Home » Blogs » wishi's blog

Free MacOS security apps and more

A not so standard list...

All listed tools are freely available with very few outstanding exceptions.
- In fact I made this list... and didn't want to mention stuff like Nmap or Nessus... LittleSnitch or so. Everybody knows these e. g., everybody uses them. Why mention them multi-million times? ;)
Here's some alternative stuff for true seekers.

Vulnerability checks

OpenVAS - develops in an interesting directions... One day hd might release what he does in secret with Metasploit and OpenVAS :).
If you cannot manage to build it: here's a download.
Be careful if you chose to download the Nagios build. It may be vulnerable because it's old (the PoC is in msf). Seems like a feature to me anyhow.

GrendelScan - a deep webapp security scanner. Does spidering, fuzzing and more. Great for manual testing. Try it with w3af e. g..

Firebug light - light version of the famous Firebug Firefox plugin, that works with Safari.

File-management

sandbox - HFS+ ACL lists for osX non-server. A frontend to take advantage of this hidden feature on non-server MacOS X.

ncdu - has some interesting ncurses capabilities to show how much space certain folders take. There're similar projects linked, utilizing TreeMaps and more visualizations.

Development

LLVM - a special compiler tool suite with a virtual instruction set and many additional tools I regularly utilize and describe in my blog here.

Valgrind - for debugging and profiling. Memory checking, error detection, cache and branch-prediction... priceless suite.

splint - versatile C/C++ static code checker, that includes with c.vim nicely; in MacVim.

Darwine - wine build for Mac. Look into the wine.bundle to have some fun with the command-line. Valgrind wine greets at this point.

cgdb - GDB on ncurses. Great if you've got debugging symbols attached because it's highlights the breakpoints.

NetBeans - nowadays it has a Cocoa GUI. Great for Java, Ruby, Python and more. Offers different building environments.

Porticus - MacPorts GUI if you dislike the TCL commandline tool, too.

0xED - did you ever want to use ed for editing hexfiles? Well... I didn't. But 0xED has a plugin-API, opens large files and is awesome.

ICC ($) - Intel compilers for C/C++. Speeds up stuff. I found out that's a time-saving alternative to the Developer Tools' gcc, especially for fuzzers. And Apple's gcc is dubious in any case.

Terminal

Blurminal - looks good. Another transparency effect.

TerminalColorpad - saves the hazzle to go after the "LSCOLORS=DxGxcxdxCxcgcdabagacad" (yellow) and stuff.

MouseTerm - X11 mouse support for Terminal.app. Some at least. The IDApro ncurses interface will not work with that.

Network

WaterRoof - a half decent AppleScript based ipfw frontend.

Netifera - network information gathering framework.

SquidMan - get Squid painlessly on your Mac together with GlimmerBlocker as global http(s) ad-blocking Java-proxy.

TOR client - the wild days are over. Nowadays there's state in the net. So be stealthy. In case apps lack socks support you may have a problem torifying them anyhow with proxychains and stuff.

Tunnelblick - a really bad OpenVPN client. But it's free at least.

Academia

Maxima - LISP based CAS.

MathPad - a scientific calculator.

Aquamacs - emacs with auctex LaTeX inline preview, enhanced spell-checking support, nice GUI and tons of features and plugins that has got MacOS native key bindings and no learning curve.

Multimedia

Mplayer osX extended - a multi functional frontend for Mplayer that includes a recent build.

PetitDOSbox - a DOSBox frontend with some addional features. In case you love the old Apogee games and want a game manager and so on.

mocp - music on console is a terminal-based player frontend. You can play all sorts of formats: flag, mp3, ogg... Something mpd cannot do by default.

Desktop environment

SizeUP($)/TwoUp - screen tiled window positioning in Aqua.

f.lux - daytime based color-temperatur changer.

Evernote - browser (Safari, Firefox) integrated note management application.

Clipper - a clipboard history Menubar application.

Butler - a priceless ability extender that just assists to generate time-saving usability experience.

iStat - a well known monitoring app for the Menubar.

Untested

GlowWorm as LittleSnitch alternative to restrict outbound network connections.

Maltego - it's a browser not for the web, but for whois, rdns and other footprinting stuff. I just tested the Linux version. Maltego Mesh grabs stuff from Firefox into the client application.

KeePassX - you can integrate this password manager and generator with some browsers and let it remember your logins.

Abandon Ware

MacKrack - really: it never worked.

MacAmp - still works. I deleted iTunes ;). But not for this one instead.

Post new comment

The content of this field is kept private and will not be shown publicly.

Ihr Browser versucht gerade eine Seite aus dem sogenannten Internet auszudrucken. Das Internet ist ein weltweites Netzwerk von Computern, das den Menschen ganz neue Möglichkeiten der Kommunikation bietet.

Da Politiker im Regelfall von neuen Dingen nichts verstehen, halten wir es für notwendig, sie davor zu schützen. Dies ist im beidseitigen Interesse, da unnötige Angstzustände bei Ihnen verhindert werden, ebenso wie es uns vor profilierungs- und machtsüchtigen Politikern schützt.

Sollten Sie der Meinung sein, dass Sie diese Internetseite dennoch sehen sollten, so können Sie jederzeit durch normalen Gebrauch eines Internetbrowsers darauf zugreifen. Dazu sind aber minimale Computerkenntnisse erforderlich. Sollten Sie diese nicht haben, vergessen Sie einfach dieses Internet und lassen uns in Ruhe.

Die Umgehung dieser Ausdrucksperre ist nach §95a UrhG verboten.

Mehr Informationen unter www.politiker-stopp.de.