richiercyrus/Venator external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

richiercyrus/Venator

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/richiercyrus/Venator)

Close

richiercyrus / VenatorView on GitHubMore

• External links
• Readme badge

[⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.

☆177Jul 1, 2020Updated 5 years ago

Alternatives and similar repositories for Venator

Users that are interested in Venator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• richiercyrus / Venator-Swift

  View on GitHub
  Swift Command line tool used for proactive detection of malicious activity on macOS systems.
  ☆67Jul 1, 2020Updated 5 years ago
• thomasareed / pict

  View on GitHub
  Post-Infection Collection Toolkit
  ☆95Jan 31, 2023Updated 3 years ago
• cedowens / MacShellSwift

  View on GitHub
  Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedri…
  ☆124Dec 27, 2020Updated 5 years ago
• cedowens / SwiftBelt

  View on GitHub
  A macOS enumeration tool inspired by harmjoy's Windows-based Seatbelt enumeration tool. Author: Cedric Owens
  ☆341Apr 28, 2022Updated 3 years ago
• mandiant / ARDvark

  View on GitHub
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆36Jun 1, 2023Updated 2 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• xorrior / goesf

  View on GitHub
  Golang command line tool for the macOS Endpoint Security Framework
  ☆29Nov 25, 2019Updated 6 years ago
• Invoke-IR / ACE

  View on GitHub
  Automated, Collection, and Enrichment Platform
  ☆324Nov 14, 2019Updated 6 years ago
• droe / xnumon

  View on GitHub
  monitor macOS for malicious activity
  ☆237Feb 5, 2025Updated last year
• dlcowen / FSEventsParser

  View on GitHub
  Parser for OSX/iOS FSEvents Logs
  ☆278Dec 4, 2024Updated last year
• trailofbits / sinter

  View on GitHub
  A user-mode application authorization system for MacOS written in Swift
  ☆299Sep 18, 2020Updated 5 years ago
• themittenmac / TrueTree

  View on GitHub
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆277Aug 23, 2024Updated last year
• theevilbit / Shield

  View on GitHub
  An app to protect against process injection and suspicious file links on macOS
  ☆228May 19, 2021Updated 4 years ago
• theevilbit / macos

  View on GitHub
  ☆33Jun 12, 2024Updated last year
• xorrior / apfell-chrome-ext-payload

  View on GitHub
  Apfell POC Chrome Extension Payload
  ☆10Jun 24, 2020Updated 5 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• erikng / gnes

  View on GitHub
  Get Network Extension Status
  ☆50Apr 28, 2023Updated 2 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 8 years ago
• palantir / osquery-configuration

  View on GitHub
  A repository for using osquery for incident detection and response
  ☆884Sep 8, 2025Updated 6 months ago
• bromiley / pollen

  View on GitHub
  pollen - A command-line tool for interacting with TheHive
  ☆36Jun 6, 2019Updated 6 years ago
• MalwareArchaeology / ARTHIR

  View on GitHub
  ATT&CK Remote Threat Hunting Incident Response
  ☆206Dec 8, 2024Updated last year
• SuprHackerSteve / Crescendo

  View on GitHub
  Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple's Endpoint Security Framework.
  ☆1,072Jul 22, 2021Updated 4 years ago
• YelpArchive / osxcollector

  View on GitHub
  A forensic evidence collection & analysis toolkit for OS X
  ☆1,891Jun 19, 2019Updated 6 years ago
• ydkhatri / mac_apt

  View on GitHub
  macOS (& ios) Artifact Parsing Tool
  ☆1,020Mar 8, 2026Updated 3 weeks ago
• CyborgSecurity / PoisonApple

  View on GitHub
  macOS persistence tool
  ☆229Feb 9, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• dropbox / certificate-sync

  View on GitHub
  Solve problems of device identity, certificates and the keychain.
  ☆13Jan 3, 2019Updated 7 years ago
• ygini / DockServiceManager

  View on GitHub
  Swift script based service allowing to manage the dock content via MDM and dockutil
  ☆28Jun 21, 2016Updated 9 years ago
• upils / redirect-lib

  View on GitHub
  Library of traffic redirectors
  ☆26Apr 7, 2020Updated 5 years ago
• jonbrown21 / Munki-Theme-Maker

  View on GitHub
  Munki Theme Maker allows you to create custom color based scheme themes for Munki.
  ☆11Jul 28, 2024Updated last year
• munki / munki-facts

  View on GitHub
  A framework for "admin-provided conditionals" for Munki.
  ☆50Jul 14, 2025Updated 8 months ago
• nettitude / Invoke-PowerThIEf

  View on GitHub
  The PowerThIEf, an Internet Explorer Post Exploitation library
  ☆130Feb 27, 2025Updated last year
• FSecureLABS / CalendarPersist

  View on GitHub
  JXA script to allow programmatic persistence via macOS Calendar.app alerts.
  ☆44Oct 31, 2020Updated 5 years ago
• franton / CIS-Apple-Security-Casper

  View on GitHub
  Basic examples of scripts and EA's to implement the CIS Apple Security guidelines
  ☆135Jun 13, 2018Updated 7 years ago
• pstirparo / utils

  View on GitHub
  Different DFIR and CTI utilities
  ☆39May 13, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• trailofbits / osquery-extensions

  View on GitHub
  osquery extensions by Trail of Bits
  ☆269Apr 12, 2023Updated 2 years ago
• skelsec / pypykatz_agent_dn

  View on GitHub
  Pypykatz agent implemented in .NET
  ☆84Mar 15, 2019Updated 7 years ago
• uber-common / metta

  View on GitHub
  An information security preparedness tool to do adversarial simulation.
  ☆1,138Apr 1, 2019Updated 6 years ago
• matterpreter / Shhmon

  View on GitHub
  Silencing Sysmon via driver unload
  ☆236Oct 13, 2022Updated 3 years ago
• zMarch / Orc

  View on GitHub
  Orc is a post-exploitation framework for Linux written in Bash
  ☆402Nov 12, 2019Updated 6 years ago
• 0xmachos / mac-white-papers

  View on GitHub
  Every OS X/ macOS white paper
  ☆114Apr 14, 2020Updated 5 years ago
• groob / moroz

  View on GitHub
  Moroz is a Santa server
  ☆145May 19, 2025Updated 10 months ago