microsoft / ProcDump-for-MacLinks
Release repository for ProcDump-for-Mac
☆27Updated 6 months ago
Alternatives and similar repositories for ProcDump-for-Mac
Users that are interested in ProcDump-for-Mac are comparing it to the libraries listed below
Sorting:
- macOS Endpoint Security Message Analysis Tool☆47Updated 3 years ago
- Auditing Hooks for https://github.com/jborean93/PSDetour☆13Updated last month
- Some security by obscurity using port-jumping.☆14Updated 2 weeks ago
- Uses Apple's MDM protocol to backdoor a device with a malicious profile.☆54Updated 3 years ago
- Parser for Windows PowerShell script block logs☆13Updated 5 months ago
- ESF modular ingestion tool for development and research.☆35Updated 3 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆24Updated 4 years ago
- The Art of Mac Malware☆45Updated 3 months ago
- ObjectiveC CLI tool for interacting with macOS Keychain☆79Updated 2 years ago
- Info on how to use Kerberos KDC on a non-domain joined host☆47Updated 10 months ago
- ☆39Updated 2 years ago
- A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…☆32Updated 4 years ago
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware☆32Updated 5 months ago
- A library to parse macOS LoginItems☆18Updated 2 years ago
- Takes the original idea of NetCease and adds functionality☆24Updated 3 years ago
- ☆11Updated 9 months ago
- rpv-web is a browser based frontend for the rpv library☆25Updated last month
- ☆18Updated 3 years ago
- Hotkey-based keylogger for Windows☆22Updated 8 months ago
- ☆31Updated last year
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆35Updated 2 years ago
- Examples of programmatically interacting with ioreg and sysctl to query system info☆10Updated 3 years ago
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆14Updated 7 months ago
- ☆28Updated 2 years ago
- Enumerate running processes using com.apple.CodeSigningHelper☆13Updated last year
- Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers☆24Updated 2 months ago
- Cmdlets for capturing Windows Events☆14Updated 3 years ago
- Proof-of-concept modular implant platform leveraging v8☆53Updated 3 months ago
- Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…☆14Updated 4 years ago