knightsc / XProtectLinks
macOS XProtect definition files
☆40Updated 3 years ago
Alternatives and similar repositories for XProtect
Users that are interested in XProtect are comparing it to the libraries listed below
Sorting:
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆78Updated last year
- OSX Events Monitor☆22Updated 6 years ago
- ☆32Updated last year
- ☆14Updated 6 years ago
- A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.☆78Updated 5 years ago
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆69Updated 4 years ago
- macOS Endpoint Security Message Analysis Tool☆47Updated 3 years ago
- CVE-2020–9934 POC☆23Updated 5 years ago
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆76Updated last year
- ☆66Updated 2 years ago
- ☆43Updated 8 years ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆40Updated 4 years ago
- Tools to measure an app's App Sandbox usage☆25Updated 5 years ago
- Research about malware that infects the EFI and SMC of Apple MacBooks.☆61Updated 3 months ago
- The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.☆85Updated 6 years ago
- example project, utilizing Proc Info library☆70Updated 4 years ago
- Discover which process execute a hunted binary inside macOS☆25Updated 3 years ago
- Integrity validator for iOS devices☆102Updated 6 years ago
- The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo …☆50Updated 7 years ago
- Golang Tool to interact with Launchd and other services with XPC☆29Updated 5 years ago
- macOS Sandbox Profile Language (SBPL) Interpreter☆54Updated 5 years ago
- A module to expose the Endpoint Security library to Swift☆20Updated 6 years ago
- A tool to find gadgets in the iOS kernelcache.☆33Updated 7 years ago
- ☆62Updated 7 years ago
- Breaking the iCloud Keychain Artifacts☆102Updated last year
- A TrustedBSD module to control execution of binaries with suid bit set☆38Updated 10 years ago
- ESF modular ingestion tool for development and research.☆36Updated 3 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆97Updated 2 years ago
- machofile is a module to parse Mach-O binary files☆72Updated this week
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago