OS X Auditor
#Incident Management#Digital Forensics
A network forensics toolkit that transforms network traffic data into graph-based representations for interactive analysis and visualization through a web interface.
OS X Auditor is a
OS X Auditor is a free Mac OS X computer forensics tool that parses and hashes various artifacts on the system, including kernel extensions, system agents, users' files, installed applications, Safari and browser history, social and email accounts, WiFi access points, and more
It also checks for suspicious keywords in
plist files, verifies file reputation with Team Cymru's MHR, VirusTotal, and local databases, and aggregates logs into a zipball.