theevilbit / DuckDockTileLinks
☆16Updated last year
Alternatives and similar repositories for DuckDockTile
Users that are interested in DuckDockTile are comparing it to the libraries listed below
Sorting:
- Swift code to run a dylib on disk☆16Updated 3 years ago
- A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…☆32Updated 4 years ago
- Discover DYLD_INSERT_LIBRARIES hijacks on macOS☆44Updated 2 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆20Updated last year
- JavaScript for Automation (JXA) version of Patrick Wardle's tool that searches applications for dylib hijacking opportunities☆21Updated 5 years ago
- My nim learning experiments☆11Updated 2 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆24Updated 4 years ago
- ☆49Updated 11 months ago
- Examples of programmatically interacting with ioreg and sysctl to query system info☆10Updated 3 years ago
- Swift implementation of in-memory Mach-O loading on macOS☆63Updated 2 years ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆13Updated 3 years ago
- Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…☆14Updated 4 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆17Updated last year
- JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is…☆17Updated 4 years ago
- Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware☆32Updated 5 months ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆39Updated 3 years ago
- A PowerShell script to prevent Sysmon from writing its events☆15Updated 5 years ago
- ☆31Updated last year
- JXA implementation of some SwiftBelt functions. Author: Cedric Owens☆44Updated 2 years ago
- ☆15Updated 4 years ago
- Catalog Red Team techniques that cause popups in various macOS versions☆14Updated 7 months ago
- ☆39Updated 2 years ago
- JXA and swift code that can perform some macOS situational awareness without generating TCC prompts.☆39Updated 3 years ago
- If you have any questions, please open an issue.☆24Updated 3 years ago
- ObjectiveC CLI tool for interacting with macOS Keychain☆79Updated 2 years ago
- Discover which process execute a hunted binary inside macOS☆25Updated 3 years ago
- ESF modular ingestion tool for development and research.☆35Updated 3 years ago
- Objective C dylibHijackScanner and analysis tool☆39Updated last year
- My Preparations for the "macOS Control Bypasses (EXP-312-osmr)" Course By OffensiveSecurity.☆23Updated 3 years ago
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆22Updated 3 years ago