Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human-friendly format. Dependencies: hexdump.py, ccl_bplist.py, mac_alias. Related Information: https://www.mac4n6.com/blog/2016/7/10/new-script-macmru-most-recently-used-plist-parser
FEATURES
SIMILAR TOOLS
A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.
A library for accessing and parsing Microsoft Internet Explorer cache files (index.dat) to extract URLs, timestamps, and cached content for digital forensic analysis.
A library to access the Windows New Technology File System (NTFS) format with read-only support for NTFS versions 3.0 and 3.1.
A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes.
A library for accessing and parsing Windows NT Registry File (REGF) format files, designed for digital forensics and registry analysis applications.
A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems.
A comprehensive incident response tool for Windows computers, providing advanced memory forensics and access to locked systems.