n0fate / OS-X-Continuity

Related projects: ⓘ

• manwhoami / FriendsOfFriends
  ☆40Updated this week
• sud0man / pac4mac
  Automatically exported from code.google.com/p/pac4mac
  ☆39Updated 5 years ago
• mac4n6 / HFSPlus_Resources
  Resources for HFS+ Forensics
  ☆35Updated 8 years ago
• AlfredoAbarca / OSXMon
  OSX Events Monitor
  ☆21Updated 6 years ago
• erran / keyjacker
  Keyjacker enumerates Mac keychains and displays plain text passwords.
  ☆23Updated 6 years ago
• abrignoni / iOS-KnowledgeC-StructuredMetadata-Bplists
  Scripts to extract compound bplists in the iOS -> KnowledgeC.db -> structuredmetadata table.
  ☆22Updated 5 years ago
• n0fate / walitean
  ☆32Updated 6 years ago
• LinusHenze / anyKextLoader
  anyKextLoader is a program that can be used to disable SIP without rebooting.
  ☆39Updated 8 years ago
• mac4n6 / iOS-Frequent-Locations-Dumper
  Dump the iOS Frequent Location binary plist files
  ☆77Updated 5 years ago
• manwhoami / iCloudContacts
  ☆24Updated this week
• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆81Updated 5 years ago
• n0fate / iChainbreaker
  Breaking the iCloud Keychain Artifacts
  ☆92Updated 8 months ago
• gdbinit / mpress_dumper
  MPRESS dumper for OS X
  ☆65Updated 9 years ago
• gdbinit / readphysmem
  A small utility to read and write to Macs physical memory using default AppleHWAccess.kext.
  ☆25Updated 9 years ago
• trailofbits / ios-integrity-validator
  Integrity validator for iOS devices
  ☆100Updated 5 years ago
• 0xbf00 / macos-sandbox-coverage
  Tools to measure an app's App Sandbox usage
  ☆23Updated 4 years ago
• gdbinit / diagnostic_service
  OS X rootkit loader version #1
  ☆18Updated 9 years ago
• iSECPartners / dnsRedir
  ☆38Updated 8 years ago
• secretsquirrel / Shmoocon2016
  Materials from presentation
  ☆20Updated 8 years ago
• LinusHenze / Unrootless-Kext
  A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.
  ☆78Updated 4 years ago
• redpig / patient0
  Runtime code injection suite for exploring OS X process security
  ☆37Updated 15 years ago
• tribalchicken / volatility-filevault2
  Volatility plugin to extract FileVault 2 VMK's
  ☆49Updated 3 years ago
• tienex / apfs
  Mount, dump and analyze APFS volumes and containers
  ☆40Updated 6 years ago
• ahoog42 / ios-triage
  incident response tool for iOS devices
  ☆49Updated 2 years ago
• secretsquirrel / kyphosis
  Find what's not loaded in memory on an executable (OS X/iOS only)
  ☆9Updated 8 years ago
• gdbinit / hello_santa_bye_santa
  Bypass Google's Santa
  ☆22Updated 9 years ago
• rickmark / mojo_thor
  Research about malware that infects the EFI and SMC of Apple MacBooks.
  ☆54Updated 6 months ago
• WillYee / syscall_hooker
  ☆18Updated this week
• devzero0 / iOS9_iCloud_POC
  A Python reimplementation of some of the functionality of InflatableDonkey's iOS 9 iCloud Proof of Concept code
  ☆37Updated 8 years ago
• benb116 / Gone-Phishing-2
  New and Improved
  ☆16Updated 8 years ago