Alternatives and similar repositories for netfil:

Users that are interested in netfil are comparing it to the libraries listed below

• nsacyber / netman
  A userland network manager with monitoring and limiting capabilities for macOS. #nsacyber
  ☆77Updated 8 years ago
• droe / xnumon
  monitor macOS for malicious activity
  ☆233Updated 2 months ago
• slavaim / MacOSX-Network-Sockets-Filter
  A MacOS network kernel extension filter for IPv4/IPv6 sockets.
  ☆75Updated 7 years ago
• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆84Updated 6 years ago
• gdbinit / Gatekeerper
  A kernel extension to mitigate Gatekeeper bypasses
  ☆49Updated 9 years ago
• objective-see / ProcInfo
  process info/monitoring library for macOS
  ☆420Updated 4 years ago
• objective-see / ProcInfoExample
  example project, utilizing Proc Info library
  ☆70Updated 4 years ago
• openbsm / openbsm
  OpenBSM open audit implementation
  ☆168Updated 5 months ago
• gdbinit / tcplognke
  Apple's tcplognke code sample
  ☆30Updated 8 years ago
• slavaim / MacOSX-Kernel-Filter
  A Mac OS X kernel mode filter driver ( a kernel extension ) for devices, file systems and network
  ☆169Updated 7 years ago
• nsacyber / Maplesyrup
  Assesses CPU security of embedded devices. #nsacyber
  ☆139Updated 8 years ago
• 0xmachos / mac-white-papers
  Every OS X/ macOS white paper
  ☆114Updated 5 years ago
• objective-see / sniffMK
  sniff mouse and keyboard events
  ☆221Updated 4 years ago
• hatching / httpreplay
  Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.
  ☆95Updated 3 years ago
• squiffy / Masochist
  XNU Rootkit Framework
  ☆127Updated 10 years ago
• mac4n6 / Presentations
  Presentation Archives for my macOS and iOS Related Research
  ☆249Updated last month
• AlfredoAbarca / OSXMon
  OSX Events Monitor
  ☆22Updated 6 years ago
• sandialabs / mac-sandbox
  This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)
  ☆22Updated 8 years ago
• google / Legilimency
  ☆114Updated 7 years ago
• nsacyber / Certificate-Authority-Situational-Awareness
  Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber
  ☆112Updated 8 years ago
• nsacyber / Control-Flow-Integrity
  A proposed hardware-based method for stopping known memory corruption exploitation techniques. #nsacyber
  ☆154Updated 7 years ago
• jndok / stfusip
  System Integrity Protection (SIP) bypass for OSX 10.11.1 - 10.11.2 - 10.11.3
  ☆147Updated 9 years ago
• dlcowen / FSEventsParser
  Parser for OSX/iOS FSEvents Logs
  ☆247Updated 4 months ago
• gdbinit / osx_boubou
  A PoC Mach-O infector via library injection
  ☆64Updated 12 years ago
• gdbinit / can_I_suid
  A TrustedBSD module to control execution of binaries with suid bit set
  ☆37Updated 10 years ago
• Siguza / IOHIDeous
  IOHIDFamily 0day
  ☆443Updated 2 years ago
• gdbinit / onyx-the-black-cat
  Kernel extension to disable anti-debug tricks and other useful XNU "features"
  ☆215Updated 2 years ago
• gdbinit / gopher
  A OS X crypto ransomware PoC
  ☆87Updated 9 years ago
• mandiant / macOS-tools
  ☆42Updated 8 years ago
• objective-see / fromAppStore
  checks if an application is pristine (untampered) and from the official Mac App Store
  ☆74Updated 4 years ago