Masochist
#Security Testing#Malware Analysis
A binary analysis and management framework for organizing and analyzing malware and exploit samples, and creating plugins.
Masochist: A Framework for Creating XNU-Based Rootkits
Masochist is a framework designed for the development of XNU-based rootkits. It is particularly beneficial for research in OS X and iOS security.
Exciting Features Include
* Public symbol resolution
* Process manipulation
* System call hijacking
Masochist is currently compatible with 64-bit OS X machines (to my knowledge). I have only tested it on version 10.10. If anyone is adventurous enough to try it on their own system, I would greatly appreciate the feedback.
Usage:
To utilize this code, please import these files into your kernel extension project within Xcode.
Next, import the necessary headers for your project
I suggest using this repository as a foundational starting point for your project.
Configuration Complete and Ready for Xcode Build
The configuration is complete, and the project is now ready to be built within Xcode.
You can find the API documentation on the Wiki page.
Disclaimer:
Please refrain from engaging in any foolish or illegal activities with this.
This stuff can break your Mac
If you're uncertain, consider running OS X in a virtual machine (VM).
