theevilbit / DuckDockTile
☆15Updated last year
Related projects ⓘ
Alternatives and complementary repositories for DuckDockTile
- ☆39Updated 4 months ago
- Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware☆28Updated 3 weeks ago
- ESF modular ingestion tool for development and research.☆34Updated 2 years ago
- JavaScript for Automation (JXA) version of Patrick Wardle's tool that searches applications for dylib hijacking opportunities☆20Updated 5 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆18Updated 8 months ago
- Discover which process execute a hunted binary inside macOS☆24Updated 2 years ago
- Discover DYLD_INSERT_LIBRARIES hijacks on macOS☆41Updated 2 years ago
- Swift code to run a dylib on disk☆15Updated 2 years ago
- Swift implementation of in-memory Mach-O loading on macOS☆61Updated 2 years ago
- A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…☆30Updated 3 years ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆38Updated 3 years ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆13Updated 2 years ago
- ☆15Updated 3 years ago
- ☆30Updated 5 months ago
- JXA implementation of some SwiftBelt functions. Author: Cedric Owens☆42Updated last year
- Enumerate running processes using com.apple.CodeSigningHelper☆13Updated 7 months ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆22Updated 3 years ago
- PoC of macho loading from memory☆52Updated this week
- JXA script to allow programmatic persistence via macOS Calendar.app alerts.☆40Updated 4 years ago
- ☆31Updated 3 years ago
- ObjectiveC CLI tool for interacting with macOS Keychain☆74Updated 2 years ago
- Uses Apple's MDM protocol to backdoor a device with a malicious profile.☆50Updated 3 years ago
- Scripts to secure and harden Mac OS X☆31Updated 3 years ago
- Objective C dylibHijackScanner and analysis tool☆34Updated last year
- Enumerate Location Services using CoreLocation API on macOS☆17Updated 2 years ago
- Brew Local Privilege Escalation exploit on Intel macOS☆17Updated 8 months ago
- macOS Endpoint Security Message Analysis Tool☆44Updated 2 years ago
- If you have any questions, please open an issue.☆24Updated 2 years ago
- Mickey's Blogs☆27Updated last week
- CVE-2020–9934 POC☆20Updated 4 years ago