knightsc/XProtect external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

knightsc/XProtect

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/knightsc/XProtect)

Close

knightsc / XProtectView on GitHubMore

• External links
• Readme badge

macOS XProtect definition files

☆40Mar 25, 2022Updated 4 years ago

Alternatives and similar repositories for XProtect

Users that are interested in XProtect are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SentineLabs / XProtect-Malware-Families

  View on GitHub
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆94Nov 14, 2025Updated 5 months ago
• univ-of-utah-marriott-library-apple / firmware_version_checker

  View on GitHub
  Determines whether the current OS X computer's firmware is up-to-date.
  ☆10Feb 24, 2015Updated 11 years ago
• insidegui / CoreFollowUpAttack

  View on GitHub
  CoreFollowUp phishing attack on macOS
  ☆15Mar 15, 2022Updated 4 years ago
• hoakleyelc / updates

  View on GitHub
  software update property list
  ☆33Updated this week
• bro / bro-osquery

  View on GitHub
  Bro integration with osquery
  ☆15Mar 24, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• A2nkF / unauthd

  View on GitHub
  A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
  ☆86Oct 15, 2020Updated 5 years ago
• povik / leap-isa

  View on GitHub
  Description of Apple's LEAP ISA
  ☆16Nov 21, 2022Updated 3 years ago
• saaramar / iOS_memory_exhaustion_writeup

  View on GitHub
  ☆20May 24, 2021Updated 4 years ago
• cedowens / Persistent-Swift

  View on GitHub
  A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…
  ☆34Apr 15, 2021Updated 5 years ago
• objective-see / ProcessMonitor

  View on GitHub
  Process Monitor Library (based on Apple's new Endpoint Security Framework)
  ☆498Oct 20, 2023Updated 2 years ago
• univ-of-utah-marriott-library-apple / suid_scan

  View on GitHub
  Simple script to help you check for files with execute-as bits set.
  ☆14May 29, 2015Updated 10 years ago
• 0x4D31 / Presentations

  View on GitHub
  Some of the presentations given by me
  ☆19Aug 8, 2025Updated 8 months ago
• oldeurope / rwthctf2012

  View on GitHub
  ☆40Nov 24, 2013Updated 12 years ago
• jevinskie / jevmachopp

  View on GitHub
  Modern C++, range-based Mach-O parser designed for embedded use. Uses stack allocations only.
  ☆34Oct 31, 2022Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• michaelvobrien / OSXSimpleAuth

  View on GitHub
  Simple example that shows how to use AuthorizationExecuteWithPrivileges.
  ☆19Jul 20, 2009Updated 16 years ago
• ahhh / presentations

  View on GitHub
  various slides and presentations I've worked on
  ☆19Mar 21, 2025Updated last year
• melomac / XPlist

  View on GitHub
  XProtect configuration files stats
  ☆21Dec 1, 2017Updated 8 years ago
• cedowens / SwiftBelt-JXA

  View on GitHub
  JXA implementation of some SwiftBelt functions. Author: Cedric Owens
  ☆46Jun 22, 2023Updated 2 years ago
• air-display / airplay-internal

  View on GitHub
  Detailed Airplay Protocol Specification
  ☆26Jul 8, 2022Updated 3 years ago
• slava13 / Symbolicator

  View on GitHub
  macOS crash and sample logs symbolicator
  ☆16Mar 4, 2020Updated 6 years ago
• JayBrown / macOS-Security-Updates

  View on GitHub
  Notifies the user when macOS Security components like Gatekeeper and XProtect have been updated
  ☆61Mar 12, 2021Updated 5 years ago
• jakeajames / time_waste

  View on GitHub
  iOS 12.0-13.3 tfp0
  ☆153Nov 16, 2020Updated 5 years ago
• munmap / Linux-Kernel-Bugs-DB

  View on GitHub
  ☆23Sep 21, 2014Updated 11 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• apple-oss-distributions / IOKitUser

  View on GitHub
  ☆28Apr 21, 2026Updated last week
• ChiChou / IDA-ObjCExplorer

  View on GitHub
  Objective C classdump for IDA Pro
  ☆147Sep 1, 2020Updated 5 years ago
• saagarjha / macOSSandboxInitializationBypass

  View on GitHub
  App sandbox escapes for macOS
  ☆32May 20, 2020Updated 5 years ago
• ReverseApple / inject_aarch64

  View on GitHub
  arm64 and arm64e dylib injector
  ☆42Feb 6, 2024Updated 2 years ago
• packet-guardian / packet-guardian

  View on GitHub
  Captive web portal for network access
  ☆16Mar 25, 2026Updated last month
• jevinskie / litespih4x

  View on GitHub
  SPI flash MITM and emulation (QSPI is a WIP)
  ☆20Jan 27, 2022Updated 4 years ago
• TakahiroHaruyama / SpiMitm

  View on GitHub
  SPI flash read MitM attack PoC
  ☆40May 24, 2022Updated 3 years ago
• NSAntoine / HideViewFromScreenCaptureDemo

  View on GitHub
  A demo showing how to hide UIViews from screenshots & screen-recordings while still showing the view on screen
  ☆31Jun 6, 2024Updated last year
• ArthurXHK / AXRegex

  View on GitHub
  Let's use Regex in a easy way with Swift 2
  ☆11Aug 7, 2016Updated 9 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• michaelvobrien / OSXSlightlyBetterAuth

  View on GitHub
  Slightly better example that shows how to use AuthorizationExecuteWithPrivileges.
  ☆18Aug 17, 2016Updated 9 years ago
• kpwn / inj

  View on GitHub
  task_for_pid injection that doesn't suck
  ☆58Aug 9, 2015Updated 10 years ago
• vanhauser-thc / libfuzzer-cov

  View on GitHub
  Get actually nice HTML coverage overview on libfuzzer runs
  ☆32Apr 15, 2026Updated 2 weeks ago
• apple-oss-distributions / dtrace

  View on GitHub
  ☆26Oct 22, 2025Updated 6 months ago
• 0xbf00 / simbple

  View on GitHub
  macOS Sandbox Profile Language (SBPL) Interpreter
  ☆57May 24, 2020Updated 5 years ago
• mrphrazer / mirai_string_deobfuscation

  View on GitHub
  Binary Ninja script to decrypt strings in Mirai samples
  ☆21Jun 30, 2021Updated 4 years ago
• fiorix / go-swagger-ui

  View on GitHub
  Go HTTP handler for serving swagger-ui
  ☆10May 2, 2016Updated 10 years ago