A ruleset to find potentially malicious code in macOS malware samples
☆40Aug 29, 2023Updated 2 years ago
Alternatives and similar repositories for macos-ttps-yara
Users that are interested in macos-ttps-yara are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Mapping XProtect's obfuscated malware family names to common industry names.☆94Nov 14, 2025Updated 7 months ago
- Rules Shared by the Community from 100 Days of YARA 2023 -☆18Apr 10, 2023Updated 3 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆13Mar 21, 2024Updated 2 years ago
- machofile is a module to parse Mach-O binary files☆97Feb 10, 2026Updated 4 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Desktop application for MacOS calling Microsoft Graph. It's written in swift and uses the Microsoft identity platform☆12Jan 12, 2024Updated 2 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆26Mar 25, 2021Updated 5 years ago
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆22Jan 22, 2021Updated 5 years ago
- ☆57Jul 1, 2024Updated 2 years ago
- Casting light on shadow cloud deployments. Detect exposure of resources deployed in AWS or GCP.☆27Apr 19, 2026Updated 2 months ago
- A triage data collection script for macOS☆30Nov 27, 2020Updated 5 years ago
- Synapse Rapid Power-up for SinkDB☆11Jun 24, 2025Updated last year
- Track Apple software update changes with Github Actions☆27Feb 11, 2022Updated 4 years ago
- macOS Endpoint Security Message Analysis Tool☆47Jan 31, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆40Oct 29, 2024Updated last year
- macOS Security Research☆122Mar 15, 2024Updated 2 years ago
- A cross platform parser for Apple UnifiedLogs!☆360Jun 28, 2026Updated last week
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆83Nov 21, 2023Updated 2 years ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆67Feb 1, 2024Updated 2 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- Mach-O file format reader, written entirely in Swift☆13May 10, 2020Updated 6 years ago
- Backup☆10Jun 16, 2026Updated 3 weeks ago
- ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).☆125Apr 14, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆15Oct 24, 2024Updated last year
- ☆12Jun 22, 2022Updated 4 years ago
- A malware scanner with Yara and ClamAV binding☆12May 23, 2026Updated last month
- Welcome to the Pressidium® Yara Rules repository. This section contains a carefully curated collection of Yara rules specifically designe…☆19Nov 5, 2023Updated 2 years ago
- ☆66May 21, 2024Updated 2 years ago
- Extracted Yara rules from Windows Defender mpavbase and mpasbase☆532May 14, 2026Updated last month
- Parser fo macOS/iOS FSEvents Logs☆46May 6, 2024Updated 2 years ago
- A PowerShell Module Dedicated to Reverse Engineering☆15Jan 17, 2020Updated 6 years ago
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆68Jul 1, 2020Updated 6 years ago
- JXA situational awareness helper by simply reading specific files on a filesystem☆82Feb 17, 2026Updated 4 months ago
- Aftermath is a free macOS IR framework☆589Sep 25, 2025Updated 9 months ago
- Presentation materials for talks I've given.☆20Oct 14, 2019Updated 6 years ago
- Exploit for CVE-2023-38571☆13Sep 27, 2023Updated 2 years ago
- ☆83Oct 2, 2025Updated 9 months ago
- Public Maltego Transforms☆24May 24, 2017Updated 9 years ago