OS X Auditor
#Incident Management#Digital Forensics
A network forensics toolkit that transforms network traffic data into graph-based representations for interactive analysis and visualization through a web interface.
OS X Auditor: A Comprehensive Mac OS X Forensics Tool
OS X Auditor is a free tool designed for Mac OS X computer forensics. It analyzes and hashes various system artifacts, including kernel extensions, system agents, user files, installed applications, Safari and browser history, social media and email accounts, WiFi access points, and more.
It also checks for suspicious keywords in plist files
It checks for suspicious keywords in plist files, verifies the file's reputation using Team Cymru's MHR, VirusTotal, and local databases, and combines the logs into a zipball.