Masochist Logo

Masochist

0
Free
Visit Website

Masochist is a framework for creating XNU based rootkits. Very useful in OS X and iOS security research. It can do cool things like: * Public symbol resolution * Process manipulation * System call hijacking Masochist is currently compatible with 64-bit OS X machines (I think). I've only tested this on 10.10. If anyone is brave enough to try it on their system, I would be very grateful. Usage: To use this code, please import these files into your kernel extension project in Xcode. Then, import the headers that you need to use. I recommend this repo as a starting point for your project. It has been configured and is ready to be built inside Xcode. API docs can be found on the Wiki page. Disclaimer: Please don't do anything stupid/illegal with this. This stuff can break your Mac. If you're unsure, run OS X in a VM.

FEATURES

ALTERNATIVES

A tool to locally check for signs of a rootkit with various checks and tests.

Binary analysis and management framework for organizing malware and exploit samples.

An online hash checker utility that retrieves information from various online sources, including Virustotal, HybridAnalysis, and more.

Collection of Python scripts for automating tasks and enhancing IDA Pro functionality

A Burp extension to check JWT tokens for potential weaknesses

A tool for signature analysis of RTF files to detect potentially unique parts and malicious documents.

A collaborative malware analysis framework with various features for automated analysis tasks.

Andromeda makes reverse engineering of Android applications faster and easier.