Mapping XProtect's obfuscated malware family names to common industry names.
☆94Nov 14, 2025Updated 4 months ago
Alternatives and similar repositories for XProtect-Malware-Families
Users that are interested in XProtect-Malware-Families are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A ruleset to find potentially malicious code in macOS malware samples☆41Aug 29, 2023Updated 2 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆22Mar 5, 2024Updated 2 years ago
- ☆56Jul 1, 2024Updated last year
- List of legitimate macOS apps doing not great things☆35Feb 11, 2022Updated 4 years ago
- macOS XProtect definition files☆40Mar 25, 2022Updated 4 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A cross platform parser for Apple UnifiedLogs!☆336Mar 8, 2026Updated 2 weeks ago
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆72Jan 12, 2021Updated 5 years ago
- Notifies the user when macOS Security components like Gatekeeper and XProtect have been updated☆61Mar 12, 2021Updated 5 years ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 5 months ago
- A module to expose the Endpoint Security library to Swift☆20Jul 10, 2019Updated 6 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆98Sep 14, 2022Updated 3 years ago
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆80Nov 21, 2023Updated 2 years ago
- Swift code to programmatically perform dylib injection☆53Oct 29, 2022Updated 3 years ago
- File Monitor Library (based on Apple's new Endpoint Security Framework)☆376Oct 9, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Desktop application for MacOS calling Microsoft Graph. It's written in swift and uses the Microsoft identity platform☆12Jan 12, 2024Updated 2 years ago
- macOS Security Research☆122Mar 15, 2024Updated 2 years ago
- Python scripts for parsing IDA TIL files.☆31Jul 16, 2021Updated 4 years ago
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆41Oct 29, 2024Updated last year
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated 2 years ago
- A user-mode application authorization system for MacOS written in Swift☆299Sep 18, 2020Updated 5 years ago
- This is a little plugin to copy disassembly in a way that is usable in YARA rules!☆48Apr 14, 2025Updated 11 months ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆67Jul 1, 2020Updated 5 years ago
- Process Monitor Library (based on Apple's new Endpoint Security Framework)☆494Oct 20, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- CVE-2022-22639: Get a Root Shell on macOS Monterey☆122Apr 5, 2022Updated 3 years ago
- Programmatic Electron fuse detection☆21Jul 2, 2024Updated last year
- a open source rat from china☆26Oct 28, 2016Updated 9 years ago
- Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" ma…☆528Feb 25, 2026Updated last month
- Swift 5 macOS agent☆113Jul 23, 2024Updated last year
- Parser fo macOS/iOS FSEvents Logs☆43May 6, 2024Updated last year
- A library to parse macOS FsEvents☆24Aug 28, 2022Updated 3 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Jul 18, 2018Updated 7 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Track Apple software update changes with Github Actions☆27Feb 11, 2022Updated 4 years ago
- Every OS X/ macOS white paper☆114Apr 14, 2020Updated 5 years ago
- ☆23Oct 22, 2025Updated 5 months ago
- Tiny tool to reveal notarized applications☆23Dec 25, 2018Updated 7 years ago
- osquery table extension that allows querying of information from the macOS private SystemPolicy.framework☆31Oct 29, 2021Updated 4 years ago
- Collection of macOS persistence methods and miscellaneous tools in JXA☆288Aug 3, 2023Updated 2 years ago
- information and tools to understand the internals of Apple’s operating systems☆194Feb 9, 2026Updated last month