Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism.
☆80Nov 21, 2023Updated 2 years ago
Alternatives and similar repositories for Kronos
Users that are interested in Kronos are comparing it to the libraries listed below
Sorting:
- Take over macOS Electron apps' TCC permissions☆222Aug 12, 2023Updated 2 years ago
- Golang Tool to interact with Launchd and other services with XPC☆29May 7, 2020Updated 5 years ago
- ☆129Apr 25, 2023Updated 2 years ago
- Swift implementation of in-memory Mach-O loading on macOS☆68Jul 19, 2022Updated 3 years ago
- A macOS signed-app shim for running daemons with reliable capabilities.☆18Apr 23, 2025Updated 10 months ago
- One-Click to Completely Take Over A macOS Device☆18Aug 25, 2022Updated 3 years ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆67Jul 1, 2020Updated 5 years ago
- ☆56Jul 1, 2024Updated last year
- CoreFollowUp phishing attack on macOS☆15Mar 15, 2022Updated 3 years ago
- A proof of concept for a clickjacking attack on macOS.☆97Feb 12, 2024Updated 2 years ago
- Code lifting for executing a visionOS library os macOS using QBDL and QBDI☆21Sep 30, 2024Updated last year
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- Pet EDR Operation - A lightweight, open source EDR for Linux☆18Feb 21, 2026Updated last week
- My collection of PoCs☆26Nov 9, 2023Updated 2 years ago
- Sniff XPC communication using Frida and Go☆156Feb 10, 2026Updated 2 weeks ago
- An app to protect against process injection and suspicious file links on macOS☆230May 19, 2021Updated 4 years ago
- ☆29Apr 7, 2023Updated 2 years ago
- A Swift 5 implementation of Apple's proprietary BXDIFF50 patching algorithm used during OTA OS upgrades☆15Feb 16, 2021Updated 5 years ago
- ☆15May 26, 2021Updated 4 years ago
- XPC sniffer using LLDB☆50Oct 3, 2024Updated last year
- JXA script to allow programmatic persistence via macOS Calendar.app alerts.☆44Oct 31, 2020Updated 5 years ago
- ☆31Oct 14, 2025Updated 4 months ago
- Rust bindings for the Apple Silicon Hypervisor.framework☆52Jan 14, 2026Updated last month
- Swift code to run a dylib on disk☆16May 9, 2022Updated 3 years ago
- A Reflective Loader for macOS☆147Jul 20, 2025Updated 7 months ago
- CodeQL + DTrace = Memory Disclosure Vulnerabilities in XNU☆47Jul 10, 2023Updated 2 years ago
- Kass: A security research tool.☆98Nov 21, 2025Updated 3 months ago
- apple cve list☆162Feb 12, 2026Updated 2 weeks ago
- Published security vulnerabilities for Apple platform with linked public repositories☆32Jun 25, 2024Updated last year
- Swift 5 macOS agent☆114Jul 23, 2024Updated last year
- WTF Snapshot fuzzing of macOS targets☆98May 31, 2024Updated last year
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆98Sep 14, 2022Updated 3 years ago
- Articles and tools related to research in the Apple environment (mainly macOS).☆278Jan 9, 2026Updated last month
- A DNS Monitor, leveraging Apple's NEDNSProxyProvider/Network Extension Framework☆210Aug 20, 2024Updated last year
- Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware☆38Jun 26, 2025Updated 8 months ago
- Uses Apple's MDM protocol to backdoor a device with a malicious profile.☆57Oct 12, 2021Updated 4 years ago
- machofile is a module to parse Mach-O binary files☆94Feb 10, 2026Updated 2 weeks ago
- Enumerate Location Services using CoreLocation API on macOS☆18Dec 2, 2021Updated 4 years ago
- Scan your computer for applications that are either susceptible to dylib hijacking or have been hijacked.☆113Oct 11, 2025Updated 4 months ago