phdphuc / mac-a-malLinks
The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
☆85Updated 6 years ago
Alternatives and similar repositories for mac-a-mal
Users that are interested in mac-a-mal are comparing it to the libraries listed below
Sorting:
- The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo …☆50Updated 7 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆23Updated 9 years ago
- A set of scripts for a radare-based malware code analysis workflow☆67Updated 6 years ago
- ☆42Updated 6 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 8 years ago
- ☆43Updated 8 years ago
- ☆52Updated 6 years ago
- Talk and materials for Offensive Con presentation - Privileged Helper Tools☆47Updated 6 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Updated 6 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 6 years ago
- Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"☆27Updated 6 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- BinCrowd Plugin for IDA Pro☆43Updated 13 years ago
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆110Updated 5 years ago
- This repository contains the slides and content for the malware unpacking training given at r2con 2017☆50Updated 7 years ago
- monitor macOS for malicious activity☆236Updated 6 months ago
- The grey fox☆25Updated 9 years ago
- Memory forensics of virtualization environments☆47Updated 10 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 6 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- A system to record malware using PANDA☆44Updated 6 years ago
- Binary Ninja Posters☆35Updated 4 years ago
- Yet Another YARA rule Generator☆64Updated 6 years ago
- Mac OS X rootkit - for learning purposes☆128Updated 11 years ago
- Memory inspection REPL interface☆46Updated 7 years ago
- An IDA Pro swiss army knife (with a sexy name!)☆56Updated 12 years ago
- IDATACO IDA Pro Plugin☆47Updated 9 years ago