gyunaev / macprocmonLinks
MacOS X process monitor using EndpointSecurity extension.
☆35Updated 4 years ago
Alternatives and similar repositories for macprocmon
Users that are interested in macprocmon are comparing it to the libraries listed below
Sorting:
- Learn MacOS kernel extensions☆47Updated 7 years ago
- Sample code for macOS Extensions Part 3☆24Updated 5 years ago
- Tool for reverse-engineering Apple's sandbox☆59Updated 8 years ago
- A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).☆48Updated last month
- A macOS IOKit objects hooker☆88Updated 8 years ago
- Updated sample code for OS X and iOS Kernel Programming book☆37Updated 6 years ago
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆78Updated last year
- A kext to facilitate calling PE_enter_debugger on machines that don't respect Cmd-Ctrl-Opt-Shift-Esc☆15Updated 7 years ago
- A simple demonstration of the macOS Network Extension☆16Updated 4 years ago
- Mac OS X file system filter to redirect file operations☆42Updated 7 years ago
- Misc llvm patches☆23Updated 4 years ago
- macOS notes☆118Updated 5 years ago
- macOS Private KPI Symbol Resolver☆49Updated 8 years ago
- do not debug me☆11Updated 6 years ago
- Experiment to attempt to build Apple's dyld tools.☆62Updated 5 years ago
- A tool for debugging macOS virtual machines☆113Updated 5 years ago
- Sniffing on port messages☆28Updated 8 years ago
- IDA plugin to Display Mach-O headers☆21Updated 13 years ago
- ios kernel class tree☆23Updated 6 years ago
- A library to execute code in the context of other processes on iOS 11.☆82Updated 7 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- Modular binary injection framework☆18Updated 5 years ago
- dyld_shared_cache processing / Single-Image loading for BinaryNinja☆86Updated last year
- Checks macOS for Kernel Task Port. It may help detect intrusive kexts that would leak the kernel task.☆23Updated 2 years ago
- A file system filter for Mac OS X☆101Updated 8 years ago
- Binary Ninja plugin & workflow to help analyze Objective-C code☆52Updated 2 months ago
- Mach-O file parser.☆56Updated 4 months ago
- IDA loader for Apple SecureROM☆13Updated 5 years ago
- a toy to play with siguza's very first 0 day - sandbox escape☆20Updated 4 years ago
- A RootKit for macOS that can perform kernel read/write, hook kernel and userspace functions, set custom conditional breakpoints, etc☆24Updated 3 years ago