Alternatives and similar repositories for netfil:

Users that are interested in netfil are comparing it to the libraries listed below

• nsacyber / netman
  A userland network manager with monitoring and limiting capabilities for macOS. #nsacyber
  ☆76Updated 8 years ago
• droe / xnumon
  monitor macOS for malicious activity
  ☆232Updated last month
• mac4n6 / Presentations
  Presentation Archives for my macOS and iOS Related Research
  ☆247Updated last week
• slavaim / MacOSX-Network-Sockets-Filter
  A MacOS network kernel extension filter for IPv4/IPv6 sockets.
  ☆75Updated 7 years ago
• AlfredoAbarca / OSXMon
  OSX Events Monitor
  ☆22Updated 6 years ago
• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆84Updated 6 years ago
• santoru / filewatcher
  A simple auditing utility for macOS
  ☆287Updated 4 years ago
• squiffy / Masochist
  XNU Rootkit Framework
  ☆127Updated 10 years ago
• objective-see / sniffMK
  sniff mouse and keyboard events
  ☆220Updated 4 years ago
• slavaim / MacOSX-Kernel-Filter
  A Mac OS X kernel mode filter driver ( a kernel extension ) for devices, file systems and network
  ☆168Updated 7 years ago
• nsacyber / Maplesyrup
  Assesses CPU security of embedded devices. #nsacyber
  ☆138Updated 8 years ago
• gdbinit / tcplognke
  Apple's tcplognke code sample
  ☆30Updated 8 years ago
• objective-see / ProcInfoExample
  example project, utilizing Proc Info library
  ☆70Updated 4 years ago
• gdbinit / Gatekeerper
  A kernel extension to mitigate Gatekeeper bypasses
  ☆49Updated 9 years ago
• objective-see / ProcInfo
  process info/monitoring library for macOS
  ☆419Updated 4 years ago
• sandialabs / mac-sandbox
  This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)
  ☆21Updated 8 years ago
• mandiant / macOS-tools
  ☆42Updated 8 years ago
• nsacyber / Certificate-Authority-Situational-Awareness
  Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber
  ☆111Updated 8 years ago
• openbsm / openbsm
  OpenBSM open audit implementation
  ☆167Updated 4 months ago
• gdbinit / onyx-the-black-cat
  Kernel extension to disable anti-debug tricks and other useful XNU "features"
  ☆215Updated last year
• objective-see / fromAppStore
  checks if an application is pristine (untampered) and from the official Mac App Store
  ☆73Updated 4 years ago
• dlcowen / FSEventsParser
  Parser for OSX/iOS FSEvents Logs
  ☆246Updated 3 months ago
• rickmark / mojo_thor
  Research about malware that infects the EFI and SMC of Apple MacBooks.
  ☆57Updated last year
• 0xmachos / mac-white-papers
  Every OS X/ macOS white paper
  ☆114Updated 4 years ago
• sud0man / pac4mac
  Automatically exported from code.google.com/p/pac4mac
  ☆40Updated 6 years ago
• jndok / stfusip
  System Integrity Protection (SIP) bypass for OSX 10.11.1 - 10.11.2 - 10.11.3
  ☆147Updated 8 years ago
• gdbinit / gdb-ng
  Apple's gdb fork with some fixes and enhancements
  ☆56Updated 11 years ago
• LinusHenze / Unrootless-Kext
  A Kext that can be used to disable Rootless in OS X El Capitan/macOS Sierra. You need to sign it OR use an exploit to make OS X load it.
  ☆78Updated 5 years ago
• gdbinit / gopher
  A OS X crypto ransomware PoC
  ☆88Updated 9 years ago
• trailofbits / ios-integrity-validator
  Integrity validator for iOS devices
  ☆101Updated 6 years ago