A Ghidra extension for reverse-engineering macOS binaries.
☆19Jan 13, 2025Updated last year
Alternatives and similar repositories for macOSSupport
Users that are interested in macOSSupport are comparing it to the libraries listed below
Sorting:
- Code lifting for executing a visionOS library os macOS using QBDL and QBDI☆22Sep 30, 2024Updated last year
- XPC sniffer using LLDB☆50Oct 3, 2024Updated last year
- Twitter / Mastodon / BlueSky bot refreshing Apple Security Page, so you don't have to! New updates, number of bugs, zero-days, betas, and…☆17Updated this week
- My collection of PoCs☆26Nov 9, 2023Updated 2 years ago
- Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware☆38Feb 24, 2026Updated 3 weeks ago
- Cross-compat library for parsing Apple Archive + Apple Encrypted Archive (.aar/.yaa/.aea).☆35Jun 17, 2025Updated 9 months ago
- CoreFollowUp phishing attack on macOS☆15Mar 15, 2022Updated 4 years ago
- A runtime ObjC class-dump☆78Dec 20, 2024Updated last year
- Kass: A security research tool.☆101Mar 2, 2026Updated 2 weeks ago
- Apple Blocks Plugin for Binary Ninja☆33Sep 7, 2025Updated 6 months ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- Enumerate Location Services using CoreLocation API on macOS☆18Dec 2, 2021Updated 4 years ago
- `ipsw` symbolication signatures☆97Updated this week
- Automatically identify and extract potential anti-debugging techniques used by malware.☆28Nov 20, 2024Updated last year
- Yet another xpc sniffer☆215Feb 15, 2026Updated last month
- Silverton allows unsigned code execution on a retail Xbox that has been compromised via Collateral Damage☆22Oct 13, 2024Updated last year
- ☆18Nov 7, 2024Updated last year
- ☆43Updated this week
- A Hex Editor implemented as a Ghidra Plugin☆18Jan 19, 2023Updated 3 years ago
- This repository is a part of GSoC Project 2019 which intends to add the macOS support for Cuckoo Sandbox. This repository helps setting u…☆11Aug 26, 2019Updated 6 years ago
- Binary Ninja plugin & workflow to help analyze Objective-C code☆84Jul 11, 2022Updated 3 years ago
- Published security vulnerabilities for Apple platform with linked public repositories☆32Jun 25, 2024Updated last year
- Help us reverse ios more easily☆20May 30, 2025Updated 9 months ago
- Ghidra plugin for querying the Symgrate databases.☆15Apr 30, 2025Updated 10 months ago
- Articles and tools related to research in the Apple environment (mainly macOS).☆283Jan 9, 2026Updated 2 months ago
- IDA Pro plugin that implements disassembly of PlayStation 2 COP2 MIPS instructions☆31Jul 11, 2022Updated 3 years ago
- The GhidraLookup plugin aims to help user lookup documentations of Win API functions.☆17Aug 5, 2021Updated 4 years ago
- App to view Obj-C generated headers at runtime☆18Jan 18, 2026Updated 2 months ago
- Some Ghidra scripts to automate my reverse-engineering tasks☆21Mar 18, 2021Updated 5 years ago
- A cross-platform plugin for Ghidra that provides deep linking support. This enables the generation of clickable disas:// links that can b…☆42Mar 6, 2026Updated last week
- ☆19Nov 26, 2024Updated last year
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆22Mar 5, 2024Updated 2 years ago
- Preserving games from the Xbox One☆54Aug 17, 2024Updated last year
- ☆13Jun 25, 2016Updated 9 years ago
- An IDA Pro plugin to allow use of Python venvs☆19Oct 4, 2024Updated last year
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆22Jan 22, 2021Updated 5 years ago
- Retypd plugin for Ghidra reverse engineering framework from NSA☆27Jul 6, 2023Updated 2 years ago
- ☆89Sep 27, 2024Updated last year
- A framework for researching the interface between the iPhone's application processor and its baseband☆64Updated this week