Kernel Extensions Info

Overview

Evidence: Kernel Extensions Info Description: Collect kernel extensions info Category: System Platform: macOS Short Name: kext Is Parsed: Yes Sent to Investigation Hub: Yes Collect File(s): No

Background

This collector gathers kernel extensions info information from the macOS system. This data is essential for understanding system activity, detecting security incidents, and investigating system-related events.## Data Collected

This collector gathers structured data about kernel extensions info.

Kernel Extensions Info Data

Field

Description

Example

ID

Primary key (auto-increment)

Name

Extension name

AdBlock

Version

Extension version

4.44.0

ID

Extension ID

gighmmpiobklfepjocnamgkkbiglidom

Enabled

Extension enabled

true

InstallDate

Install date

2023-10-15 14:30:25

UserID

User identifier

user123

Browser

Browser name

Chrome

Notes

This data may contain sensitive information that should be handled according to data protection requirements. Ensure proper chain of custody is maintained during collection and analysis.

PreviousIP Routes NextKernel Extensions

Last updated 17 minutes ago

Was this helpful?