slavaim / MacOSX-SparseFile-KernelMode

Related projects: ⓘ

• slavaim / MacOSX-VFS-Isolation-Filter
  A MacOS VFS isolation layer to redirect file I/O operations.
  ☆28Updated 6 years ago
• slavaim / MacOSX-VFS-redirector
  Mac OS X file system filter to redirect file operations
  ☆40Updated 6 years ago
• slavaim / MacOSX-IOKit-Hooker
  A macOS IOKit objects hooker
  ☆86Updated 7 years ago
• gdbinit / can_I_suid
  A TrustedBSD module to control execution of binaries with suid bit set
  ☆37Updated 9 years ago
• wrfsh / sysent_hook
  Mac OS X syscall hook kext
  ☆22Updated 8 years ago
• slavaim / MacOSX-FileSystem-Filter
  A file system filter for Mac OS X
  ☆97Updated 7 years ago
• slavaim / dl_kextsymboltool
  A tool for Mac OS X proxy kext generation to export kernel symbols
  ☆25Updated 6 years ago
• cocoahuke / mackextdump
  Dump Kext information from Macos. Support batch analysis. The disassembly framework used is Capstone
  ☆43Updated 7 years ago
• AloneMonkey / MacKext
  Learn MacOS kernel extensions
  ☆45Updated 6 years ago
• jzdziarski / kernelresolver
  macOS Private KPI Symbol Resolver
  ☆49Updated 7 years ago
• jmpews / rtspy
  runtime spy elf with android/linux and macho with macOS/IOS
  ☆32Updated 7 years ago
• willyu-elastic / SimpleEndpoint
  Sample code for macOS Extensions Part 3
  ☆24Updated 4 years ago
• bxlcity / malware
  ☆34Updated 7 years ago
• steven-michaud / SandboxMirror
  Tool for reverse-engineering Apple's sandbox
  ☆54Updated 7 years ago
• cocoahuke / ioskextdump_ios10
  iOS10~iOS13 Edition) Dump Kext information from iOS kernel cache. Applicable to the kernel which dump from memory. The disassembly framew…
  ☆20Updated 2 years ago
• gyunaev / macprocmon
  MacOS X process monitor using EndpointSecurity extension.
  ☆33Updated 3 years ago
• macmade / Obfuscate
  C/C++ machine code obfuscation.
  ☆64Updated 3 years ago
• knightsc / EnterDebugger
  A kext to facilitate calling PE_enter_debugger on machines that don't respect Cmd-Ctrl-Opt-Shift-Esc
  ☆14Updated 6 years ago
• gdbinit / crackme_nr1
  fG!'s crackme #1 source code
  ☆35Updated 11 years ago
• gdbinit / ExtractMachO
  IDA plugin to extract Mach-O binaries located in the disassembly or data
  ☆57Updated 5 years ago
• Redridge / open-source-machlib
  Hopefully an open source equivalent of machlib.
  ☆21Updated 7 years ago
• slavaim / MacOSX-Network-Sockets-Filter
  A MacOS network kernel extension filter for IPv4/IPv6 sockets.
  ☆74Updated 7 years ago
• nixerr / ida_scripts
  Scripts were written by me
  ☆19Updated 6 months ago
• Proteas / install_firehose_lib
  install firehose for building xnu
  ☆19Updated 5 years ago
• vivami / grey_fox
  The grey fox
  ☆25Updated 8 years ago
• knightsc / osx_and_ios_kernel_programming
  Updated sample code for OS X and iOS Kernel Programming book
  ☆34Updated 5 years ago
• comex / Kmem
  enable kmem without rebooting
  ☆23Updated 12 years ago
• cocoahuke / iosdumpkernelfix
  This tool will help to fix the Mach-O header of iOS kernel which dump from the memory. So that IDA or function symbol-related tools can l…
  ☆22Updated 7 years ago
• GeoSn0w / hspGuard
  Checks macOS for Kernel Task Port. It may help detect intrusive kexts that would leak the kernel task.
  ☆21Updated last year
• mahmudz / malware
  ☆27Updated 7 years ago