Some notes, tools, and techniques for reverse engineering macOS binaries.
1ikeadragon
/ DutchGov.txt
Created
June 16, 2022 20:32
— forked from random-robbie/DutchGov.txt
Dutch Gov - bug bounty scope - feel free to add more if you know they are in scope - taken from - https://www.communicatierijk.nl/vakkennis/r/rijkswebsites/verplichte-richtlijnen/websiteregister-rijksoverheid
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| http://www.rijksoverheid.nl | |
| http://www.rivm.nl | |
| http://coronadashboard.rijksoverheid.nl | |
| http://www.nederlandwereldwijd.nl | |
| http://www.government.nl | |
| http://lci.rivm.nl | |
| http://www.rvo.nl | |
| http://www.defensie.nl | |
| http://www.werkenvoornederland.nl | |
| http://www.rijkswaterstaat.nl |
1ikeadragon
/ codblocker.ps1
Created
August 29, 2024 00:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Author: 1ikeadragon, for GAMERANT | |
| param ( | |
| $InputFile = "BlockList.txt", | |
| $RuleName, | |
| $ProfileType = "any", | |
| $InterfaceType = "any" | |
| ) | |
| $file = get-item $InputFile -ErrorAction SilentlyContinue | |
| if (-not $file) { |
1ikeadragon
/ reverse-engineering-macos.md
Created
October 24, 2024 07:34
— forked from Kirow/reverse-engineering-macos.md
Some notes, tools, and techniques for reverse engineering macOS binaries
1ikeadragon
/ threat-modelling-rule.md
Created
March 9, 2026 22:18
When touching any code, configuration, or infrastructure, apply the threat-modelling principles below before making changes. Think attacker-first: assume hostile input, compromised dependencies, and least-privilege as defaults.
Before writing or modifying code, ask:
- What crosses a trust boundary here? (user input → backend, service A → service B, CLI arg → shell, etc.)
- Is data validated and sanitised at the boundary, not deep inside?