ink-splatters

//
//  airtag-decryptor.swift
//
//  Decrypt all beacons files from ~/Library/com.apple.icloud.searchpartyd - updated when FindMy is running
//  Results in /tmp/com.apple.icloud.searchpartyd - same file hierarchy
//
//  Created by Matus on 28/01/2024. - https://gist.github.com/YeapGuy/f473de53c2a4e8978bc63217359ca1e4
//  Modified by Airy
//
import Cocoa

ink-splatters

// courtesy of clang
// https://github.com/applesrc/clang/blob/bb8f644/src/projects/compiler-rt/lib/sanitizer_common/sanitizer_mac_spi.cc

enum sandbox_filter_type {
	SANDBOX_FILTER_NONE,
	SANDBOX_FILTER_PATH,
	SANDBOX_FILTER_GLOBAL_NAME,
	SANDBOX_FILTER_LOCAL_NAME,
	SANDBOX_FILTER_APPLEEVENT_DESTINATION,

ink-splatters

airstation:llama.cpp ic$ git rev-parse HEAD
952d03dbead16e4dbdd1d3458486340673cc2465
airstation:llama.cpp ic$ echo ; awk '(NR>=4341 &&  NR<=4382 ){print NR " " $0}' llama.cpp

4341         // for now, only BPE models have pre-tokenizers
4342         if (vocab.type == LLAMA_VOCAB_TYPE_BPE) {
4343             if (tokenizer_pre.empty()) {
4344                 LLAMA_LOG_WARN("%s: missing pre-tokenizer type, using: 'default'\n", __func__);
4345                 LLAMA_LOG_WARN("%s:                                             \n", __func__);
4346                 LLAMA_LOG_WARN("%s: ************************************        \n", __func__);

ink-splatters

#! /bin/bash
# Simple Utility Script for allowing debug of hardened macOS apps.
# This is useful mostly for plug-in developer that would like keep developing without turning SIP off.
# Credit for idea goes to (McMartin): https://forum.juce.com/t/apple-gatekeeper-notarised-distributables/29952/57?u=ttg
# Update 2022-03-10: Based on Fabian's feedback, add capability to inject DYLD for sanitizers.
#
# Please note:
# - Modern Logic (on M1s) uses `AUHostingService` which resides within the system thus not patchable and REQUIRES to turn-off SIP.
# - Some hosts uses separate plug-in scanning or sandboxing. 
#     if that's the case, it's required to patch those (if needed) and attach debugger to them instead.

ink-splatters

#!/usr/bin/env bash

set -e
set -o pipefail

disk=$(echo "$1" | sed -E 's/^\/dev\///g')
if [[ $# != 1 || ! "$disk" =~ disk[0-9]$ ]]; then
	cat <<EOF
usage: $0 <APFS container node>
EOF

ink-splatters

Linux Desktop on Apple Silicon in Practice

I bought M1 MacBook Air. It is the fastest computer I have, and I have been a GNOME/GNU/Linux user for long time. It is obvious conclusion that I need practical Linux desktop environment on Apple Silicon.

Fortunately, Linux already works on Apple Silicon/M1. But how practical is it?

• Two native ports exist.

ink-splatters

Create Root CA (Done once)

Create Root Key

Attention: this is the key used to sign the certificate requests, anyone holding this can sign certificates on your behalf. So keep it in a safe place!

openssl genrsa -des3 -out rootCA.key 4096

ink-splatters

macOS Internals

Understand your Mac and iPhone more deeply by tracing the evolution of Mac OS X from prelease to Swift. John Siracusa delivers the details.

Starting Points

How to use this gist

You've got two main options:

ink-splatters

# CREDITS: https://github.com/PacktPublishing/Learning-Python-for-Forensics/blob/master/Chapter%2012/wal_crawler.py

import argparse
import binascii
import csv
import logging
import os
import re
import struct
import sys

ink-splatters

#!/bin/bash
# by joevt May 23, 2022

directblesscmd="/Volumes/Work/Programming/XcodeProjects/bless/bless-204.40.27 joevt/DerivedData/bless/Build/Products/Debug/bless"
usedirectbless=0
if [[ -d /System/Library/PrivateFrameworks/APFS.framework/Versions/A ]]; then
	if [[ ! -f "$directblesscmd" ]]; then
		echo "# Download and build bless from https://github.com/joevt/bless , then update the path of directbless defined in DiskUtil.sh"
	else
		usedirectbless=1