Home / Incident Management / Digital Forensics / OSXCollector
OSXCollector

OSXCollector

Pricing: Free
Write a Review Visit Website
OSXCollector

What is OSXCollector

IE10Analyzer can parse and recover records from WebCacheV01.dat, providing detailed information and conversion capabilities.

OSXCollector: A Forensic Evidence Collection and Analysis Toolkit for OSX

OSXCollector is a toolkit designed for the collection and analysis of forensic evidence specifically for OSX systems.

The Collection Script Operates on Potentially Infected Machines

The collection script operates on a potentially infected machine and generates a JSON file that details the target machine. OSXCollector collects data from plists, SQLite databases, and the local file system. With the forensic collection in hand, an analyst can address questions such as: Is this machine infected? How did that malware arrive? What steps can I take to prevent and detect future infections? Yelp automates the analysis of most OSXCollector runs, transforming its output into a clear and actionable summary that highlights only the suspicious elements. To maximize the benefits of automated OSXCollector output analysis, check out the OSXCollector Output Filters project. The osxcollector.py is a single Python file that operates without any dependencies on a standard OSX machine, making it incredibly simple to execute the collection on any machine—no need to deal with brew, pip, configuration files, or environment variables. Just copy the single file onto the machine and run it: executing 'sudo osxcollector.py' is all it takes. For example: $ sudo osxcollector.py Wrote 35394 lines. Output in osx.
 

OSXCollector Reviews

Write a Review

No reviews yet. Be the first to review this tool!

Write a Review

Share your experience with OSXCollector tool and help others make informed decisions.

Featured

Specops Software
Free
Password Management

Specops Software View Specops Software

Specops Software empowers organizations to fortify their IT security by addressing the critical vulnerability of password management and authentication. As a premier vendor, Specops Software provides advanced solutions designed to proactively block weak passwords, enforce robust authentication protocols, and ensure compliance with stringent industry standards like CJIS and HITRUST. With deep native integration into Active Directory and on-premises data storage, Specops Software offers unparalleled security and control for sensitive business data.

Active Directory password policy auditing against compliance standards
Breached password detection for over 900 million known compromised passwords
Zero-trust access evaluation and enhancement
Infisical
Free
Password Management

Infisical View Infisical

Infisical is the premier open-source platform designed for unified management of secrets, certificates, and configurations across your entire organization. It seamlessly integrates into your development workflows, CI/CD pipelines, and cloud infrastructure, ensuring secure storage and automated injection of sensitive information. Empower your team with robust features like versioning, point-in-time recovery, comprehensive audit logging, and automated secret rotation for enhanced security and operational efficiency.

Open-source secrets management platform
Unified management of secrets, certificates, and configs
Seamless integration with development workflows and CI/CD
Click Studios
Free
Password Management

Click Studios View Click Studios

Click Studios is an Australian-based Agile software development company dedicated to evolving Passwordstate, their robust Enterprise Password Management solution. Continuously refined through customer insights and cybersecurity advancements, Passwordstate offers advanced features for secure sensitive information management and stringent compliance. Click Studios provides scalable, secure, and user-friendly password management solutions, empowering businesses globally with affordable and reliable access control.

Secure Enterprise Password Management
Continuous Feature Enhancement
Customer Feedback Driven Development

Similar Tools

Exterro
Free
Digital Forensics

Exterro View Exterro

Exterro is a comprehensive Legal Governance, Risk, and Compliance (Legal GRC) platform designed for in-house legal, privacy, and IT teams within Global 2000 and Am Law 200 organizations. By automating the intricate connections between privacy, legal operations, digital investigations, cybersecurity response, compliance, and information governance, Exterro empowers legal departments to proactively manage risks and achieve defensible outcomes. Trusted globally by corporations, law firms, government, and law enforcement agencies, Exterro drives successful, cost-effective risk management through its integrated GRC solution.

Unified Legal GRC Platform
Automated Privacy Management
Digital Investigations
Belkasoft
Free
Digital Forensics

Belkasoft View Belkasoft

Belkasoft provides advanced digital forensic solutions to public agencies, corporate security, and private investigators worldwide. Its flagship product, Belkasoft Evidence Center (BEC), empowers investigators to efficiently acquire, analyze, group, and present digital evidence. BEC is specifically designed for seamless teamwork and robust access control, offering powerful capabilities like remote data acquisition, advanced data carving, cross-case searching, and comprehensive incident investigation support.

Efficient Digital Evidence Acquisition
Comprehensive Data Analysis and Grouping
Streamlined Teamwork and Access Management
Zenduty
Free
Digital Forensics

Zenduty View Zenduty

A library to access and parse Windows Shortcut File (LNK) format.

YARALYZER
Free
Digital Forensics

YARALYZER View YARALYZER

Python forensic tool for extracting and analyzing information from Firefox, Iceweasel, and Seamonkey browsers.

YARA-Forensics
Free
Digital Forensics

YARA-Forensics View YARA-Forensics

A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.

xxUSBSentinel
Free
Digital Forensics

xxUSBSentinel View xxUSBSentinel

A console program for file recovery through data carving.