Questions tagged [osx]

An Unix-based operating system originally forked from NextSTEP and developed by Apple Inc. MacOS X runs a Darwin kernel together with Apple Inc. utilities.

From Wikipedia:

OS X previously Mac OS X, is a series of Unix-based graphical interface operating systems developed, marketed, and sold by Apple Inc. It is designed to run exclusively on Mac computers, having been pre-loaded on all Macs since 2002. It was the successor to Mac OS 9, released in 1999, the final release of the "classic" Mac OS, which had been Apple's primary operating system since 1984. The first version released was Mac OS X Server 1.0 in 1999, and a desktop version, Mac OS X v10.0 "Cheetah" followed on March 24, 2001. Releases of OS X are named after big cats: for example, OS X v10.8 is referred to as "Mountain Lion".

59 questions

votes

3 answers

Thread Injection on OSX

Much reverse engineering has been done on Windows over the years leading to great undocumented functionality, such as using NtCreateThreadEx to inject threads across sessions. On OSX the topic of thread injection seems relatively uncharted. With…

osx

asked Mar 31 '13 at 01:32

mrduclaw

4,066
8
27
40

votes

1 answer

What are some methods to reversing a .kext?

I recently discovered there is no native Linux driver for the Web Cam in my computer. However, there is a person who has taking the initiative to start a github project for a driver. That being said, I was able to get the web cam working in a qemu…

osx

asked Feb 10 '15 at 17:05

ipatch

votes

1 answer

MacOS: Output to console in non-console app

I'm working with a program that I can't reasonably run from console; it is started by another program with complex calculated and network-gotten arguments, and that program is complicated as well. To view output on Windows I can AllocConsole, but it…

osx

asked Nov 19 '16 at 20:36

Lupe

votes

1 answer

How to use cycript to investigate a mach-o x86_64 binary?

I recently found out about a tool called cycript that apparently does runtime analysis of binaries written with Objective-C. I have a Mac OS X binary that is compiled as x86_64 and is intended to run on Intel Macs. I know cycript is intended to…

osx

asked Feb 12 '14 at 17:11

ipatch

vote

1 answer

OSX where does getconf read its value

I'm not experienced at reverse engineering at all. I hope this basic question is suitable for this site. Basically I want to know where the value DARWIN_USER_CACHE_DIR is read from. I'm trying to trace the system calls like this: sudo bash dtruss…

osx

asked Oct 21 '14 at 11:30

Newbie

vote

1 answer

Is there an up to date fork of otx?

otx is a tool used to disassemble Mach-O binaries on OS X 10.0-10.4. It is an enhancement on top of otool to add additional symbol information to its disassembled output. The main site and SVN repository (http://otx.osxninja.com/) appears to be…

osx

asked Nov 24 '16 at 17:10

JAL