Splashtop Mac Logs
Overview
Section titled “Overview”Evidence: Splashtop Mac Logs
Description: Collect Splashtop Mac Application Logs
Category: Applications
Platform: aix
Short Name: splttmclg
Is Parsed: No
Sent to Investigation Hub: Yes
Collect File(s): Yes
Background
Section titled “Background”Splashtop is a remote desktop solution widely used in business environments. It stores logs in shared directories including streamer logs, business logs (often compressed as ZIP files), and user-specific Library logs.
Data Collected
Section titled “Data Collected”This collector gathers structured data about splashtop mac logs.
Collection Method
Section titled “Collection Method”This collector gathers Splashtop logs from Users/Shared locations (SplashtopStreamer text files and Splashtop Business archives) and user-specific Library/Logs directories.
Forensic Value
Section titled “Forensic Value”Splashtop logs are valuable for investigating remote access sessions, unauthorized connections, data transfers, and potential abuse of remote management tools. They help establish timelines of remote access activities often exploited in security incidents.