1
mac_apt
mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support.
Free923
Free923
mac_apt
mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignmac_apt Description
mac_apt is a DFIR (Digital Forensics and Incident Response) tool designed to process Mac computer full disk images or live machines, extracting data and metadata crucial for forensic investigations. It is a Python-based framework with plugins for processing various artifacts like Safari internet history, network interfaces, and recently accessed files. Additionally, mac_apt now includes ios_apt for handling iOS images. It is cross-platform, supports multiple image formats, provides outputs in XLSX, CSV, TSV, and SQLite, and can handle compressed files. The tool also features native HFS and APFS parsing, reads Spotlight database and Unified Logging files, and supports macOS Big Sur sealed volumes.
mac_apt FAQ
Common questions about mac_apt including features, pricing, alternatives, and user reviews.
mac_apt is mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support. It is a Security Operations solution designed to help security teams with Mac Os.
mac_apt is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/ydkhatri/mac_apt/ for download and installation instructions.
Popular alternatives to mac_apt include:
1.APFS FUSE Driver for Linux - A read-only FUSE driver that enables Linux systems to mount and access Apple File System (APFS) volumes, including encrypted and fusion drives. (Free)
2.libfvde - A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems. (Free)
3.libfsapfs - A library and tools to access and analyze APFS file systems (Free)
4.AutoMacTC - Automated Mac Forensic Triage Collector (Free)
5.wxHexEditor - wxHexEditor is a free cross-platform hex editor and disk editor for editing binary files, disk devices, and logical drives with data manipulation and checksum calculation features. (Free)
Compare all mac_apt alternatives at https://cybersectools.com/alternatives/macapt
mac_apt is for security teams and organizations that need Mac Os. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations
Have more questions? Browse our categories or search for specific tools.
