Alternatives and similar repositories for eddie:

Users that are interested in eddie are comparing it to the libraries listed below

• mandiant / ARDvark
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆34Updated last year
• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 3 years ago
• mattreduce / mythic-crate
  An Ubuntu 18.04 box for Mythic C2 framework development
  ☆16Updated 2 years ago
• cedowens / Persistent-Swift
  A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…
  ☆31Updated 3 years ago
• its-a-feature / macos-popups
  Catalog Red Team techniques that cause popups in various macOS versions
  ☆14Updated 2 months ago
• bradleyjkemp / threathunting
  Assorted, MIT licensed, threat hunting rules from @bradleyjkemp
  ☆12Updated 2 years ago
• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆11Updated 6 years ago
• 0xdeadbeefJERKY / mythic-deploy
  Automated deployment and configuration of a Mythic server using Terraform and Ansible
  ☆9Updated last year
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated last month
• awgh / nfp
  Network Finger Printer
  ☆16Updated 7 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago
• cedowens / JXA-RemoveQuarantine
  JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is…
  ☆17Updated 3 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• iThreatopedia / iThreatopedia.github.io
  A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.
  ☆21Updated 2 years ago
• tedhardyMSFT / EventLogUtilities
  Set of utilities for getting information about Windows Events
  ☆15Updated 6 years ago
• cedowens / Mythic-Macro-Generator
  Python3 script to generate a macro to launch a Mythic payload. Author: Cedric Owens
  ☆45Updated 3 years ago
• automate-tim / conference-materials
  Speaking materials from conferences I've given
  ☆9Updated 2 years ago
• fastlorenzo / redelk-kibana-app
  Kibana app for RedELK
  ☆16Updated last year
• Ne0nd0g / shellbot
  Slack/Microsoft Teams notification for new Empire/Meterpreter checkins
  ☆25Updated last month
• cedowens / JXA-Runner
  Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.
  ☆23Updated 3 years ago
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆12Updated last month
• antman1p / JXA_Proc_Tree
  A JXA script for enumerating running processes, printed out in a json, parent-child tree.
  ☆13Updated 2 years ago
• BlacksunLabs / respite
  Read-only Slack RTM API CLI for monitoring teams
  ☆10Updated 5 years ago
• scriptingislife / s3eker
  s3eker is an extensible way to find open S3 buckets.
  ☆17Updated 4 years ago
• secgroundzero / hashslack
  Small utility script to notify via Slack about Hashcat's progress during a password cracking session
  ☆10Updated 5 years ago
• ryhanson / checkpot
  A tool for checking a hash:pass pot file for hashes from a user:hash file
  ☆12Updated 8 years ago