Masochist Logo

Masochist

0
Free
Visit Website

Masochist is a framework for creating XNU based rootkits. Very useful in OS X and iOS security research. It can do cool things like: * Public symbol resolution * Process manipulation * System call hijacking Masochist is currently compatible with 64-bit OS X machines (I think). I've only tested this on 10.10. If anyone is brave enough to try it on their system, I would be very grateful. Usage: To use this code, please import these files into your kernel extension project in Xcode. Then, import the headers that you need to use. I recommend this repo as a starting point for your project. It has been configured and is ready to be built inside Xcode. API docs can be found on the Wiki page. Disclaimer: Please don't do anything stupid/illegal with this. This stuff can break your Mac. If you're unsure, run OS X in a VM.

FEATURES

ALTERNATIVES

Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.

A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.

OCyara performs OCR on image files and scans them for matches to Yara rules, supporting Debian-based Linux distros.

A tool for hacking and security testing of JWT

Tool for decompressing malware samples to run Yara rules against them.

Explores malware interaction with Windows API and methods for detection and prevention.

One stop shop for decompiling Android apps with a focus on regenerating R references.

Python wrapper for Android APK decompilation with various converter and decompiler options.

PINNED