Post-Infection Collection Toolkit
☆95Jan 31, 2023Updated 3 years ago
Alternatives and similar repositories for pict
Users that are interested in pict are comparing it to the libraries listed below
Sorting:
- Run Sigma detection rules on logs from the new MacOS EndpointSecurity Framework☆22Jan 22, 2021Updated 5 years ago
- ☆15May 26, 2021Updated 4 years ago
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆177Jul 1, 2020Updated 5 years ago
- Automatically create overrides for a list of AutoPkg recipes, using current production Munki pkginfo and templates to override final reci…☆17Aug 1, 2016Updated 9 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Apr 18, 2022Updated 3 years ago
- Evil Inject Finder Remote Capability and Parser☆11Nov 22, 2018Updated 7 years ago
- Swift-based fuzzing tools☆21May 22, 2023Updated 2 years ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆67Jul 1, 2020Updated 5 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Feb 3, 2022Updated 4 years ago
- Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.☆23Oct 13, 2025Updated 4 months ago
- ☆24Jul 17, 2025Updated 7 months ago
- The app we built in my 2019 PSU developer workshop. TokenUsers is a simple app that shows us all of the APFS Secure Token users on a syst…☆14Sep 25, 2019Updated 6 years ago
- Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedri…☆124Dec 27, 2020Updated 5 years ago
- ☆80Apr 18, 2023Updated 2 years ago
- Aftermath is a free macOS IR framework☆569Sep 25, 2025Updated 5 months ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Mar 21, 2023Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 5 months ago
- ☆15Dec 16, 2020Updated 5 years ago
- Generates configuration profiles to set Sparkle-updater-enabled apps off by default☆56Jun 28, 2023Updated 2 years ago
- Automatically promote (or demote) Munki pkginfo catalogs☆15Jul 12, 2015Updated 10 years ago
- just here for reference.☆17Feb 26, 2018Updated 8 years ago
- A macOS enumeration tool inspired by harmjoy's Windows-based Seatbelt enumeration tool. Author: Cedric Owens☆340Apr 28, 2022Updated 3 years ago
- Norimaci is a simple and lightweight malware analysis sandbox for macOS☆71Mar 3, 2020Updated 6 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Jan 20, 2022Updated 4 years ago
- Clean up your filthy Munki Repo☆42Sep 2, 2016Updated 9 years ago
- Build macOS packages with GCP Container Builder☆22Dec 26, 2017Updated 8 years ago
- Miscellaneous scripts.☆34Jul 14, 2015Updated 10 years ago
- Scripts to use with the macOS Security Compliance Project☆21Jan 12, 2026Updated last month
- A powerful and flexible tool to apply active attacks for disrupting stegomalware☆55Apr 28, 2022Updated 3 years ago
- This project has been archived and is no longer maintained☆16Apr 1, 2016Updated 9 years ago
- ☆15Jul 20, 2022Updated 3 years ago
- monitor macOS for malicious activity☆237Feb 5, 2025Updated last year
- A Python script that gathers all valid IP addresses from all text files from a directory, and checks them against Whois database, TOR rel…☆29Jun 27, 2022Updated 3 years ago
- Returns one or more artifacts about a Mac☆68Apr 9, 2022Updated 3 years ago
- ☆160Nov 26, 2023Updated 2 years ago
- A parser for Unified logging tracev3 files☆97Jul 25, 2025Updated 7 months ago
- macOS Endpoint Security Message Analysis Tool☆47Jan 31, 2022Updated 4 years ago
- Repo for code used in all presentation slides from the 2016 JNUC Presentation "Digging into Security, Compliance, and Reporting"☆43May 17, 2017Updated 8 years ago
- macOS (& ios) Artifact Parsing Tool☆1,005Feb 26, 2026Updated last week