Alternatives and similar repositories for pedro

Users that are interested in pedro are comparing it to the libraries listed below

• mandiant / macos-UnifiedLogs
  A cross platform parser for Apple UnifiedLogs!
  ☆277Updated last month
• PhorionTech / Kronos
  Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…
  ☆77Updated last year
• SentineLabs / XProtect-Malware-Families
  Mapping XProtect's obfuscated malware family names to common industry names.
  ☆87Updated last year
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆88Updated last month
• themittenmac / TrueTree
  A command line tool for pstree-like output on macOS with additional pid capturing capabilities
  ☆262Updated last year
• vobst / btf2json
  Generate Volatility3 profiles from BTF.
  ☆28Updated 8 months ago
• jamf / aftermath
  Aftermath is a free macOS IR framework
  ☆535Updated 3 weeks ago
• northpolesec / santa
  A binary and file access authorization system for macOS.
  ☆363Updated last week
• secureworks / atomic-harness
  A tool to run and validate telemetry for Atomic Red Team tests
  ☆14Updated last year
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆292Updated 7 months ago
• EC-DIGIT-CSIRC / sysdiagnose
  Forensic toolkit for iOS sysdiagnose feature
  ☆221Updated this week
• SentineLabs / macos-ttps-yara
  A ruleset to find potentially malicious code in macOS malware samples
  ☆40Updated 2 years ago
• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆93Updated last month
• cedowens / EntitlementCheck
  Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…
  ☆97Updated 2 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆109Updated 3 months ago
• mcarmanize / esfriend
  A minimal malware analysis sandbox for macOS
  ☆31Updated 2 years ago
• secwest / fast-fwsign
  ☆28Updated last year
• HarfangLab / endpoint-sec
  Rust Bindings for Endpoint Security
  ☆29Updated 3 weeks ago
• vastlimits / esmat
  macOS Endpoint Security Message Analysis Tool
  ☆47Updated 3 years ago
• msuiche / elegant-bouncer
  ELEGANTBOUNCER is a detection tool for file-based mobile exploits.
  ☆138Updated this week
• volatilityfoundation / dwarf2json
  convert ELF/DWARF symbol and type information into vol3's intermediate JSON
  ☆133Updated 11 months ago
• okta / customer-detections
  ☆145Updated 3 weeks ago
• l0psec / arm64_macOS_Syscalls
  ☆51Updated last year
• cisagov / parsnip
  ☆74Updated last month
• infosecB / LOOBins
  Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" ma…
  ☆477Updated last month
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆117Updated 11 months ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆38Updated last year
• fox-it / dissect.target
  The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…
  ☆72Updated this week
• Brandon7CC / mac-wheres-my-bootstrap
  Detect common classes of XPC exploits
  ☆14Updated 9 months ago
• mnrkbys / macosac
  Forensic Artifact Collection Tool for macOS
  ☆114Updated last month