nsacyber / netfil
A kernel network manager with monitoring and limiting capabilities for macOS. #nsacyber
☆107Updated 8 years ago
Alternatives and similar repositories for netfil:
Users that are interested in netfil are comparing it to the libraries listed below
- A userland network manager with monitoring and limiting capabilities for macOS. #nsacyber☆76Updated 8 years ago
- monitor macOS for malicious activity☆232Updated last month
- Presentation Archives for my macOS and iOS Related Research☆247Updated last week
- A MacOS network kernel extension filter for IPv4/IPv6 sockets.☆75Updated 7 years ago
- OSX Events Monitor☆22Updated 6 years ago
- The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.☆84Updated 6 years ago
- A simple auditing utility for macOS☆287Updated 4 years ago
- XNU Rootkit Framework☆127Updated 10 years ago
- sniff mouse and keyboard events☆220Updated 4 years ago
- A Mac OS X kernel mode filter driver ( a kernel extension ) for devices, file systems and network☆168Updated 7 years ago
- Assesses CPU security of embedded devices. #nsacyber☆138Updated 8 years ago
- Apple's tcplognke code sample☆30Updated 8 years ago
- example project, utilizing Proc Info library☆70Updated 4 years ago
- A kernel extension to mitigate Gatekeeper bypasses☆49Updated 9 years ago
- process info/monitoring library for macOS☆419Updated 4 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆21Updated 8 years ago
- ☆42Updated 8 years ago
- Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber☆111Updated 8 years ago
- OpenBSM open audit implementation☆167Updated 4 months ago
- Kernel extension to disable anti-debug tricks and other useful XNU "features"☆215Updated last year
- checks if an application is pristine (untampered) and from the official Mac App Store☆73Updated 4 years ago
- Parser for OSX/iOS FSEvents Logs☆246Updated 3 months ago
- Research about malware that infects the EFI and SMC of Apple MacBooks.☆57Updated last year
- Every OS X/ macOS white paper☆114Updated 4 years ago
- Automatically exported from code.google.com/p/pac4mac☆40Updated 6 years ago
- System Integrity Protection (SIP) bypass for OSX 10.11.1 - 10.11.2 - 10.11.3☆147Updated 8 years ago
- Apple's gdb fork with some fixes and enhancements☆56Updated 11 years ago
- A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.☆78Updated 5 years ago
- A OS X crypto ransomware PoC☆88Updated 9 years ago
- Integrity validator for iOS devices☆101Updated 6 years ago