osxploit
apple platform security research
research
-
Mac App Store App to Ransomware via Apple Classroom
A sandboxed Mac App Store app can lock your entire screen with custom text and block all input — using Apple's own Classroom feature via unauthenticated XPC access to loginwindow. Apple says it's not a security issue.
-
How I Turned On Apple’s Hidden On‑Screen Touch Bar (DFRHUD) via XPC.
Ever wanted to tweak your macOS (almost) legitimately? Popping the Touch Bar UI is a good point to start from!
-
Digging into DeviceCheck
Device identification is a substantial piece of intelligence for app attestation, but how does it work in reality? In this writeup, I present an end-to-end RE of Apple's DeviceCheck token generation internals.
also from osxploit
view all →- BATTERY SAVER · MACOS
Melatonin
Stop your Mac from staying up all night.
A quiet background companion that puts unused apps to sleep, throttles overnight wakes, and gives you back an hour of real battery without thinking about it.
Learn more macOS - CODE OBFUSCATOR · HASSLE-FREE
Obscura
An obfuscator for people who read the IR.
Free, source-available obfuscator built on LLVM passes. Predictable transformations, deterministic builds, and a verbose-by-default debug mode.
View on GitHub LLVMCLI
