System Extension Info

Overview

Evidence: System Extension Info Description: Collect system extension info Category: System Platform: macOS Short Name: sysext Is Parsed: Yes Sent to Investigation Hub: Yes Collect File(s): No

Background

This collector gathers system extension info information from the macOS system. This data is essential for understanding system activity, detecting security incidents, and investigating system-related events.## Data Collected

This collector gathers structured data about system extension info.

System Extension Info Data

Field

Description

Example

ID

Primary key (auto-increment)

Name

Extension name

AdBlock

Version

Extension version

4.44.0

ID

Extension ID

gighmmpiobklfepjocnamgkkbiglidom

Enabled

Extension enabled

true

InstallDate

Install date

2023-10-15 14:30:25

UserID

User identifier

user123

Browser

Browser name

Chrome

Notes

This data may contain sensitive information that should be handled according to data protection requirements. Ensure proper chain of custody is maintained during collection and analysis.

PreviousSudo Last Run NextSystem Integrity Protection Status

Last updated 18 minutes ago

Was this helpful?