Binaries
62 macOS binaries documented
caffeinate
Prevent the system from sleeping on behalf of a utility.
chflags
Changes file or directory flags
codesign
Create, manipulate and verify code signatures.
csrutil
Configure or view system security policies.
defaults
Read, write, and delete user preference values.
disown
Prevents a process from being terminated when a shell session or terminal is closed.
ditto
Copy files and directories while preserving file attributes and permissions.
dns-sd
Discover local network services using the DNS-Based Service Discovery (SD) protocol.
dscacheutil
gather information, statistics and initiate queries to the Directory Service cache.
dscl
Interact with Directory Services.
dsconfigad
retrieves/changes configuration for Directory Services Active Directory Plugin.
dsexport
Export data from an Open Directory directory services server.
funzip
The malicious binaries use funzip to extract the malicious binary with a password and using head or tail commands.
GetFileInfo
Get attributes of files and directories.
hdiutil
Manipulate disk images using the DiskImages framework.
ioreg
Displays a hierarchial view of the I/O Kit registry.
kextstat
Display the status of loaded kernel extensions (kexts)
last
Show last user logins and TTYs.
launchctl
Interact with LaunchAgents and LaunchDaemons.
log
Access system log messages from Apple Unified Logging (AUL).
lsregister
Interact with the macOS Launch Services database.
mdfind
Locate files using the Spotlight database.
mdls
List metadata attributes for the specified file.
mktemp
Create a temporary file or directory and return the file/directory name to stdout
networksetup
Configure network settings in System Preferences.
notifyutil
Monitor and post Darwin notifications for inter-process communication and system event monitoring.
nscurl
Download, upload, and read files.
nvram
Access and manage the host's non-volatile random-access memory (NVRAM).
odutil
odutil allows caller to examine or change state of opendirectoryd
open
Open files, folders, apps, URLs, and header files.
osacompile
Compile AppleScripts or OSA language scripts.
osascript
Execute AppleScripts and other OSA language scripts and commands.
pbpaste
Paste the contents of clipboard to the terminal.
pkill
Kill processes by name or pattern.
plutil
Read, create or edit plist files.
profiles
List and remove configuration profiles.
safaridriver
Enable the WebDriver Safari browser API for Selenium testing.
say
Convert text to audible speech.
screencapture
Capture a screenshot from command line.
scutil
Display basic network information, check the dns config, set the computer hostname and perform several other tasks.
security
Interact with Keychain, macOS's built-in password manager.
SetFile
Set attributes of files and directories.
sfltool
Binary to manage the Shared File List framework.
sharing
Create and manage macOS file sharing points for SMB, AFP, and FTP.
snmptrap
Send SNMP trap notifications; receive them with snmptrapd.
softwareupdate
Interact with the macOS software update service.
spctl
Manage the security assessment policy subsystem, Gatekeeper settings, and control which apps are allowed to run on the system.
sqlite3
Query and manage sqlite databases.
ssh-keygen
Load unsigned dynamic libraries into the ssh-keygen binary.
streamzip
File-less compression of data passed in through stdin.
sw_vers
Prints macOS version information.
swift
Arbitrarily execute swift code from the terminal.
sysadminctl
Create/delete local accounts, guest account, enable SMB/AFP Guest access.
sysctl
Get macOS hardware model information.
system_profiler
Reports system hardware and software configuration.
systemsetup
Enable remote login, remote apple events for the machine
tccutil
Command-line tool for managing the Transparency, Consent, and Control (TCC) permissions database
tclsh
Run Tcl files or shell commands from standard input.
textutil
Manipulate text files in various formats.
tftp
Trivial File Transfer Protocol client and server utilities.
tmutil
Manage Time Machine backups.
xattr
Display and manipulate extended attributes.