Jump to content

Recommended Posts

Posted
Quote

The tool is being tested in the beta phase, and it only gathers MacOS system information at this time.

 

The code is poorly organized and requires significant improvements.

 

Description

Bash tool used for proactive detection of malicious activity on macOS systems.

 

I was inspired by Venator-Swift and decided to create a bash version of the tool.

 

OneLiner command

curl https://raw.githubusercontent.com/ab2pentest/MacOSThreatTrack/main/MacOSThreatTrack.sh | bash

 

Gathered information

[+] System info
[+] Users list
[+] Environment variables
[+] Process list
[+] Active network connections
[+] SIP status
[+] GateKeeper status
[+] Zsh history
[+] Bash history
[+] Shell startup scripts
[+] PF rules
[+] Periodic scripts
[+] CronJobs list
[+] LaunchDaemons data
[+] Kernel extensions
[+] Installed applications
[+] Installation history
[+] Chrome extensions

 

Todo

  1. Saving output as JSON instead of printing out the result.

 

Download: MacOSThreatTrack-main.zip

 

or 

 

git clone https://github.com/ab2pentest/MacOSThreatTrack.git

 

Source

  • Upvote 1

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...