Trinity2019 / SimplePcap
A simple demonstration of the macOS Network Extension
☆15Updated 3 years ago
Alternatives and similar repositories for SimplePcap:
Users that are interested in SimplePcap are comparing it to the libraries listed below
- MacOS X process monitor using EndpointSecurity extension.☆35Updated 3 years ago
- A cross-platform library to parse Objective-C type encoding.☆42Updated 6 months ago
- Learn MacOS kernel extensions☆46Updated 7 years ago
- A Python script for lldb that prints an Objective-C block signature and disassemble its invoke function☆91Updated 11 years ago
- A project providing usefull classes for reverse engineering iOS Private APIs on-device☆45Updated 7 years ago
- A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).☆44Updated 2 months ago
- Guessed headers of non-public Apple SDK☆25Updated 2 months ago
- C++ library for com.apple.network.statistics kernel events on MacOS/OS X/Darwin☆21Updated 4 years ago
- An NSXPCConnection wrapper that does signature validation☆26Updated 11 months ago
- Experiment to attempt to build Apple's dyld tools.☆63Updated 4 years ago
- Sample code for macOS Extensions Part 3☆24Updated 5 years ago
- Inject a DyLib to an existing Mach-O file☆23Updated 9 years ago
- Macho Parser base on dyld (supported static/runtime)☆35Updated 6 years ago
- Tool for reverse-engineering Apple's sandbox☆56Updated 7 years ago
- Transform any ARM macho executable to a dynamic library☆22Updated 4 years ago
- Hooking & Executing Code with dlopen & dlsym ---Easy mode:hooking C methods☆12Updated 7 years ago
- This is a complete Xcode project of the Endpoint Security Demo gist: https://gist.github.com/Omar-Ikram/8e6721d8e83a3da69b31d4c2612a68ba☆19Updated 2 months ago
- Sniffing on port messages☆25Updated 8 years ago
- This project injects into Hopper Disassembler and exposes core functionality via a local server. It can be used to create automations/too…☆16Updated 3 years ago
- Objective-C wrapper around SecCertificateRef☆36Updated 11 months ago
- Re-implementation of NSProcessInfo+NSRunningApplication with all missed stuff (incl. Sandbox information and other things)☆37Updated 6 years ago
- do not debug me☆11Updated 5 years ago
- A command line arguments parser of Objective-C☆14Updated 7 months ago
- Decode the decrypted payload data in Apple App Store receipts.☆17Updated 9 years ago
- Enumerate processes using pid brute force technique☆1Updated 8 years ago
- Extensions for LLVM's JIT to run Objective-C and Swift code.☆37Updated 5 years ago
- Checks macOS for Kernel Task Port. It may help detect intrusive kexts that would leak the kernel task.☆21Updated last year
- CoreFollowUp phishing attack on macOS☆15Updated 2 years ago
- Example project demonstrating some kind of OpenSSL certificate pinning. Related to blogpost at TKTK showing how to bypass such pinning.☆19Updated 10 years ago
- Mach-O file parser.☆51Updated 6 months ago