yellinben + mac   71

Frida Engage Part Three | You Down With XPC? | VerSprite
In the final installment of the Frida Engage blog series, we will demonstrate how to use Frida for hooking and inspecting Apple’s NSXPC API using the CleanMyMac 3 application as our guinea pig.
mac  debug  frida  cocoa  apple  security  reverse-engineer  objc 
march 2018 by yellinben
RepairPermissions V3 – Now supports repairing permissions on macOS High Sierra | FireWolf Pl.
In OS X El Capitan, without `diskutil repairPermissions`, we can use `repair_packages` in /usr/libexec/ to verify and repair permissions. But now this handy command line tool has been removed from the latest macOS Sierra by Apple. Since it may not be safe to force use the `repair_packages` in macOS Sierra, it’s time for me to rewrite my `RepairPermissions` to support the new macOS Sierra.

mac  utilities  cli  tool 
september 2017 by yellinben
Hooking Swift methods for fun and profit - Blog - Securify B.V.
Hooking C/C++ and Objective-C methods has become more common over the years. More tools and frameworks are available and are still being developed in order to perform (security) research and create custom app modifications. Apple introduced a new programming language called Swift that is built on top of the Objective-C runtime. Swift methods can be hooked in a similar, but slightly different way. This article will describe how Swift methods can be hooked.

apple  ios  mac  objc  mach  cocoa  swift  reverse-engineer  disassembly  debug  security 
august 2017 by yellinben
Essential apps for switching from Mac to Windows - Charged
If you're making the jump from Mac to Windows like I did, you're probably missing some of your favorite apps. Here's a selection of my favorite Windows apps.
windows  app  mac  software  post 
june 2017 by yellinben
Parsing Mach-O files - Low Level Bits
This article describes how to parse Mach-O file and explains its format a little bit. It’s not a definitive guide, though it might be helpful if you don’t know where to start. For more information consider reading official documentation and header files provided by operating system.
blog  ref  objc  macho  apple  mac  osx  analysis  reverse-engineer  binary  runtime 
may 2017 by yellinben
Fuzzy & Pixelated PDF Copy & Paste from macOS Preview | David Gleich: a notebook
Too long, don't want to read. Symptom. Cutting and pasting sections of PDF files from macOS / OSX Preview results in fuzzy and pixelated images where you were expecting vector PDF data to be copied and pasted. Correlated symptom. You will be able to get vector data if you copy and paste an entire page instead of…
article  mac  debug  research 
may 2017 by yellinben
Manual Analysis of ‘NSKeyedArchiver’ Formatted Plist Files - A Review of the NEW OS X 10.11 “Recent Items”
In my iOS Frequent Locations blog post, I mentioned that the locations are
stored in a ‘less than analyst friendly’ format. These plist files are in a
binary plist format – no different than other binary plists except it is
hard to put context to their structure. Rather than directly associate
apple  forensics  security  reverse-engineer  mac  osx  article  cocoa  plist 
may 2017 by yellinben
gdbinit's papers.put.as

This is my archive of papers related to Mac OS X, iOS, and (U)EFI Firmware. It was previously hosted at my blog but moved here for easier management.
osx  mac  ios  objc  mach-o  security  reverse-engineering  reference  docs  guide  cocoa  xnu  darwin  kernel  jailbreak 
may 2017 by yellinben
MacBook Pros and External Displays — Erica Sadun

What I didn’t expect was how awful the text looked on it. I hooked up the monitor to the MBP using my Apple TV HDMI cable. The text was unreadable. I use similar TV-style monitors for my main system and they display text just fine. However, I’m using normal display ports and cables for my mini. This is the first time I’ve gone HDMI direct.
mac  hardware  modify  osx  config 
march 2017 by yellinben
Omni Group Automation
Welcome to OMNI-AUTOMATION.COM, a website dedicated to automation support in the apps from The Omni Group.
automation  omnigroup  mac  ios  apple  scripting  javascript  jxa  applescript  workflow 
march 2017 by yellinben
Reverse Engineering Mac OS X Alias Version 3 Data Objects
Reverse Engineering Mac OS X Alias Version 3 Data Objects for Digital Forensics purposes.
mac  osx  reverse-engineer  debug  analysis  article 
march 2017 by yellinben
Supported Mac models for Night Shift in Sierra 10.12.4
Night Shift was introduced in macOS Sierra 10.12.4 (Build 16E144f and Public Beta-1) and is controlled by the CoreBrightness.framework and you'll need at least one of the following – or later – Mac models: MacBookPro9,x iMac13,x Macmini6,x MacBookAir5,x MacPro6,x MacBook8,x Apple did not release any information about this. Not just yet, but I know this…
mac  osx  tweak  reverse-engineer  hack 
march 2017 by yellinben
quellish - Measuring Custom App Behavior in Instruments
Measuring Custom App Behavior in Instruments Scrolling, scrolling, scrolling. There I was, scrolling a table view in the Simulator like so many other iOS engineers. And just like them, my table view...
mac  debug  dtrace  instruments  reverse-engineer  cocoa  trace  article  tutorial 
february 2017 by yellinben
Bypassing System Integrity Protection using DeployStudio permanently (?) -
How to use DeployStudio to run a script to change the permissions on a Mac System, and keep these 'less-restricted' permissions while SIP is enabled.
mac  osx  security 
january 2017 by yellinben
[0day] Bypassing Apple's System Integrity Protection › abusing the local upgrade process to bypass SIP
Here, let's dive into the technical details of how an attacker can easily bypass Apple's System Integrity Protection (SIP) on a fully patched macOS system. Armed with this 0day attack, hackers can modify protected operating system components or make malware that is itself protected by SIP...and thus quite difficult to delete :/
security  objc  osx  macosx  apple  exploit  mac  article  reverse-engineer  hack  analysis 
december 2016 by yellinben
discovering how Dropbox hacks your mac
Following my post revealing Dropbox's Dirty Little Security Hack a few weeks ago, I thought I'd look deeper into how Dropbox was getting around Apple's security. After a little digging around in Apple's vast documentation, it occurred to me to check the authorization database and see if that had been tampered with. According to the…
osx  mac  apple  security  dropbox  accessibility  hack  reverse-engineering  cocoa  debug  article  post 
september 2016 by yellinben
Mac (Pete's notes)
productivitiy enhancements for Mac
apple  mac  macos  osx  sysadmin  scripting  tools  software  apps 
august 2016 by yellinben
Shut up snitch! – reverse engineering and exploiting a critical Little Snitch vulnerability
Little Snitch was among the first software packages I tried to reverse and crack when I started using Macs. In the past I reported some weaknesses related to their licensing scheme but I never
mac  apple  reverse-engineer  osx  network  mach-o  reverse-engineering  cocoa  objc 
july 2016 by yellinben
Jonathan Li: Using CFNETWORK_DIAGNOSTICS for network log for iOS
CFNetwork has built-in support to log network activity for iOS device by setting the environment variable CFNETWORK_DIAGNOSTICS.
ios  obj-c  objc  dev  debug  trace  network  log  inspect  http  osx  cocoa  carbon  mac  apple 
july 2016 by yellinben
BezelServices on OS X - Robert Sesek
Overview BezelServices is a subsystem on Mac OS X that acts as a glue layer between HID device drivers in the kernel, preferences that influence the behavior of those devices stored in CFPreferences,
macosx  mac  apple  objective-c  reverse-engineer  cocoa  mach-o  osx  debug  framework  obj-c  objc 
june 2016 by yellinben
References For Learning & Using Applescript
AppleScript is a rather peculiar scripting language to learn.

Its so-called natural language syntax is loved by some and hated by others.

It has a relatively small core language, but many if not most scriptable applications have
terminology and syntax unique to that app. This means you have to be willing to learn the
quirks of every new app you work with.
applescript  reference  osa  apple  mac  automation  scripting 
june 2016 by yellinben
Yosemite DP1 adds AppleMobileFileIntegrity.kext to OS X – Pike's Universum
Crap. This might be bad news. AppleMobileFileIntegrity.kext aka AMFI a sworn enemy of Jailbreakers on this planet... is now also part of OS X 10.10 Yosemite. I have no idea what Apple is up to, but it might mean trouble is ahead of us. More trouble that is. Edit: I also found /System/Library/LaunchDaemons/com.apple.MobileFileIntegrity.plist The daemon…
objective-c  cocoa  apple  objc  mac  osx  ios  jailbreak  jb  reverseengineering 
june 2016 by yellinben
The Unix Command Line: Single-User Mode
Intro to Single-user mode: To get to single-user mode, hold down the command (i.e. cloverleaf or Apple) and "s" keys as the system begins to boot. This will drop you into a command line interface
cli  shell  macosx  osx  mac  terminal  command-line 
june 2016 by yellinben
Breeze through OS X alert notifications with swift efficiency through keyboard shortcuts
I think one glaring omission from OS X’s huge set of handy keyboard shortcuts for common functionality is the ability to dismiss all alert notifications using a global hotkey.
osx  mac  automator  automation  shortcut  keyboard 
may 2016 by yellinben
How I Organize Keyboard Maestro Macro Groups | Sayz Lim
Dealing with a messy Keyboard Maestro library? Here’s a few tips to clean up your library and ensure they’re well-organized all the time.
keyboard_maestro  keyboardmaestro  automation  scripting  osx  mac 
may 2016 by yellinben
Command-line tools via Python and Cocoa – Managing OS X
This post is based on a column I wrote for MacTech magazine in 2012. MacTech used to make older columns available online, but they haven
cli  cocoa  osx  objc  Python  mac 
april 2016 by yellinben
Proxifier for Mac OS X
We are pleased to introduce Proxifier for Mac OS X. It works almost like the Windows version however it is a native Mac OS X program with the Mac Look and Feel. Version 2 Beta 1
ios  http  proxy  dev  trace  osx  debug  mac 
april 2016 by yellinben
how to use theos in xcode
Xcode is the go-to IDE for iOS development, with many great features. One feature that is missing however is the lack of support for building iOS projects that aren't iOS GUI applications This is
objc  jailbreak  osx  iphone  obj-c  xcode  apple  jb  mac  ios  cocoa  objective-c 
march 2016 by yellinben
Emacs keybindings everywhere in Mac OS X
I feel very sorry for you’re emacser on mac and haven’t got anything in ~/Library/KeyBindings/
emacs  osx  keybindings  editor  dev  text  input  mac  config  settings  prefs  keyboard 
march 2016 by yellinben
blog@timschroeder.net » Check if Mission Control is Active
Unfortunately, Apple has never provided a public API to programmatically check if Mission Control is active. There are not too many use cases for such a check, but I have encountered one.
mac  osx  automation  scripting  ui  productivity  spaces  expose  mission-control 
february 2016 by yellinben
Reverse on OSX – Julien Duponchelle
This articles is a simple collection of programm I use for understanding how a third party programm interact with the system.
osx  mac  cocoa  objc  mach-o  reverse-engineer 
january 2016 by yellinben
Personal Automation (Part 1) – graham gilbert dot com
Earlier this year, I professed my love of Boxen - the personal automation solution based on Puppet released by Github. Indeed, it served me well for quite some time, but I began to find myself spending more time fixing Boxen than actually getting things done. As Boxen was designed for internal use at Github, it set some things up how they liked them - which wasn’t necesarily how I liked them. Sysadmins have similar needs to developers, but not exactly the same.

Then I updated Boxen. All of my m...
osx  automate  config  setup  dotfiles  sysadmin  mac  cli  shell 
january 2016 by yellinben
spinscale.de - Creating a productive osx environment
In order to be productive with a fresh OSX installation, a fair share of tweaks are necessary. Especially, when you are coming from the Linux world, where you are used to everything being configurable.

This post explains some of my setup - which may be completely different to yours, but it helps a lot to get up and running.
backup  osx  mac  update  upgrade 
january 2016 by yellinben
How to make great TextExpander snippets (so that you will remember them) — Work Smart and be Remarkable!
TextExpander is one of my favorite applications. I use it on a daily basis. Every time I have to work on another computer that does not have my snippets on it, it almost feels impossible for me to
snippet  text  mac  keyboard  utilities  typing  osx  automation  productivity  scripting 
december 2015 by yellinben
OSX: Dealing with property list files
This is a very small tutorial on how to build an OSX PLIST file from the command line, using a shell script. This example uses the MySQL Sequel Pro favorites file.
osx  plist  tutorial  mac  property-list  plutil  defaults  plistbuddy 
december 2015 by yellinben
muymacho: exploiting DYLD_ROOT_PATH
muymacho is an exploit for a dyld bug present in Mac OS X 10.10.5 allowing local privilege escalation to root. It has been patched in El Capitan (10.11). It was a fun bug and exploit to develop. This…
programming  Mac  OS  X  Reverse  Engineering 
october 2015 by yellinben
FlipMartin.net - Software > Keyboard Maestro Browser Control (Advanced)
In the first part of this tutorial, we explored Keyboard Maestro's browser control actions and learned how to fill out and submit basic forms. Now it's time to try putting together something more advanced. We'll see how to interact with webpages and how to improve and control a web application.
osx  automation  keyboardmaestro  mac 
september 2015 by yellinben
1Password for Fluid with Keyboard Maestro — RocketINK
Well, now you’re using Fluid, feeling great and all… until you discover that there is no 1Password extension for Fluid. What a bummer. Luckily, as any good Mac user, you have Keyboard Maestro installed on your Mac.
mac  osx  1password  fluid  Unread  productivity  keyboardmaestro  keyboard_maestro  @1password  @keyboard_maestro 
july 2015 by yellinben
OS X app hacks - Gist
Mac OS X app hacks - Gist is a simple way to share snippets of text and code with others.
mac  osx  script  cli  shell  tweak 
june 2015 by yellinben
The Best Mac Apps and Utilities for Mac OS x
The 2015 collection of the best Mac apps and utilities that will let you do more with your Mac. The apps in the list are mostly free and compatible with Yosemite, the most recent edition of Mac OS.
#osx  macosx  mac  app  #productivity  software  #automation  utilities  osx  apps 
june 2015 by yellinben
Reverse engineering Xcode with dtrace - chendo
Oct 22nd, 2013 dtrace, process, xcode Reverse engineering Xcode with dtrace Both OS X and iOS tend to have a love-hate relationship with Xcode. …
debug  trace  mac  dtrace  objc  hack  xcode  osx 
may 2015 by yellinben
An A-Z Index of the Apple OS X command line. Source: http://ss64.com/osx/osx/
An A-Z Index of the Apple OS X command line. Source: http://ss64.com/osx/osx/ - Gist is a simple way to share snippets of text and code with others.
cli  mac  osx  shell  terminal 
may 2015 by yellinben
bkozora/Snippets
Various Snippets in a variety of languages. Originally intended for the Mac app Snippets
osx  mac  snippet  code  script 
may 2015 by yellinben
My icon design workflow
Here’s some tips for creating icons — anything from a single colour pictogram to a highly detailed app icon.
icon  guide  workflow  design  ios  osx  mac  illustrator  retina 
may 2015 by yellinben
MY NAS + HTPC SETUP: AUTOMOUNT NAS SHARES IN YOSEMITE
Setups, tutorials, tips and tricks for your NAS and HTPC and some coding challenge in PHP/Javascript
nas  synology  mac  osx 
april 2015 by yellinben
Using the Mac OS X Automounter
A quick tip on how to use the Mac OS X automount command to automatically mount a remote filesystem. You will need to be comfortable with the OS X …
mac  nas  network  networking  osx  backup  data 
april 2015 by yellinben
How to use CrashPlan but keep the Java process from constantly using ridiculous amounts of RAM
I use CrashPlan for my online backup, & it’s great: reasonably priced, secure, easy to use. But there’s one problem. For better or worse, CrashPlan is a ...
backup  mac  osx  data 
april 2015 by yellinben
Running Automator and AppleScripts in Bash | Alfred Workflows
Alfred 1 had an Automator runner for extensions, but that is missing from Alfred 2. Also, Alfred 2 does not run JavaScript Automation scripts directly. Some people have asked how to make use of these. The answer is Bash scripting! Unfortunately, many people are not comfortable at that level of programming. In this tutorial, I will try to make it more manageable.
alfred  script  osx  mac  workflow  productivity  automate  code  dev  tutorial  guide 
april 2015 by yellinben
The Quicksilver Key
Quicksilver is the most used app on my Mac. It really speeds up most of the common user interface actions. Let’s say I am working on a document in TextWrangler. When I finish...
osx  mac  keyboard 
march 2015 by yellinben
./choose | Tiny Robot Software
The nerdy way to choose stuff

Gets list of items from stdin.
Fuzzy-searches as you type.
Sends result to stdout.
Free trial is untimed, Sublime Text style.
Run choose -h for more info.
vim integration
app  cli  shell  terminal  mac  osx  gui  filter  list 
march 2015 by yellinben
Using Mjolnir: An Extensible OSX Window Manager
Recently I started using the amazing and highly configurable window manager called Mjolnir. But really it isn’t a window manager, it’s an OSX wrapper around a Lua configuration file and event loop that has a constellation of modules that allow you to configure all sorts of computer control tasks. The most common use for Mjolnir is managing Windows but there are all sorts of modules that allow you to use it for doing things like unmounting your USB drives when you switch to battery power.
hammerspoon  windowmanager  mac  nerd  automation  gui  productivity  howto  mjolnir  osx 
february 2015 by yellinben
injector
- Code injection + payload communications for OSX (incl. sandboxed apps)
objc  osx  mac  mach  mach-o 
june 2014 by yellinben

related tags

#automation  #osx  #productivity  1password  2devon  @1password  @ios  @keyboard_maestro  @mac  @remote_desktop  @tools  accessibility  alfred  analysis  app  apple  applescript  apps  article  assembly  automate  automation  automator  backup  backups  binary  blog  bootable  carbon  cli  cocoa  code  command-line  config  darwin  data  debug  debugging  decompilation  defaults  design  dev  dictionaries  dictionary  disassembler  disassembly  display  docs  dotfiles  download  dropbox  dtrace  editor  emacs  en  Engineering  exploit  expose  faq  filter  fluid  forensics  framework  frida  fscript  git  gitup  gui  guide  hack  hacking  hammerspoon  hardware  hopper  howto  http  icon  ifttt  illustrator  input  inspect  instruments  ios  iphone  jailbreak  javascript  jb  jxa  kernel  keybindings  keyboard  keyboardmaestro  keyboard_maestro  launchd  list  log  mac  mach  mach-o  machine  macho  macos  macosx  macstories  metadata  mission-control  mjolnir  modify  MOxiI2  music  nas  nerd  network  networking  obj-c  objc  objective-c  omnigroup  OS  osa  osx  player  plist  plistbuddy  plutil  Pocket  post  prefs  productivity  programming  property-list  proxy  Python  ref  reference  research  retina  Reverse  reverse-engineer  reverse-engineering  reverseengineering  review  rsync  runtime  Saved  script  scripting  security  settings  setup  shell  shortcut  snippet  snoop  software  spaces  sql  swift  synology  sysadmin  terminal  text  time  time-machine  timemachine  tips  tonight  tool  tools  trace  tutorial  tweak  Twitter  typing  ui  unix  Unread  update  upgrade  utilities  via:popular  windowmanager  windows  workflow  writing  X  xcode  xnu  xpc 

Copy this bookmark:



description:


tags: