VMK's
  ☆49Updated 3 years ago
• cclgroupltd / ccl-asl
  Python Module for parsing Apple ASL Logs
  ☆14Updated 8 years ago
• fmartingr / iosfu
  iOS forensics utility
  ☆12Updated 6 years ago
• obsidianforensics / SQUID
  "Fuzzy matching" for SQLite databases
  ☆29Updated 4 years ago
• npupyshev / bxdiff
  Patching utility that uses BXDIFF41 patch format.
  ☆27Updated 8 years ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated 11 months ago