Alternatives and similar repositories for APFS_010

Users that are interested in APFS_010 are comparing it to the libraries listed below

• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆70Updated 4 years ago
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆96Updated 4 months ago
• knightsc / XProtect
  macOS XProtect definition files
  ☆40Updated 3 years ago
• n0fate / iChainbreaker
  Breaking the iCloud Keychain Artifacts
  ☆104Updated last year
• ydkhatri / Presentations
  Slides and material from my conference presentations
  ☆16Updated last year
• mnrkbys / bgiparser
  A parsing tool for backgrounditems.btm
  ☆53Updated last year
• rickmark / mojo_thor
  Research about malware that infects the EFI and SMC of Apple MacBooks.
  ☆62Updated 7 months ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 5 years ago
• vastlimits / esmat
  macOS Endpoint Security Message Analysis Tool
  ☆47Updated 3 years ago
• AlfredoAbarca / OSXMon
  OSX Events Monitor
  ☆22Updated 7 years ago
• objective-see / Mach-O
  A (basic) Mach-O Library
  ☆22Updated 4 years ago
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆28Updated 9 years ago
• cugu / afro
  File recovery for APFS
  ☆161Updated 3 years ago
• ydkhatri / spotlight_parser
  Read and extract data from macOS spotlight databases
  ☆124Updated 3 months ago
• Magpol / HowTo-decrypt-Signal.sqlite-for-IOS
  Decrypt signal.sqlite IOS
  ☆52Updated 5 years ago
• mdegrazia / OSX-QuickLook-Parser
  Parse the Mac Quickook index.sqlite database
  ☆55Updated 9 years ago
• slyd0g / SwiftParseTCC
  Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format
  ☆40Updated 4 years ago
• strozfriedberg / plistutils
  Python utilities related to plists
  ☆55Updated last month
• bx / machO-tools
  ☆62Updated 8 years ago
• Recruit-CSIRT / macApfsMounter
  A small tool to easily mount APFS image on macOS for forensics.
  ☆16Updated 5 years ago
• LinusHenze / Unrootless-Kext
  A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.
  ☆79Updated 5 years ago
• knightsc / EndpointSecurity
  A module to expose the Endpoint Security library to Swift
  ☆20Updated 6 years ago
• abrignoni / iOS-Snapshot-Triage-Parser
  ☆19Updated 6 years ago
• mattshockl / CVE-2020-9934
  CVE-2020–9934 POC
  ☆23Updated 5 years ago
• melomac / Hopper
  Hopper Disassembler scripts for OS X
  ☆75Updated 2 years ago
• ydkhatri / nska_deserialize
  NSKeyedArchive plist deserializer
  ☆28Updated last year
• Jinmo / applescript-disassembler
  A simple run-only applescript disassembler
  ☆132Updated 3 years ago
• cugu / apfs.ksy
  APFS filesystem format for Kaitai Struct
  ☆82Updated 3 years ago
• axelexic / CSOps
  Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.
  ☆80Updated last year
• ParasiteTeam / kext
  Parasite.kext
  ☆35Updated 9 years ago