MacOS X process monitor using EndpointSecurity extension.
☆37Sep 29, 2025Updated 5 months ago
Alternatives and similar repositories for macprocmon
Users that are interested in macprocmon are comparing it to the libraries listed below
Sorting:
- X-Monitor is an open-source, extensible event monitoring tool for macOS that provides security professionals with the ability to perform …☆19May 1, 2024Updated last year
- ☆11Jun 5, 2024Updated last year
- A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).☆50Jul 16, 2025Updated 7 months ago
- ☆12Aug 2, 2017Updated 8 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- Rust Bindings for Endpoint Security☆36Feb 16, 2026Updated 2 weeks ago
- ☆31Jul 27, 2020Updated 5 years ago
- 扫描常见未授权访问(改)(redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop)☆15Aug 4, 2020Updated 5 years ago
- Windows system repair tool☆18Jun 2, 2021Updated 4 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- 粗暴地枚举管理内核的WFP对象。 Manage kernel WFPs in a brutal way.☆27Jan 14, 2018Updated 8 years ago
- ☆12Feb 8, 2021Updated 5 years ago
- clone of https://sourceforge.net/projects/eidauthenticate☆12Sep 24, 2019Updated 6 years ago
- Network monitor for Linux☆13Aug 11, 2019Updated 6 years ago
- Simple demo of displaying a bitmap image in UEFI environment.☆15Sep 4, 2020Updated 5 years ago
- MouHidInputHook enables users to filter, modify, and inject mouse input data packets into the input data stream of HID USB mouse devices …☆11Jul 11, 2019Updated 6 years ago
- ☆10May 27, 2015Updated 10 years ago
- Conference Papers and Appendicies (USENIX Security, BlackHat, HITBSecConf, and BeVX)☆27Aug 6, 2023Updated 2 years ago
- ESF modular ingestion tool for development and research.☆38Dec 21, 2021Updated 4 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- Sample code for macOS Extensions Part 3☆24Feb 20, 2020Updated 6 years ago
- poxyran's blog☆13Aug 27, 2020Updated 5 years ago
- A Win32 logger based on DebugView & ETW.☆16Nov 15, 2017Updated 8 years ago
- A windows kernel driver to Block symbolic link exploit used for privilege escalation.☆15Jul 30, 2020Updated 5 years ago
- Utility for dumping all the information Capstone has on given instructions.☆23Oct 1, 2021Updated 4 years ago
- Simple demo of accessing System Management BIOS in UEFI environment.☆14Oct 13, 2020Updated 5 years ago
- A Windows native DLL injection library written in C# that supports several methods of injection.☆13Dec 17, 2018Updated 7 years ago
- Sysark全称system anti-rootkit,是我学习内核写的工具(2013年的代码,后续不会再更新),里面基本上所有的功能都是用内核实现的。这里只是实现了反rootkit部分功能,作为工具的话,本人觉得还欠完善,但作为学习,或有人需要。目前针对的是XP SP2,…☆27Dec 26, 2017Updated 8 years ago
- Updated version of ApiTracer Pin tool☆23Apr 22, 2018Updated 7 years ago
- Windows user mini-dump helper library to extract data from it.☆13May 17, 2025Updated 9 months ago
- Monitor ETW events for Windows process mitigation policies, with stack traces☆31Oct 7, 2022Updated 3 years ago
- ☆14Oct 5, 2019Updated 6 years ago
- Bare Boot. EFI bootloader for Mac OS, Windows, Linux etc☆57Dec 18, 2019Updated 6 years ago
- File Monitor Library (based on Apple's new Endpoint Security Framework)☆375Oct 9, 2022Updated 3 years ago
- base on winHttp to develep download☆12Apr 14, 2018Updated 7 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆62Nov 18, 2020Updated 5 years ago
- Microsoft Edge Microsoft Edge主页算法☆20Apr 15, 2019Updated 6 years ago
- A simple demonstration of the macOS Network Extension☆16May 12, 2021Updated 4 years ago
- enable libemu run pe file and add some good modify☆14Feb 4, 2019Updated 7 years ago