I started watching it, but the scenario is 1:1 with the French show "le bureau des légendes" (my top 1 show), I gave up after the first episode
Hello, je ne pense pas qu'on ai travaillé dans la même boite. J'ai juste ouvert l'issue sur le repo de warpgate pour le support de kube
Top merci, jamais entendu parler de ces technos
Okok. Le thread est très intéressant.
Vous utilisez quoi comme techno pour stocker et traiter autant de données ? J'ai vu du grafana pour visualiser les stats, python pour le code, mais je suis curieux de savoir le reste des technos si c'est pas indiscret
J'ai vu votre site web, vous avez deja des gros clients. Mais la société existe que depuis quelques jours, comment ça se fait ?
Changed IDA icons to make it feel a bit more modern
github.com/OALabs/swicons
I made an ImHex pattern file for the ftab file format used for Apple C1 firmware and Apple accessories
gist.github.com/matteyeux/d1...
Today is December 1st, and it's your yearly reminder that Stefan Esser, made a "macOS and iOS Security Internals" Advent calendar playlist on Youtube
www.youtube.com/playlist?lis...
Idk, for debugging purposes maybe ?
Anyway this boot-arg is only for dev kernel, it won't be available on the release one.
Next gen Apple Silicon (A19/M5) should have MTE
Internally there is a boot-arg to disable it : -disable_mte
Is it common to see tests added by SEAR Red Team in XNU source code (rel/xnu-11215)
how do you design a privacy-preserving ML inference system?
Peeking Inside Apple's Private Cloud Compute, with art by @restlessrice.bsky.social
research.meekolab.com/peeking-insi...
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Got a few of them, it seems that these are built manually ??
ARMv7m core, started when the sep-firmware is loaded.
It's firmware can be dumped but you need a special device...
I have not seen yet any research the Secure Enclave Boot Monitor
I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission.
The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().
It's RCE, not auth bypass, and gated/unreplayable.
One of the Limefix payload decrypted
Old plugin I made for Binary Ninja to have the function doc of a native Windows function
Swift in M1 Secure Enclave
The first Apple Security Research Device
Made a real basic Linux environment in qemu for this named DBGLinux
Linux ARM64 Kernel debugging in Binary Ninja. The target runs in qemu.
iPhone 15 Pro serial output
Some info about DFU mode on iPhone 15 Pro :
DFU with buttons goes into "Port DFU" (USB-C Controller DFU)
If you use macvdmtool you can boot in DFU "Debug USB" then get OG USB string with a kis compatible tool like irecovery
x.com/ghidraninja/...
3 bugs, including a codesign bypass 😵💫
support.apple.com/en-us/HT213926
