Alternatives and similar repositories for eddie:

Users that are interested in eddie are comparing it to the libraries listed below

• mandiant / ARDvark
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆35Updated last year
• its-a-feature / macos-popups
  Catalog Red Team techniques that cause popups in various macOS versions
  ☆14Updated 4 months ago
• mattreduce / mythic-crate
  An Ubuntu 18.04 box for Mythic C2 framework development
  ☆16Updated 2 years ago
• 0xdeadbeefJERKY / mythic-deploy
  Automated deployment and configuration of a Mythic server using Terraform and Ansible
  ☆9Updated last year
• hotnops / mythic-sync
  A tool to sync mythic events with ghostwriter oplog.
  ☆12Updated 4 months ago
• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 4 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 4 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• cedowens / Persistent-Swift
  A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…
  ☆31Updated 4 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 4 months ago
• mdsecactivebreach / LyncSniper
  LyncSniper: A tool for penetration testing Skype for Business and Lync deployments
  ☆9Updated 8 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• its-a-feature / loginItemManipulator
  ☆15Updated 3 years ago
• cedowens / JXA-RemoveQuarantine
  JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is…
  ☆17Updated 4 years ago
• fastlorenzo / redelk-kibana-app
  Kibana app for RedELK
  ☆16Updated 2 years ago
• antman1p / JXA_Proc_Tree
  A JXA script for enumerating running processes, printed out in a json, parent-child tree.
  ☆13Updated 3 years ago
• its-a-feature / macOSCameraCapture
  Simple CLI utility to save off an image from every webcam hooked into a mac
  ☆14Updated 3 years ago
• mandiant / gocat
  Provides access to libhashcat
  ☆30Updated last year
• cedowens / C2_Cradle
  Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers f…
  ☆18Updated 4 years ago
• iThreatopedia / iThreatopedia.github.io
  A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.
  ☆21Updated 2 years ago
• jfmaes / Parsers
  parsers to make life easier
  ☆12Updated 4 years ago
• cedowens / JXA-Runner
  Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.
  ☆23Updated 3 years ago
• mubix / attackbox
  Ansible scripts to build an attack box
  ☆22Updated 6 years ago
• bradleyjkemp / threathunting
  Assorted, MIT licensed, threat hunting rules from @bradleyjkemp
  ☆13Updated 3 years ago
• malware-unicorn / macho_shellcode_extractor
  extracts shellcode from a nasm compile macho binary
  ☆17Updated 4 years ago
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 6 years ago
• mubix / securitytitles.com
  Standardizing Security Titles
  ☆13Updated 2 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆29Updated 8 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago