matteyeux - Network

Security PCC repo has been updated https://github.com/apple/security-pcc

Security PCC repo has been updated

https://github.com/apple/security-pcc

https://github.com/OALabs/swicons/

https://github.com/OALabs/swicons/

Changed IDA icons to make it feel a bit more modern

Changed IDA icons to make it feel a bit more modern

I made an ImHex pattern file for the ftab file format used for Apple C1 firmware and Apple...

I made an ImHex pattern file for the ftab file format used for Apple C1 firmware and Apple accessories
https://gist.github.com/matteyeux/d11e5bb230b0481f41fa6113542e56e1

Curious timing

Curious timing

Today is December 1st, and it's your yearly reminder that Stefan Esser, made a "macOS and iOS Security Internals" Advent...

Today is December 1st, and it's your yearly reminder that Stefan Esser, made a "macOS and iOS Security Internals" Advent calendar playlist on Youtube

https://www.youtube.com/playlist?list=PLouOX_372GvtD6jglet0i99XN2egehZ9B

The playlist is about PAC, GXF, etc...

Since the titles for the videos are not very clear... There is a gist with all the titles

https://gist.github.com/matteyeux/f1649095a7ef82a54e2c11254c149841

Is croissantage only a French thing? What do non-French people do when a coworker is away and their computer is unlocked ?

Is croissantage only a French thing? What do non-French people do when a coworker is away and their computer is unlocked ?

Is it common to see tests added by SEAR Red Team in XNU source code (rel/xnu-11215)

Is it common to see tests added by SEAR Red Team in XNU source code (rel/xnu-11215)

Who would have expected that a 2M subscribers youtuber would have made a free ad for Binjahttps://www.youtube.com/watch?v=bvyklJ5Wie0

Who would have expected that a 2M subscribers youtuber would have made a free ad for Binja

https://www.youtube.com/watch?v=bvyklJ5Wie0

Web in 2024

Web in 2024

cryptex-example is not public, but...https://github.com/jonpalmisc/srdsh

cryptex-example is not public, but...
https://github.com/jonpalmisc/srdsh

Got toybox running in the pccvre, I used the code from cryptex-example (that I got with the first gen SRD)

Got toybox running in the pccvre, I used the code from cryptex-example (that I got with the first gen SRD)

Sometimes the VM just fails to boot after adding a cryptex (had to recreate it).But at least I was able to get a cryptex loaded using...

Sometimes the VM just fails to boot after adding a cryptex (had to recreate it).

But at least I was able to get a cryptex loaded using
@jonpalmisc's repo

https://github.com/jonpalmisc/barebones-cryptex

Been playing with pccvre (well mostly with vrevm) and well... Sometimes SEPOS panics when I set serial=3 in the boot-args.

Been playing with pccvre (well mostly with vrevm) and well... Sometimes SEPOS panics when I set serial=3 in the boot-args.

🦾

🦾

Hopefully today I can pickup my MacBook Pro at the Apple Store 🙏

Hopefully today I can pickup my MacBook Pro at the Apple Store 🙏

Interesting talk about ITW exploit chains caught by Google TAGhttps://youtu.be/2zrcemxCg4Y?si=ypjEgW6LOBZ_2yBDNo surprise, they use...

Interesting talk about ITW exploit chains caught by Google TAG

https://youtu.be/2zrcemxCg4Y?si=ypjEgW6LOBZ_2yBD

No surprise, they use Google's internal resources and crash dumps to catch exploits

Looks like I can debug iboot and kernel with the gdb stub, maybe there is a way to debug PCC sep-firmware

Looks like I can debug iboot and kernel with the gdb stub, maybe there is a way to debug PCC sep-firmware

So I just crashed pccvre with curl

So I just crashed pccvre with curl

Well for some reason the 36 GB version is not available for the MBP with M4 Pro chip

Well for some reason the 36 GB version is not available for the MBP with M4 Pro chip