droe / xnumon
monitor macOS for malicious activity
☆230Updated 5 years ago
Related projects: ⓘ
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆174Updated 4 years ago
- The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.☆81Updated 5 years ago
- Mac OS X Memory Analysis Toolkit☆161Updated 8 years ago
- Parser for OSX/iOS FSEvents Logs☆232Updated 5 months ago
- Presentation Archives for my macOS and iOS Related Research☆234Updated 2 years ago
- Every OS X/ macOS white paper☆114Updated 4 years ago
- ☆126Updated this week
- A kernel network manager with monitoring and limiting capabilities for macOS. #nsacyber☆103Updated 7 years ago
- example project, utilizing Proc Info library☆67Updated 3 years ago
- OpenBSM open audit implementation☆163Updated 11 months ago
- A simple auditing utility for macOS☆280Updated 3 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆21Updated 8 years ago
- The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo …☆46Updated 6 years ago
- ☆91Updated this week
- Mac OS X rootkit - for learning purposes☆126Updated 10 years ago
- XNU Rootkit Framework☆123Updated 9 years ago
- A macOS <= 10.14.3 Keychain exploit☆247Updated 5 years ago
- process info/monitoring library for macOS☆413Updated 3 years ago
- Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedri…☆114Updated 3 years ago
- macOS Offensive Tools☆258Updated 11 months ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 4 years ago
- Collection of forensics artifacts location for Mac OS X and iOS☆322Updated 2 years ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆278Updated 11 months ago
- Automatically exported from code.google.com/p/pac4mac☆39Updated 5 years ago
- Volatility plugin to extract FileVault 2 VMK's☆49Updated 2 years ago
- incident response tool for iOS devices☆49Updated 2 years ago
- Comae Hibernation File Decompressor☆141Updated last year
- ☆39Updated 7 years ago
- A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local hos…☆160Updated 4 years ago
- ☆65Updated this week