Some notes, tools, and techniques for reverse engineering macOS binaries.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // 3D Dom viewer, copy-paste this into your console to visualise the DOM as a stack of solid blocks. | |
| // You can also minify and save it as a bookmarklet (https://www.freecodecamp.org/news/what-are-bookmarklets/) | |
| (() => { | |
| const SHOW_SIDES = false; // color sides of DOM nodes? | |
| const COLOR_SURFACE = true; // color tops of DOM nodes? | |
| const COLOR_RANDOM = false; // randomise color? | |
| const COLOR_HUE = 190; // hue in HSL (https://hslpicker.com) | |
| const MAX_ROTATION = 180; // set to 360 to rotate all the way round | |
| const THICKNESS = 20; // thickness of layers | |
| const DISTANCE = 10000; // ¯\\_(ツ)_/¯ |
0xdevalias
/ reverse-engineering-macos.md
Last active
May 20, 2024 23:55
Some notes, tools, and techniques for reverse engineering macOS binaries
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| // ▄─▄ ▄ ▄ ▄ ──▄ ▄─▄ ▄─▄ | |
| // ▓─ ▓ ▓ ▓ ▓ ▓ ▀─▄ ▀─▄ | |
| // ▀ ▀─▀─▀ ──▀ ▀─▀ ▀─▀ | |
| // f w d --> 5 5 | |
| // | |
| // simple rfc1928 proxy server | |
| // | |
| // |
colinrubbert
/ getAllGlobals.js
Created
August 23, 2023 14:44
Get all runtime global variables set by the app
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * RuntimeGlobalsChecker | |
| * | |
| * You can use this utility to quickly check what variables have been added (or | |
| * leaked) to the global window object at runtime (by JavaScript code). | |
| * By running this code, the globals checker itself is attached as a singleton | |
| * to the window object as "__runtimeGlobalsChecker__". | |
| * You can check the runtime globals programmatically at any time by invoking | |
| * "window.__runtimeGlobalsChecker__.getRuntimeGlobals()". | |
| * |
0xdevalias
/ _deobfuscating-unminifying-obfuscated-web-app-code.md
Last active
May 21, 2024 10:04
Some notes and tools for reverse engineering / deobfuscating / unminifying obfuscated web app code
nullenc0de
/ 365doms.py
Created
February 23, 2023 01:37
modified from https://github.com/expl0itabl3/check_mdi
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance. | |
| Based on: https://github.com/thalpius/Microsoft-Defender-for-Identity-Check-Instance. | |
| Usage: ./check_mdi.py -d <domain> | |
| """ | |
| import argparse | |
| import dns.resolver |
coolaj86
/ ChatGPT-Dan-Jailbreak.md
Last active
May 24, 2024 11:07
startergo
/ mas-cli.md
Last active
March 9, 2024 16:19
Find Application ID's for mas-cli (Mac App Store) download
- Quit App Store.app
- Open Terminal.app in
/Applications/Utilities - Enter:
defaults write com.apple.appstore ShowDebugMenu -bool true
and hit the Return/⏎ key to show the debug menu in App Store.app.
- Open App
Store.app(check that theDebugmenu is available!)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Before the first run, read the comments and change the script for your company | |
| # Before anything, install ffuf with `go install github.com/ffuf/ffuf@latest` | |
| # Change the WEBROOT variable below to the location of the webroot | |
| WEBROOT=/var/www/html/CHANGE/ME | |
| # This changes to the webroot directory | |
| cd $WEBROOT | |
| # This makes a directory for storing the files used for this script. Change it to be whatever path you want. | |
| PROJPATH=/home/changeme/project | |
| mkdir -p $PROJPATH |
This script allows you to install unsigned extensions (ones that aren't approved by Mozilla) on normal Firefox builds and the official Snap! That's right, no "Firefox Developer Edition" nonsense required!
This script is not well tested, like at all. This script might break things, possibly important things. You should probably take a backup of your Firefox profile before using it. You have been warned.
sudo apt install -y curl unzip zip
# Only needed when jailbreaking the SnapNewerOlder