knightsc / XProtectLinks
macOS XProtect definition files
☆40Updated 3 years ago
Alternatives and similar repositories for XProtect
Users that are interested in XProtect are comparing it to the libraries listed below
Sorting:
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆39Updated 3 years ago
- Golang command line tool for the macOS Endpoint Security Framework☆29Updated 5 years ago
- ☆31Updated 11 months ago
- A module to expose the Endpoint Security library to Swift☆20Updated 5 years ago
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆75Updated last year
- OSX Events Monitor☆22Updated 6 years ago
- A minimal malware analysis sandbox for macOS☆29Updated 2 years ago
- Golang Tool to interact with Launchd and other services with XPC☆29Updated 5 years ago
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆78Updated last year
- macOS application that makes use of the EndpointSecurity framework☆19Updated 5 years ago
- ESF modular ingestion tool for development and research.☆35Updated 3 years ago
- machofile is a module to parse Mach-O binary files☆51Updated last year
- ☆14Updated 6 years ago
- Mapping XProtect's obfuscated malware family names to common industry names.☆86Updated last year
- macOS Endpoint Security Message Analysis Tool☆47Updated 3 years ago
- A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.☆79Updated 5 years ago
- XProtect configuration files stats☆20Updated 7 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆97Updated 2 years ago
- Discover which process execute a hunted binary inside macOS☆24Updated 3 years ago
- Integrity validator for iOS devices☆102Updated 6 years ago
- ☆66Updated 2 years ago
- Tools to measure an app's App Sandbox usage☆25Updated 5 years ago
- A TrustedBSD module to control execution of binaries with suid bit set☆37Updated 10 years ago
- example project, utilizing Proc Info library☆70Updated 4 years ago
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆69Updated 4 years ago
- CVE-2020–9934 POC☆23Updated 4 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆22Updated 8 years ago
- Automatically exported from code.google.com/p/pac4mac☆40Updated 6 years ago
- macOS Sandbox Profile Language (SBPL) Interpreter☆53Updated 5 years ago
- Examples of programmatically interacting with ioreg and sysctl to query system info☆10Updated 3 years ago