Norimaci is a simple and lightweight malware analysis sandbox for macOS
"Norimaci" is a simple and lightweight malware analysis sandbox for macOS. This tool was inspired by " Noriben "" rel="nofollow" target="_blank">https://github.com/Rurik/Noriben">Noriben ". Norimaci uses the features of OpenBSM or Monitor.app to monitor macOS system activity instead of Sysinternals Process Monitor (procmon).
Norimaci consists of 3 Python scripts.
norimaci.py : Main script
openbsmconv.py : OpenBSM audit log converter
monitorappconv.py : Monitor.app data converter
OpenBSM is a framework to audit activities on macOS. Please see their web site for details.