macMRU-Parser Logo

macMRU-Parser

0
Free
Visit Website

Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human-friendly format. Dependencies: hexdump.py, ccl_bplist.py, mac_alias. Related Information: https://www.mac4n6.com/blog/2016/7/10/new-script-macmru-most-recently-used-plist-parser

FEATURES

ALTERNATIVES

A Windows Registry hive extraction library that reads and writes Windows Registry 'hive' binary files.

View physical memory as files in a virtual file system for easy memory analysis and artifact access.

A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.

A simple Golang application for storing NIST National Software Reference Library Reference Data Set (NSRL RDS) with md5 and sha1 hash lookup searches.

RegRippy is a modern Python 3 alternative to RegRipper for extracting data from Windows registry hives.

Scripts to automate the process of enumerating a Linux system through a Local File Inclusion (LFI) vulnerability.

A DFVFS backed viewer project with a WxPython GUI, aiming to enhance file extraction and viewing capabilities.

An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.