Alternatives and similar repositories for macOS-tools

Users that are interested in macOS-tools are comparing it to the libraries listed below

• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆85Updated 6 years ago
• CylanceVulnResearch / osx_runbin
  ☆66Updated 2 years ago
• enzolovesbacon / inficere
  Mac OS X rootkit - for learning purposes
  ☆129Updated 11 years ago
• phdphuc / mac-a-mal-cuckoo
  The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo …
  ☆50Updated 7 years ago
• vivami / grey_fox
  The grey fox
  ☆25Updated 9 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 8 years ago
• dineshshetty / iOS-SandBox-Dumper
  SandBox-Dumper makes use of multiple private libraries to provide exact locations of the application sandbox, application bundle and some…
  ☆57Updated 4 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 8 years ago
• joxeankoret / tahh
  Source codes for "The Antivirus Hackers Handbook" book.
  ☆60Updated 10 years ago
• ETeissonniere / EliDecode
  The tool to decode obfuscated shellcodes using the unicorn and capstone engine
  ☆55Updated 9 years ago
• blankwall / Offensive-Con
  Talk and materials for Offensive Con presentation - Privileged Helper Tools
  ☆47Updated 6 years ago
• agustingianni / memrepl
  Memory inspection REPL interface
  ☆45Updated 7 years ago
• Yara-Rules / r2yara
  r2yara - Module for Yara using radare2 information
  ☆36Updated last year
• bx / machO-tools
  ☆62Updated 8 years ago
• theevilbit / exploits
  ☆87Updated 11 months ago
• DSecurity / crauEmu
  crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks
  ☆110Updated 5 years ago
• bazad / physmem
  Local privilege escalation through macOS 10.12.1 via CVE-2016-1825 or CVE-2016-7617.
  ☆65Updated 8 years ago
• silascutler / IDA_AutoAnalysis
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Updated 7 years ago
• omerporze / brokentooth
  POC for CVE-2018-4327
  ☆42Updated 7 years ago
• bazad / rootsh
  Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.
  ☆84Updated 9 years ago
• devoteam-cybertrust / friOS
  iOS Frida Scripts
  ☆37Updated 7 years ago
• strazzere / IDAnt-wanna
  ELF header abuse
  ☆48Updated 9 years ago
• knightsc / XProtect
  macOS XProtect definition files
  ☆40Updated 3 years ago
• axelexic / CSOps
  Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.
  ☆78Updated last year
• as0ler / Frida_Exercise
  The best way to learn Frida, is practicing. This is an example of scripts to use in a practical workshop.
  ☆27Updated 8 years ago
• LinusHenze / Unrootless-Kext
  A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.
  ☆78Updated 5 years ago
• sandialabs / mac-sandbox
  This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)
  ☆23Updated 9 years ago
• cocoahuke / maclook4ref
  Quickly find references to the specified Immediate number, or find the function call of specifies offset, and generate C++ functions call…
  ☆25Updated 8 years ago
• necst / crave
  Framework to automatically test and explore the capabilities of generic AV engines
  ☆69Updated 6 years ago
• Synacktiv-contrib / CVE-2018-4193
  exploit for CVE-2018-4193
  ☆69Updated 6 years ago