cedowens / MacShellSwift

Related projects ⓘ

Alternatives and complementary repositories for MacShellSwift

• xorrior / macOSTools
  macOS Offensive Tools
  ☆261Updated last year
• XMCyber / MacHound
  ☆99Updated 3 years ago
• CyborgSecurity / PoisonApple
  macOS persistence tool
  ☆221Updated 2 years ago
• its-a-feature / bifrost
  Objective-C library and console to interact with Heimdal APIs for macOS Kerberos
  ☆139Updated last year
• cedowens / SwiftBelt
  A macOS enumeration tool inspired by harmjoy's Windows-based Seatbelt enumeration tool. Author: Cedric Owens
  ☆317Updated 2 years ago
• cedowens / Swift-Attack
  Unit tests for blue teams to aid with building detections for some common macOS post exploitation methods.
  ☆104Updated 2 years ago
• D00MFist / PersistentJXA
  Collection of macOS persistence methods and miscellaneous tools in JXA
  ☆261Updated last year
• its-a-feature / LockSmith
  ObjectiveC CLI tool for interacting with macOS Keychain
  ☆74Updated 2 years ago
• MythicAgents / orthrus
  Uses Apple's MDM protocol to backdoor a device with a malicious profile.
  ☆49Updated 3 years ago
• its-a-feature / HealthInspector
  JXA situational awareness helper by simply reading specific files on a filesystem
  ☆68Updated 2 years ago
• slyd0g / SwiftParseTCC
  Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format
  ☆38Updated 3 years ago
• cedowens / SwiftBelt-JXA
  JXA implementation of some SwiftBelt functions. Author: Cedric Owens
  ☆42Updated last year
• cedowens / EntitlementCheck
  Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…
  ☆91Updated 2 years ago
• its-a-feature / offensive_macos
  Tracking of offensive macOS tooling, blogs, and related helpful information
  ☆151Updated this week
• richiercyrus / Venator
  [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.
  ☆176Updated 4 years ago
• FSecureLABS / CalendarPersist
  JXA script to allow programmatic persistence via macOS Calendar.app alerts.
  ☆40Updated 4 years ago
• cedowens / Spotlight-Enum-Kit
  JXA and swift code that can perform some macOS situational awareness without generating TCC prompts.
  ☆38Updated 2 years ago
• cedowens / Mythic-Macro-Generator
  Python3 script to generate a macro to launch a Mythic payload. Author: Cedric Owens
  ☆44Updated 3 years ago
• slyd0g / SwiftInMemoryLoading
  Swift implementation of in-memory Mach-O loading on macOS
  ☆61Updated 2 years ago
• xorrior / poseidon
  Apfell Golang macOS/Linux/Windows implant
  ☆88Updated 3 years ago
• MythicAgents / typhon
  Payload designed for targeting Jamf enrolled devices.
  ☆35Updated last year
• FuzzySecurity / BlueHatIL-2020
  BlueHatIL 2020 - Staying # and Bringing Covert Injection Tradecraft to .NET
  ☆143Updated 4 years ago
• ChiChou / sploits
  PoC
  ☆210Updated 4 months ago
• richiercyrus / Venator-Swift
  Swift Command line tool used for proactive detection of malicious activity on macOS systems.
  ☆68Updated 4 years ago
• cedowens / Inject_Dylib
  Swift code to programmatically perform dylib injection
  ☆50Updated 2 years ago
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆48Updated 9 months ago
• breakpointHQ / TCC-ClickJacking
  A proof of concept for a clickjacking attack on macOS.
  ☆94Updated 9 months ago