santoru / filewatcher
A simple auditing utility for macOS
☆280Updated 3 years ago
Related projects: ⓘ
- Parser for OSX/iOS FSEvents Logs☆232Updated 5 months ago
- Every OS X/ macOS white paper☆114Updated 4 years ago
- process info/monitoring library for macOS☆413Updated 3 years ago
- monitor macOS for malicious activity☆230Updated 5 years ago
- A command line tool for pstree-like output on macOS with additional pid capturing capabilities☆236Updated 3 weeks ago
- Process Monitor Library (based on Apple's new Endpoint Security Framework)☆422Updated 10 months ago
- A user-mode application authorization system for MacOS written in Swift☆301Updated 4 years ago
- File Monitor Library (based on Apple's new Endpoint Security Framework)☆320Updated last year
- Presentation Archives for my macOS and iOS Related Research☆234Updated 2 years ago
- ☆126Updated this week
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆174Updated 4 years ago
- A proof-of-concept tool for reading OS X keychain passwords☆506Updated 5 years ago
- An app to protect against process injection and suspicious file links on macOS☆217Updated 3 years ago
- sniff mouse and keyboard events☆214Updated 3 years ago
- Mac OS X Memory Analysis Toolkit☆161Updated 8 years ago
- A macOS <= 10.14.3 Keychain exploit☆247Updated 5 years ago
- WhatsYourSign adds a menu item to Finder.app. Simply right-, or control-click on any file to display its cryptographic signing informatio…☆270Updated 7 months ago
- ☆288Updated this week
- OpenBSM open audit implementation☆163Updated 11 months ago
- example project, utilizing Proc Info library☆67Updated 3 years ago
- Every iOS security guide☆262Updated 4 years ago
- Bash script to audit and fix macOS Catalina (10.15.x) security settings☆226Updated 3 years ago
- Detect Evil Maid Attacks☆290Updated 3 years ago
- macOS FileVault cracking tool☆239Updated 3 years ago
- checks if an application is pristine (untampered) and from the official Mac App Store☆70Updated 3 years ago
- Filters that process and transform the output of osxcollector☆77Updated 5 years ago
- A kernel network manager with monitoring and limiting capabilities for macOS. #nsacyber☆103Updated 7 years ago
- Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple's Endpoint Security Framework.☆1,009Updated 3 years ago
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆100Updated 6 years ago
- View and remove notification messages from Apple's "Notification Database"☆100Updated 3 years ago