blackhat-arsenal-tools/malware_research/procInfo.md

Proc Info Lib

Description

Proc Info is an open-source, user-mode, process library for macOS. It provides simple interface to retrieve detailed information about running processes, plus allows one to asynchronously monitor process creation & exit events.

Using this library, one can track processes during malware analysis or during bug hunting.

Categories

• Malware Research
• Exploitation
• Hardening

Black Hat sessions

Code

https://github.com/objective-see/ProcInfo
https://github.com/objective-see/ProcInfoExample

Lead Developer

Patrick Wardle - Objective-See

Social Media

• Twitter
• Company Website