❂ duraki

macOS Internals

Understand your Mac and iPhone more deeply by tracing the evolution of Mac OS X from prelease to Swift. John Siracusa delivers the details.

Starting Points

How to use this gist

You've got two main options:

Setup

Create a developer account with Apple
- https://developer.apple.com and shell out $99 for a developer account
Download and install X-Code from the Apple App Store
Open and run X-Code app and install whatever extras it requires
Open the preferences pane (cmd+,)
- click the + in the lower right corner
- choose Apple ID
- enter your apple ID and password

Previously created keys can be downloaded and installed from https://developer.apple.com

SQLMap Tamper scripts evaluation against F5 Big-IP ASM WAF

The below table represents results of tests launched against F5 Big-IP ASM WAF appliance in it's XX version of YY and ZZ version of XY

Below names are to be passed to the --tamper= parameter of sqlmap.

The column Violation Rating represents most dominant rating of topmost 20 Requests observed by F5 in it's Security>>Event Logs:Application:Requests view.

The scale is 0-5.

	#!/bin/bash

	# Define the cookie jar and temp file for HTML content
	COOKIE_JAR="cookie.txt"
	HTML_FILE="response.html"

	# URL details
	LOGIN_URL="http://192.168.0.1/goform/logon"
	RESTART_PAGE="http://192.168.0.1/ad_restart_gateway.html"
	RESTART_ACTION="http://192.168.0.1/goform/ad_restart_gateway"

	; A minimal Mach-o x64 executable for OS X (also see below Mountain Lion version)
	;
	; $ nasm -f bin -o tiny_hello tiny_hello.s
	; $ chmod +x tiny_hello
	; $ ./tiny_hello
	; Hello World!
	; $

	; c.f.
	; http://osxbook.com/blog/2009/03/15/crafting-a-tiny-mach-o-executable/ ( the original tiny mach-o executable )

	tell application "Finder"
	set visible of every process whose visible is true and name is not "Finder" to false
	set the collapsed of windows to true
	end tell

	#! /bin/bash
	# Simple Utility Script for allowing debug of hardened macOS apps.
	# This is useful mostly for plug-in developer that would like keep developing without turning SIP off.
	# Credit for idea goes to (McMartin): https://forum.juce.com/t/apple-gatekeeper-notarised-distributables/29952/57?u=ttg
	app_path=$1

	if [ -z "$app_path" ];
	then
	echo "You need to specify app to re-codesign!"
	exit 0

	## AWS
	# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories

	http://169.254.169.254/latest/user-data
	http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME]
	http://169.254.169.254/latest/meta-data/ami-id
	http://169.254.169.254/latest/meta-data/reservation-id
	http://169.254.169.254/latest/meta-data/hostname
	http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key

	//Install Macports.
	//Install aircrack-ng:
	sudo port install aircrack-ng
	//Install the latest Xcode, with the Command Line Tools.
	//Create the following symlink:
	sudo ln -s /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport /usr/sbin/airport
	//Figure out which channel you need to sniff:
	sudo airport -s

	sudo airport en1 sniff [CHANNEL]

	From: http://redteams.net/bookshelf/
	Techie

	Unauthorised Access: Physical Penetration Testing For IT Security Teams by Wil Allsopp.
	Social Engineering: The Art of Human Hacking by Christopher Hadnagy
	Practical Lock Picking: A Physical Penetration Tester's Training Guide by Deviant Ollam
	The Art of Deception: Controlling the Human Element of Security by Kevin Mitnick
	Hacking: The Art of Exploitation by Jon Erickson and Hacking Exposed by Stuart McClure and others.
	Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning by Fyodor
	The Shellcoder's Handbook: Discovering and Exploiting Security Holes by several authors