knightsc / XProtectLinks
macOS XProtect definition files
☆40Updated 3 years ago
Alternatives and similar repositories for XProtect
Users that are interested in XProtect are comparing it to the libraries listed below
Sorting:
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆39Updated 3 years ago
- OSX Events Monitor☆22Updated 6 years ago
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆78Updated last year
- Tools to measure an app's App Sandbox usage☆25Updated 5 years ago
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆76Updated last year
- Golang command line tool for the macOS Endpoint Security Framework☆29Updated 5 years ago
- A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.☆79Updated 5 years ago
- A minimal malware analysis sandbox for macOS☆29Updated 2 years ago
- A module to expose the Endpoint Security library to Swift☆20Updated 5 years ago
- macOS Endpoint Security Message Analysis Tool☆47Updated 3 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Updated 5 years ago
- Integrity validator for iOS devices☆102Updated 6 years ago
- example project, utilizing Proc Info library☆70Updated 4 years ago
- ☆31Updated last year
- Discover which process execute a hunted binary inside macOS☆25Updated 3 years ago
- Golang Tool to interact with Launchd and other services with XPC☆29Updated 5 years ago
- ☆14Updated 6 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆97Updated 2 years ago
- macOS Sandbox Profile Language (SBPL) Interpreter☆53Updated 5 years ago
- XProtect configuration files stats☆20Updated 7 years ago
- A kernel extension to mitigate Gatekeeper bypasses☆49Updated 9 years ago
- ☆43Updated 8 years ago
- machofile is a module to parse Mach-O binary files☆51Updated last year
- Automatically exported from code.google.com/p/pac4mac☆40Updated 6 years ago
- ESF modular ingestion tool for development and research.☆35Updated 3 years ago
- Research about malware that infects the EFI and SMC of Apple MacBooks.☆60Updated 2 months ago
- CVE-2020–9934 POC☆23Updated 4 years ago
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆69Updated 4 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆20Updated last year
- A parsing tool for backgrounditems.btm☆49Updated 10 months ago