machofile is a module to parse Mach-O binary files
☆94Feb 10, 2026Updated 3 weeks ago
Alternatives and similar repositories for machofile
Users that are interested in machofile are comparing it to the libraries listed below
Sorting:
- Synapse Rapid Power-up for SinkDB☆11Jun 24, 2025Updated 8 months ago
- ☆19Jan 31, 2025Updated last year
- Binary code coverage visualizer plugin for Ghidra - just without crashes on unknown insns☆20Nov 2, 2024Updated last year
- Swift code to run a dylib on disk☆16May 9, 2022Updated 3 years ago
- A ruleset to find potentially malicious code in macOS malware samples☆40Aug 29, 2023Updated 2 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- Electron-Probe leverages the Node variant of the Chrome Debugging Protocol to execute JavaScript payloads inside of target Electron appli…☆31Jan 13, 2026Updated last month
- TrustZone Trusted Application 0-Days by Design☆25May 9, 2025Updated 10 months ago
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆80Nov 21, 2023Updated 2 years ago
- ☆27Nov 30, 2024Updated last year
- macOS Security Research☆122Mar 15, 2024Updated last year
- ☆28Oct 15, 2025Updated 4 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Mar 9, 2025Updated last year
- Remote buffer overflow over wifi_stack in wpa_supplicant binary in android 11, platform:samsung a20e, stock options so like works out of …☆48Feb 12, 2024Updated 2 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆97Jan 13, 2026Updated last month
- Easy to extend initial access scenario to help with EDR testing on Linux and Mac☆26Mar 20, 2022Updated 3 years ago
- Pishi is a code coverage tool like kcov for macOS.☆75Apr 17, 2025Updated 10 months ago
- Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains …☆10Oct 17, 2023Updated 2 years ago
- Discover which process execute a hunted binary inside macOS☆27Dec 15, 2021Updated 4 years ago
- Linux CS bypass technique☆32Feb 4, 2025Updated last year
- Eve is a JAMF exploitation toolkit used to interact with locally hosted JAMF servers and those hosted on jamfcloud.com.☆42Sep 16, 2025Updated 5 months ago
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆42Oct 29, 2024Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- An interactive CLI application for interacting with authenticated Jupyter instances.☆55May 7, 2025Updated 10 months ago
- ☆23Sep 20, 2024Updated last year
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- Export a binary from ghidra to emulate with unicorn☆27Oct 25, 2019Updated 6 years ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆31Jan 13, 2026Updated last month
- ☆11Dec 19, 2024Updated last year
- ☆12Mar 24, 2018Updated 7 years ago
- because twin clams are better than one clam?☆29Jan 30, 2026Updated last month
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆83Mar 21, 2024Updated last year
- Golang Tool to interact with Launchd and other services with XPC☆29May 7, 2020Updated 5 years ago
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆31Nov 6, 2023Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 3 months ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆35Jan 25, 2026Updated last month
- Artifact monitoring that ensures fairplay☆77Jan 29, 2025Updated last year
- Symbol hash for ELF files☆115Feb 9, 2022Updated 4 years ago
- Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…☆15Dec 3, 2020Updated 5 years ago