☆33Jun 12, 2024Updated last year
Alternatives and similar repositories for macos
Users that are interested in macos are comparing it to the libraries listed below
Sorting:
- ☆12Aug 10, 2024Updated last year
- Apfell POC Chrome Extension Payload☆10Jun 24, 2020Updated 5 years ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- Swift code to run a dylib on disk☆16May 9, 2022Updated 3 years ago
- Golang Tool to interact with Launchd and other services with XPC☆29May 7, 2020Updated 5 years ago
- JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is…☆17Jan 31, 2021Updated 5 years ago
- Shell utility to list colorfully show what processes are listening on what ports.☆19Aug 17, 2019Updated 6 years ago
- JXA implementation of some SwiftBelt functions. Author: Cedric Owens☆46Jun 22, 2023Updated 2 years ago
- Enumerate Location Services using CoreLocation API on macOS☆18Dec 2, 2021Updated 4 years ago
- Assorted, MIT licensed, threat hunting rules from @bradleyjkemp☆14Mar 11, 2022Updated 4 years ago
- Given a string determine the possible hashing algorithms used to produce that string.☆17Nov 23, 2020Updated 5 years ago
- A library to parse macOS LoginItems☆18Aug 28, 2022Updated 3 years ago
- various slides and presentations I've worked on☆19Mar 21, 2025Updated 11 months ago
- Chromium Cookie import / export tool☆11Jul 21, 2024Updated last year
- Payload designed for targeting Jamf enrolled devices.☆39May 19, 2023Updated 2 years ago
- A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…☆34Apr 15, 2021Updated 4 years ago
- A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854☆86Oct 15, 2020Updated 5 years ago
- If you have any questions, please open an issue.☆25Apr 6, 2022Updated 3 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 4 years ago
- 2018 Advent Calendar browser pwnables☆15Feb 14, 2019Updated 7 years ago
- Git Web Hook Tunnel for C2☆28Nov 7, 2023Updated 2 years ago
- Miscellaneous for various things☆21Nov 19, 2024Updated last year
- A CLI tool for leveraging IDP signing keys to impersonate users and groups☆19Apr 1, 2021Updated 4 years ago
- Apfell C2 Server for the Google Chrome Extension Payload☆12Aug 12, 2020Updated 5 years ago
- ☆29Apr 7, 2023Updated 2 years ago
- PoC☆212Jan 13, 2025Updated last year
- ☆15Jul 20, 2022Updated 3 years ago
- Provides an easy way to collect and send Slack access & integration logs.☆13Oct 19, 2021Updated 4 years ago
- ☆14May 20, 2019Updated 6 years ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- A repo full of example gscripts☆101Sep 6, 2019Updated 6 years ago
- Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedri…☆124Dec 27, 2020Updated 5 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Jan 16, 2018Updated 8 years ago
- Application Hijack Scanner for macOS☆71Sep 28, 2021Updated 4 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated 9 months ago
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆177Jul 1, 2020Updated 5 years ago
- ESF modular ingestion tool for development and research.☆38Dec 21, 2021Updated 4 years ago
- MacOS kernel memory leak (4 bytes)☆30Apr 14, 2020Updated 5 years ago