trailofbits / sinter

Related projects: ⓘ

• objective-see / ProcessMonitor
  Process Monitor Library (based on Apple's new Endpoint Security Framework)
  ☆422Updated 10 months ago
• themittenmac / TrueTree
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆236Updated 3 weeks ago
• theevilbit / Shield
  An app to protect against process injection and suspicious file links on macOS
  ☆217Updated 3 years ago
• SuprHackerSteve / Crescendo
  Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple's Endpoint Security Framework.
  ☆1,009Updated 3 years ago
• 0xmachos / mac-white-papers
  Every OS X/ macOS white paper
  ☆114Updated 4 years ago
• objective-see / ProcInfo
  process info/monitoring library for macOS
  ☆413Updated 3 years ago
• objective-see / FileMonitor
  File Monitor Library (based on Apple's new Endpoint Security Framework)
  ☆320Updated last year
• santoru / filewatcher
  A simple auditing utility for macOS
  ☆280Updated 3 years ago
• objective-see / WhatsYourSign
  WhatsYourSign adds a menu item to Finder.app. Simply right-, or control-click on any file to display its cryptographic signing informatio…
  ☆270Updated 7 months ago
• 0xmachos / mOSL
  Bash script to audit and fix macOS Catalina (10.15.x) security settings
  ☆225Updated 3 years ago
• richiercyrus / Venator
  [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.
  ☆174Updated 4 years ago
• airbnb / rudolph
  A serverless sync server for Santa, built on AWS
  ☆80Updated 5 months ago
• groob / moroz
  Moroz is a Santa server
  ☆130Updated 6 months ago
• objective-see / BlockBlock
  BlockBlock provides continual protection by monitoring persistence locations.
  ☆629Updated this week
• objective-see / DumpBTM
  And open-source version of % sfltool dumpbtm
  ☆111Updated 11 months ago
• zcutlip / prefsniff
  A utility to sniff preferences changes to macOS plist files
  ☆242Updated 8 months ago
• PhorionTech / Kronos
  Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…
  ☆68Updated 9 months ago
• 0xmachos / macos-scripts
  Various scripts for macOS tasks
  ☆114Updated 4 months ago
• objective-see / DoNotDisturb
  Detect Evil Maid Attacks
  ☆291Updated 3 years ago
• objective-see / ReiKey
  Malware and other applications may install persistent keyboard "event taps" to intercept your keystrokes. ReiKey can scan, detect, and mo…
  ☆325Updated 3 years ago
• 0xmachos / apps-behaving-badly
  List of legitimate macOS apps doing not great things
  ☆35Updated 2 years ago
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆82Updated 4 months ago
• duo-labs / apple-t2-xpc
  Tools to explore the XPC interface of Apple's T2 chip
  ☆157Updated 5 years ago
• securing / SimpleXPCApp
  Secure example of an XPC helper written in Swift
  ☆99Updated 4 years ago
• droe / xnumon
  monitor macOS for malicious activity
  ☆230Updated 5 years ago
• objective-see / AuRevoir
  View and remove notification messages from Apple's "Notification Database"
  ☆100Updated 3 years ago
• objective-see / DNSMonitor
  A DNS Monitor, leveraging Apple's NEDNSProxyProvider/Network Extension Framework
  ☆162Updated 3 weeks ago
• catilac / plistwatch
  ☆147Updated last year
• azenla / AppleCache
  Apple Content Cache Reverse Engineering
  ☆123Updated last year
• macadmins / osquery-extension
  An osquery extension for endpoint engineers
  ☆96Updated last week