This procedure was tested on FreeBSD-CURRENT build from d8819d88af52.
- Enable linuxulator and install linux userland:
# sysrc linux_enable="YES" # service linux start # pkg install linux_base-c7
iOS 16 introduced launch constraints, which can be used to constraint the launch of an application. | |
There are three types of constraints: | |
Self Constraints, which the launched application itself must meet | |
Parent Constraints, which the parent process must meet | |
Responsible Constraints, which the "responsible process" must meet (I assume that the responsible process is the process that asked launchd to launch a service) | |
Additionally, the TrustCache format was updated (see below) to support assigning each binary a "Constraint Category", which forces Self and Parent Constraints. | |
Note that Self, Parent and Responsible Constraints can also be set by the process performing the launch and they can be included in the code signature, in the new blob type 0xFADE8181. In both cases, the constraints are DER encoded (just like the DER entitlements). | |
Constraint Categories (from TrustCache, new in version 2): |
This procedure was tested on FreeBSD-CURRENT build from d8819d88af52.
# sysrc linux_enable="YES"
# service linux start
# pkg install linux_base-c7
// To compile: clang++ -arch x86_64 -arch arm64 -std=c++20 library_injector.cpp -lbsm -lEndpointSecurity -o library_injector, | |
// then codesign with com.apple.developer.endpoint-security.client and run the | |
// program as root. | |
#include <EndpointSecurity/EndpointSecurity.h> | |
#include <algorithm> | |
#include <array> | |
#include <bsm/libbsm.h> | |
#include <cstdint> | |
#include <cstdlib> |
# A Best in Class Checklist | |
A boiled down checklist adapted from this [post](https://www.swiftjectivec.com/a-best-in-class-app/), created by @jordanmorgan10. | |
> To use this, create a Github Issue in your own repo, and simply copy and paste this text. | |
## iOS Core Technology | |
_Things any iOS app can benefit from_ | |
- [ ] iCloud Sync | |
- [ ] Focus Filter Support |
According to Apple, the only way to remove an unknown firmware password from a MacBook (2011 and later) is to take it to the Apple Store with the original proof-of-purchase. However, I've found that there is another way, which I've been successful with for the unibody MacBook Pro--it's essentially just modifying a couple bytes in the EFI ROM, which should be simple. What's not simple, however, is figuring out how to read and write to the EFI chip. In this post, I'll talk about the process that I figured out and what worked for me.
Apple's method of resetting the firmware password is not reproducible, as Apple generates an SCBO file that unlocks the EFI using their private key. You can read more about this process here. The problem with this system is that, if you are in the unfortunate situation of neither having the firmware unlock pass
Here's a list of mildly interesting things about the C language that I learned mostly by consuming Clang's ASTs. Although surprises are getting sparser, I might continue to update this document over time.
There are many more mildly interesting features of C++, but the language is literally known for being weird, whereas C is usually considered smaller and simpler, so this is (almost) only about C.
struct foo {
struct bar {
int x;
The URL Shortener / File Uploader by @OkashiOdayakana, @Jakeoid, and @Aurieh
Go to https://owo.codes/whats-this/owo.sh and follow the instructions there.
/* | |
GasGauge race condition yielding double free | |
(c) 2016 qwertyoruiop | |
greetz: banty (this one is for you!) / filippobiga / windknown / morpheus / cturt / laughing_mantis / p0sixninja / osxreverser / trimo / beist / sn0w | |
by Kim Jong Cracks Research (please CVE it to them!) | |
diff -ruN vagrant-1.8.1.orig/plugins/guests/debian/cap/configure_networks.rb vagrant-1.8.1/plugins/guests/debian/cap/configure_networks.rb | |
--- vagrant-1.8.1.orig/plugins/guests/debian/cap/configure_networks.rb 2015-12-25 06:30:19.000000000 +0900 | |
+++ vagrant-1.8.1/plugins/guests/debian/cap/configure_networks.rb 2016-04-24 03:22:08.000000000 +0900 | |
@@ -1,3 +1,4 @@ | |
+require 'log4r' | |
require 'set' | |
require 'tempfile' | |
@@ -9,8 +10,22 @@ | |
class ConfigureNetworks |