DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspection, lateral movement tracking, persistence detection, and VirusTotal enrichment.
macos dfir virustotal mft-parser threathunting incidentresponse threatdetection digitalforensics timelineanalysis forensicstriage ntfs-forensics
-
Updated
Mar 18, 2026 - JavaScript