Alternatives and similar repositories for threat-hunting-macos-book

Users that are interested in threat-hunting-macos-book are comparing it to the libraries listed below

• mandiant / macos-UnifiedLogs
  A cross platform parser for Apple UnifiedLogs!
  ☆290Updated last month
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆89Updated last week
• PhorionTech / Kronos
  Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…
  ☆76Updated last year
• EC-DIGIT-CSIRC / sysdiagnose
  Forensic toolkit for iOS sysdiagnose feature
  ☆237Updated this week
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆89Updated 3 months ago
• northpolesec / santa
  A binary and file access authorization system for macOS.
  ☆427Updated this week
• blacktop / presentations
  Slides and resources for talks I've given
  ☆49Updated 2 years ago
• themittenmac / TrueTree
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆266Updated last year
• msuiche / elegant-bouncer
  ELEGANTBOUNCER is a detection tool for file-based mobile exploits.
  ☆156Updated last month
• wowsignal-io / pedro
  Pipeline EDR Observer - A lightweight, open source EDR for Linux
  ☆16Updated 3 weeks ago
• BlackSquirrelz / awesome-apple-security
  Curated list of tools, techniques and resources related to Apple Security (macOS, iOS, iPadOS, tvOS, watchOS) aimed to help people with a…
  ☆57Updated 10 months ago
• seemoo-lab / CellGuard
  CellGuard is a research project that analyzes how cellular networks are operated and possibly surveilled
  ☆139Updated 2 months ago
• objective-see / TAOMM
  The Art of Mac Malware
  ☆56Updated this week
• jamf / aftermath
  Aftermath is a free macOS IR framework
  ☆552Updated last month
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆38Updated last year
• Karmaz95 / Snake_Apple
  Articles and tools related to research in the Apple environment (mainly macOS).
  ☆240Updated last week
• vastlimits / esmat
  macOS Endpoint Security Message Analysis Tool
  ☆47Updated 3 years ago
• objective-see / DumpBTM
  And open-source version of % sfltool dumpbtm
  ☆141Updated 2 years ago
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆95Updated 3 months ago
• infosecB / LOOBins
  Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" ma…
  ☆499Updated 3 months ago
• SentineLabs / macos-ttps-yara
  A ruleset to find potentially malicious code in macOS malware samples
  ☆41Updated 2 years ago
• seemoo-lab / BaseTrace
  A framework for researching the interface between the iPhone's application processor and its baseband
  ☆53Updated 2 weeks ago
• 0xmachos / macOS-Security-Research
  macOS Security Research
  ☆119Updated last year
• ReverseApple / GhidraApple
  Better Apple binary analysis for Ghidra
  ☆138Updated last month
• giuseppetotaro / asla
  Bash script for performing the logical acquisition of Apple Silicon Mac
  ☆15Updated last year
• l0psec / arm64_macOS_Syscalls
  ☆54Updated last year
• mcarmanize / esfriend
  A minimal malware analysis sandbox for macOS
  ☆34Updated 2 years ago
• cedowens / EntitlementCheck
  Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…
  ☆97Updated 3 years ago
• mvt-project / mvt-indicators
  Index and collection of MVT compatibile indicators of compromise.
  ☆108Updated 3 months ago
• ataumo / macos_hardening
  This is a macOS hardening to read or set security configuration.
  ☆153Updated last year