awesome-awesomeness/html/osxandiossecurity.html

<h1 id="macos-and-ios-security-related-tools-awesome">macOS and iOS
Security Related Tools <a href="https://awesome.re"><img
src="https://awesome.re/badge-flat.svg" alt="Awesome" /></a></h1>
<p><a
href="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/test.yaml"><img
src="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/test.yaml/badge.svg"
alt="Test" /></a> <a
href="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-markdown.yaml"><img
src="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-markdown.yaml/badge.svg"
alt="Lint Markdown" /></a> <a
href="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-shell-script.yaml"><img
src="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-shell-script.yaml/badge.svg"
alt="Lint Shell scripts" /></a> <a
href="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-yaml.yaml"><img
src="https://github.com/ashishb/osx-and-ios-security-awesome/actions/workflows/lint-yaml.yaml/badge.svg"
alt="Lint YAML" /></a></p>
<figure>
<img
src="https://img.shields.io/github/contributors/ashishb/osx-and-ios-security-awesome"
alt="GitHub contributors" />
<figcaption aria-hidden="true">GitHub contributors</figcaption>
</figure>
<h2 id="contents">Contents</h2>
<ul>
<li><a href="#macos-and-ios-security-related-tools--">macOS and iOS
Security Related Tools</a>
<ul>
<li><a href="#contents">Contents</a></li>
<li><a href="#macos-security">macOS Security</a></li>
<li><a href="#ios-security">iOS Security</a></li>
<li><a href="#ios-jailbreaks">iOS Jailbreaks</a>
<ul>
<li><a href="#other-awesome-lists">Other Awesome Lists</a></li>
</ul></li>
<li><a href="#license">License</a></li>
</ul></li>
</ul>
<h2 id="macos-security">macOS Security</h2>
<ol type="1">
<li><a href="https://github.com/Yelp/OSXCollector">OSX collector</a> -
Forensic analysis.</li>
<li><a href="https://github.com/jipegit/OSXAuditor">OSX auditor</a> -
Forensic analysis.</li>
<li><a href="https://github.com/ydkhatri/mac_apt">mac_apt</a> - macOS
Artifact Parsing Tool for forensic analysis.</li>
<li><a href="https://github.com/google/santa">Santa</a> - Binary
whitelisting/blacklisting system.</li>
<li><a href="https://github.com/squiffy/Masochist">Masochist</a> -
Framework for creating XNU-based rootkits.</li>
<li><a href="http://stevenygard.com/projects/class-dump/">Class-dump</a>
- Command-line utility to dump Objective-C runtime information.</li>
<li><a href="https://github.com/rentzsch/mach_inject">Mach inject</a> -
Inter process code injection for macOS.</li>
<li><a href="https://github.com/rodionovd/task_vaccine">Task vaccine</a>
- Similar to mach inject.</li>
<li><a href="http://www.hopperapp.com/">Hopper</a> - Hopper disassembler
(not free).</li>
<li><a href="https://github.com/samdmarshall/machodiff">Mach-O diff</a>
- Mach-o diffing tool.</li>
<li><a href="https://github.com/pstirparo/mac4n6">Mac4n6</a> - A
collection of macOS and iOS forensic artifacts.</li>
<li><a href="https://github.com/openscanner/XGuardian">XGuardian
scanner</a> - Security Scanner for macOS.</li>
<li><a href="https://github.com/bnagy/crashwalk">Crashwalk</a> - Bucket
and triage on-disk crashes</li>
<li><a
href="https://github.com/SilverMoonSecurity/PassiveFuzzFrameworkOSX">PassiveFuzzFrameworks</a></li>
<li><a href="https://github.com/facebook/osquery">osquery</a> -
Cross-platform tool for data collection and forensic analysis.</li>
<li><a href="https://github.com/alichtman/stronghold">stronghold</a> -
Easily configure macOS security settings from the terminal.</li>
<li><a
href="https://objective-see.com/products/blockblock.html">BlockBlock</a>
- BlockBlock continually monitors common persistence locations and
displays an alert whenever a persistent component is added to the
OS.</li>
<li><a href="https://objective-see.com/products/dhs.html">Dylib Hijack
Scanner</a> - A Simple utility that will scan your computer for
applications that are either susceptible to dylib hijacking or have been
hijacked.</li>
<li><a
href="https://objective-see.com/products/kextviewr.html">KextViewer</a>
- View all modules loaded in the OS kernel.</li>
<li><a
href="https://objective-see.com/products/knockknock.html">KnockKnock</a>
- See what’s persistently installed on your Mac.</li>
<li><a href="http://halo.github.io/LinkLiar">LinkLiar</a> - Link-Layer
MAC spoofing GUI for macOS.</li>
<li><a
href="https://objective-see.com/products/lockdown.html">LockDown</a> -
Open-source tool for El Capitan that audits and remediates security
configuration settings.</li>
<li><a
href="https://www.malwarebytes.com/mac-download/">MalwareBytes</a> -
Malwarebytes crushes the growing threat of Mac malware, so you are
protected and your machine keeps running silky smooth.</li>
<li><a
href="https://objective-see.com/products/oversight.html">OverSight</a> -
Monitor mic and webcam, alerting you when the internal mic is activated
or whenever a process accesses the webcam.</li>
<li><a
href="https://objective-see.com/products/ransomwhere.html">RansomWhere?</a>
- Ransomware Detection.</li>
<li><a
href="https://objective-see.com/products/taskexplorer.html">TaskExplorer</a>
- Explore all processes running on your Mac with TaskExplorer.</li>
<li><a
href="https://objective-see.com/products/whatsyoursign.html">What’s Your
Sign?</a> - Adds menu item to Finder.app to display the cryptographic
signing information for any file.</li>
<li><a href="http://fsmonitor.com/">FSMonitor</a> - Monitor all changes
in the file system.</li>
<li><a href="https://github.com/paretoSecurity/pareto-mac/">Pareto
Security</a> - A MenuBar app to automatically audit your Mac for basic
security hygiene.</li>
<li><a href="https://github.com/Lennolium/swiftGuard">swiftGuard</a> -
Lightweight App that safeguards your System’s USB Ports from any
Unauthorized Access and performs various countermeasures.</li>
<li><a href="https://github.com/LaurieWired/Malimite">Malimite</a> - iOS
and macOS Decompiler</li>
<li><del><a href="https://github.com/etsy/MIDAS">MIDAS</a> - macOS
Intrusion Detection Analysis System.</del> Abandoned.</li>
<li><del><a
href="https://github.com/manasecurity/mana-security-app">Mana
Security</a> - Vulnerability Management app for individuals. It helps to
keep macOS and installed applications updated.</del> Looks
abandoned.</li>
</ol>
<h2 id="ios-security">iOS Security</h2>
<p>A collection of iOS security-related resources</p>
<ol type="1">
<li><a href="https://github.com/dmayer/idb">IDB</a> - iOS App Security
Assessment Tool</li>
<li><a href="https://github.com/S3Jensen/iRET">iRET</a> - iOS Reverse
Engineering Toolkit</li>
<li><a href="http://damnvulnerableiosapp.com/">DVIA</a> - Damn
Vulnerable iOS App for learning</li>
<li><a href="https://github.com/prateek147/DVIA-v2">DVIA v2</a> - Damn
Vulnerable iOS App v2 for learning</li>
<li><a
href="https://github.com/libimobiledevice/libimobiledevice">LibiMobileDevice</a>
- A cross-platform protocol library to communicate with iOS devices</li>
<li><a href="https://github.com/mwrlabs/needle">Needle</a> - iOS App
Pentesting Tool</li>
<li><a href="https://github.com/Siguza/imobax">imobax</a> - iOS Mobile
Backup Extractor</li>
<li><a
href="https://github.com/googleprojectzero/iOS-messaging-tools">iMessage
Fuzzing</a> - iMessage fuzzing tools from Google’s Project Zero</li>
<li><a href="https://github.com/cossacklabs/themis">Themis</a> - a
multi-platform programming library for solving typical data security
tasks: secure data storage, secure messaging, zero-knowledge proof
authentication, etc. Recommended by OWASP MASVS.</li>
<li><a
href="https://www.nowsecure.com/blog/2016/09/19/announcing-nowsecure-lab-automated/">NowSecure
Lab Automated</a> is an enterprise tool for mobile app security testing.
Lab Automated features dynamic and static analysis on real devices in
the cloud and returns results in minutes.</li>
<li><del><a href="https://appcritique.boozallen.com">AppCritique</a> -
iOS App Security Assessment Tool</del></li>
</ol>
<h2 id="ios-jailbreaks">iOS Jailbreaks</h2>
<ol type="1">
<li><a href="https://ios.cfw.guide">CFW Guide</a> - A complete iOS
jailbreaking guide, from stock to jailbroken.</li>
<li><a href="https://ellekit.space/dopamine">Dopamine</a> - Rootless
Jailbreak for iOS 15.0 - 16.6.1, A8 - A16, and M1 - M2.</li>
<li><a href="https://nathan4s.lol/nathanlr/nathanlr.tipa">Nathanlr</a> -
Rootless Semi-Jailbreak for 16.5.1-16.6.1.</li>
<li><a href="https://taurine.app">Taurine</a> - Rootful Jailbreak for
iOS 14.0 - 14.8.1.</li>
<li><a href="https://theodyssey.dev">Odyssey</a> - Rootful Jailbreak for
iOS 13.0 - 13.7.</li>
<li><a href="https://chimera.coolstar.org">Chimera</a> - Rootful
Jailbreak for iOS 12 — 12.5.7.</li>
<li><a href="https://coolstar.org/electra">Electra</a> - Rootful
Jailbreak for 11.0 – 11.4.1.</li>
<li><a href="https://totally.not.spyware.lol">TotallyNotSpyware</a> -
Rootful Jailbreak for iOS 10.0 - 10.3.3 64-bit devices.</li>
<li><a href="https://kok3shidoll.web.app/kok3shi9.html">kok3shi9all</a>
Rootful Jailbreak for 9.3.2 - 9.3.6, as well as 64-bit devices on 9.2 -
9.3.1.</li>
<li><a href="https://phoenixpwn.com">PhoenixPwn</a> - Rootful Jailbreak
for 9.3.5 32-bit devices.</li>
</ol>
<hr />
<h2 id="license">License</h2>
<p><a href="https://creativecommons.org/licenses/by-sa/4.0/"><img
src="https://licensebuttons.net/l/by-sa/4.0/88x31.png"
alt="Creative Commons License" /></a></p>
<p>This work is licensed under a <a
href="https://creativecommons.org/licenses/by-sa/4.0/">Creative Commons
Attribution-ShareAlike 4.0 International License</a>.</p>
<p><a
href="https://github.com/ashishb/osx-and-ios-security-awesome">osxandiossecurity.md
Github</a></p>