Alternatives and similar repositories for macprocmon

Users that are interested in macprocmon are comparing it to the libraries listed below

• ConradSun / NuwaStone
  A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).
  ☆50Updated 5 months ago
• AloneMonkey / MacKext
  Learn MacOS kernel extensions
  ☆46Updated 8 years ago
• knightsc / osx_and_ios_kernel_programming
  Updated sample code for OS X and iOS Kernel Programming book
  ☆38Updated 6 years ago
• willyu-elastic / SimpleEndpoint
  Sample code for macOS Extensions Part 3
  ☆24Updated 5 years ago
• steven-michaud / SandboxMirror
  Tool for reverse-engineering Apple's sandbox
  ☆60Updated 8 years ago
• Trinity2019 / SimplePcap
  A simple demonstration of the macOS Network Extension
  ☆16Updated 4 years ago
• slavaim / MacOSX-VFS-redirector
  Mac OS X file system filter to redirect file operations
  ☆42Updated 8 years ago
• axelexic / CSOps
  Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.
  ☆80Updated last year
• slavaim / MacOSX-IOKit-Hooker
  A macOS IOKit objects hooker
  ☆88Updated 8 years ago
• knightsc / EnterDebugger
  A kext to facilitate calling PE_enter_debugger on machines that don't respect Cmd-Ctrl-Opt-Shift-Esc
  ☆15Updated 7 years ago
• quarkslab / LLDBagility
  A tool for debugging macOS virtual machines
  ☆113Updated 5 years ago
• slavaim / mac-notes
  macOS notes
  ☆117Updated 6 years ago
• Proteas / do_not_dbg_me
  do not debug me
  ☆11Updated 6 years ago
• securing / SimpleXPCApp
  Secure example of an XPC helper written in Swift
  ☆108Updated 5 years ago
• jzdziarski / kernelresolver
  macOS Private KPI Symbol Resolver
  ☆49Updated 8 years ago
• chilik / srom64helper
  IDA loader for Apple SecureROM
  ☆13Updated 6 years ago
• gdbinit / llvmpatches
  Misc llvm patches
  ☆23Updated 4 years ago
• oleavr / dyld-tools
  Experiment to attempt to build Apple's dyld tools.
  ☆62Updated 5 years ago
• smx-smx / libhooker
  Modular binary injection framework
  ☆18Updated 6 years ago
• macmade / macho
  Mach-O file parser.
  ☆59Updated 8 months ago
• saagarjha / macOSSandboxInitializationBypass
  App sandbox escapes for macOS
  ☆30Updated 5 years ago
• 0cyn / bn-dyldsharedcache
  dyld_shared_cache processing / Single-Image loading for BinaryNinja
  ☆88Updated 2 years ago
• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆71Updated 4 years ago
• mologie / macos-disable-library-validation
  A tiny macOS 10.12 Sierra kernel extension for disabling CS_REQUIRE_LV system-wide
  ☆72Updated 8 years ago
• nologic / machshark
  Sniffing on port messages
  ☆27Updated 9 years ago
• PureDarwin / XPC
  XPC and Friends (libxpc, launchd and soon xpc.framework)
  ☆68Updated last year
• knightsc / hopper
  A collection of Hopper plugins and scripts
  ☆28Updated 3 years ago
• bazad / threadexec
  A library to execute code in the context of other processes on iOS 11.
  ☆82Updated 7 years ago
• GeoSn0w / hspGuard
  Checks macOS for Kernel Task Port. It may help detect intrusive kexts that would leak the kernel task.
  ☆23Updated 2 years ago
• dlevi309 / MacRootKit
  A RootKit for macOS that can perform kernel read/write, hook kernel and userspace functions, set custom conditional breakpoints, etc
  ☆23Updated 3 years ago