Example Usage
Level 1
├── 🌐 Safari & Safari View Services
│ ├── OS Baseline (JIT/JS Lockdown)
│ └── Spoof User Agent: ON
│
├── 💬 Apple Messages (MobileSMS, ActivityMessages, iMessageAppsViewService)
│ ├── OS Baseline (JIT/JS Lockdown)
│ ├── Disable Media Auto-Play: ON
│ ├── Disable WebGL & WebRTC: ON
│ ├── Disable Local File Access: ON
│ ├── Disable Msg Auto-Download: ON
│ └── Spoof User Agent: OFF
│
└── ✉️ Apple Mail & Other Native Apps
├── OS Baseline (JIT/JS Lockdown)
├── Disable Media Auto-Play: ON (Mail)
├── Disable WebGL & WebRTC: ON (Mail)
├── Disable Local File Access: ON (Mail)
└── Spoof User Agent: OFF
(Block Remote Content is added to Apple Messages & Mail at Level 2+)
Level 2
├── 📱 All Level 1 Apps & Rules
│ └── 💬 Apple Messages & Mail: Block Remote Content: ON (added at this level)
│
├── 🌐 3rd-Party Browsers (Chrome, Firefox, Brave, DuckDuckGo)
│ ├── OS Baseline (JIT/JS Lockdown)
│ └── Spoof User Agent: ON
│
├── 💬 3rd-Party Messaging & Email (WhatsApp, Discord, Signal, Telegram, Gmail, Outlook)
│ ├── OS Baseline (JIT/JS Lockdown)
│ ├── Disable Media Auto-Play: ON
│ ├── Disable WebGL & WebRTC: ON
│ ├── Disable Local File Access: O
See also
Netexec (nxc)
Open Source
Kali
The maintained fork and successor to CrackMapExec. Network service exploitation Swiss army knife for…
ExploitDB / SearchSploit
Open Source
Kali
Archive of public exploits and vulnerable software maintained by Offensive Security. SearchSploit pr…
BeEF
Open Source
Kali
Browser Exploitation Framework. Hooks web browsers via JavaScript and provides extensive command mod…
cve-search_mcp
Open Source
A Model Context Protocol (MCP) server for querying the CVE-Search API…
username-anarchy
Open Source
Kali
Username tools for penetration testing…
NTRGhidra
Open Source
A Nintendo DS binary loader for Ghidra…