← All Tags

zsh

14 binaries with this tag

caffeinate

Prevent the system from sleeping on behalf of a utility.

ExecutionDefense Evasion bashzsh

dscacheutil

gather information, statistics and initiate queries to the Directory Service cache.

Discovery bashzsh

dsconfigad

retrieves/changes configuration for Directory Services Active Directory Plugin.

Discovery bashzsh

funzip

The malicious binaries use funzip to extract the malicious binary with a password and using head or tail commands.

Execution bashzsh

GetFileInfo

Get attributes of files and directories.

Discovery bashzshoneliner

hdiutil

Manipulate disk images using the DiskImages framework.

ExecutionCollection bashzshdisk

kextstat

Display the status of loaded kernel extensions (kexts)

Discovery bashzshkernel

launchctl

Interact with LaunchAgents and LaunchDaemons.

ExecutionPersistence bashzshoneliner

log

Access system log messages from Apple Unified Logging (AUL).

Defense EvasionCredential Access requires-rootbashzsh

mdfind

Locate files using the Spotlight database.

ReconnaissanceDiscoveryDefense Evasion bashzshoneliner +2

odutil

odutil allows caller to examine or change state of opendirectoryd

Discovery bashzsh

SetFile

Set attributes of files and directories.

PersistenceDefense Evasion bashzshoneliner

swift

Arbitrarily execute swift code from the terminal.

ExecutionDefense Evasion swiftreplbash +1

system_profiler

Reports system hardware and software configuration.

Discovery bashzsh