Discover DYLD_INSERT_LIBRARIES hijacks on macOS
☆45Sep 15, 2022Updated 3 years ago
Alternatives and similar repositories for DylibHijackTest
Users that are interested in DylibHijackTest are comparing it to the libraries listed below
Sorting:
- macOS shellcode loader written in Objective-C☆49Jul 15, 2022Updated 3 years ago
- Swift code to run a dylib on disk☆16May 9, 2022Updated 3 years ago
- JXA and swift code that can perform some macOS situational awareness without generating TCC prompts.☆40Apr 20, 2022Updated 3 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆98Sep 14, 2022Updated 3 years ago
- ObjectiveC CLI tool for interacting with macOS Keychain☆82Oct 10, 2022Updated 3 years ago
- A proof of concept for a clickjacking attack on macOS.☆97Feb 12, 2024Updated 2 years ago
- Execute MachO binaries in memory using CGo☆79May 24, 2021Updated 4 years ago
- In-memory sleep encryption and heap encryption for Go applications through a shellcode function.☆40Jan 14, 2024Updated 2 years ago
- ☆12Jun 22, 2022Updated 3 years ago
- Python C2 with JScript Implant☆15Nov 15, 2023Updated 2 years ago
- ☆50Jun 28, 2022Updated 3 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Mar 9, 2025Updated 11 months ago
- Exploit for CVE-2023-32364☆23Sep 26, 2023Updated 2 years ago
- Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible☆12Sep 15, 2023Updated 2 years ago
- ☆15Jan 26, 2023Updated 3 years ago
- Man in the Browser Framework☆48Dec 24, 2024Updated last year
- AAD related enumeration in Nim☆131Sep 7, 2023Updated 2 years ago
- PoC of macho loading from memory☆58Nov 18, 2024Updated last year
- Swift implementation of in-memory Mach-O loading on macOS☆68Jul 19, 2022Updated 3 years ago
- ☆15May 26, 2021Updated 4 years ago
- A simple macOS debugger detection trick☆19Apr 7, 2025Updated 11 months ago
- JXA script for Mythic that prints the TCC.db☆15Apr 18, 2021Updated 4 years ago
- ☆142May 4, 2022Updated 3 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Fast Windows post-exploitation wins after initial access.☆29Jan 28, 2026Updated last month
- Take over macOS Electron apps' TCC permissions☆223Aug 12, 2023Updated 2 years ago
- A CLI tool which can be used to inject JavaScript into arbitrary Chrome origins via the Chrome DevTools Protocol☆46Jan 18, 2021Updated 5 years ago
- Bypass WiFi client isolation on Open and WPA2-PSK networks☆40Oct 14, 2025Updated 4 months ago
- basic proxy as an azure function serverless app☆17Jan 12, 2023Updated 3 years ago
- A VSCode devcontainer for development of COFF files with batteries included.☆50Jul 10, 2023Updated 2 years ago
- Generate droppers with encrypted payloads automatically.☆54Nov 16, 2021Updated 4 years ago
- ☆190Nov 21, 2024Updated last year
- Electron-Probe leverages the Node variant of the Chrome Debugging Protocol to execute JavaScript payloads inside of target Electron appli…☆31Jan 13, 2026Updated last month
- Linux Sleep Obfuscation☆112Jan 7, 2024Updated 2 years ago
- ☆20Nov 5, 2025Updated 4 months ago
- Enumerate Location Services using CoreLocation API on macOS☆18Dec 2, 2021Updated 4 years ago
- Dump Teams conversations☆18Jun 9, 2021Updated 4 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆22Mar 5, 2024Updated 2 years ago
- Programmatically extract saved passwords from Chromium based browsers.☆124Feb 26, 2022Updated 4 years ago