As of macOS 12 (Monterey), Apple's Virtualization framework has nice support for macOS guest virtual machines, but with severe limitations: For example you can't install a macOS guest on Intel Macs, install guests with newer versions of macOS than the host, copy and paste between the host and the guest, or install third party kernel extensions in the guest. As usual for Apple, the functionality they do support is nicely implemented, but they've left out so much that the result is only marginally useful -- at least compared to
Peter A. ink-splatters
ink-splatters
/ ThirdPartyKexts.md
Created
September 4, 2024 07:42
— forked from steven-michaud/ThirdPartyKexts.md
Running Third Party Kernel Extensions on Virtualization Framework macOS Guest VMs
ink-splatters
/ telegramRestore.md
Created
August 31, 2024 00:33
— forked from avivace/telegramRestore.md
Restore deleted Telegram messages from groups
to ask for help with python and/or executing this script, join discord: https://discord.gg/zpu7YUP3Um
There's not telegram API method for this, we need to call MTProto methods to retrieve messages from the "Recent Actions" (Admin Log) since deleted messages (and medias) gets moved there for 48 hours before the permanent deletion.
from telethon import TelegramClient, events, sync
from telethon.tl.types import InputChannel, PeerChannel
ink-splatters
/ MSUEarlyBootTask.log
Created
August 13, 2024 21:57
— forked from rickmark/MSUEarlyBootTask.log
Early boot persistence
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 09:02:52: main: MSUEarlyBootTask running..Found data created by previous ramdisk. Assuming first boot after update at time Tue Sep 21 09:02:52 2021 | |
| 09:02:52: MSUEarlyBootTask: Successfully set up ACL for folder stashed by ramdisk | |
| 09:02:52: MSUEarlyBootTasks: Cleaning up stale stashed paths | |
| 09:02:52: main: Running fixup var operations | |
| 09:02:52: entering update_var_directory_hierarchy | |
| 09:02:52: Created system mount point at /private/var/MobileSoftwareUpdate/mnt1 | |
| 09:02:52: System is currently rooted from a snapshot | |
| 09:02:52: msuearlyboottask_mount_filesystem: Attempting to mount /dev/disk0s1s1 at /private/var/MobileSoftwareUpdate/mnt1 | |
| 09:02:52: Reverting to snapshot(com.apple.os.update-9C000777B424EEABA97D3C90BB8E3C6CBD865FF00968F6063E6BFE32DBD630B9891FF8EB307DBFCE4CDD05EF92EE0C7D) |
ink-splatters
/ airtag-decryptor.swift
Created
May 24, 2024 03:24
— forked from airy10/airtag-decryptor.swift
Decrypt all beacons files from ~/Library/com.apple.icloud.searchpartyd
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // | |
| // airtag-decryptor.swift | |
| // | |
| // Decrypt all beacons files from ~/Library/com.apple.icloud.searchpartyd - updated when FindMy is running | |
| // Results in /tmp/com.apple.icloud.searchpartyd - same file hierarchy | |
| // | |
| // Created by Matus on 28/01/2024. - https://gist.github.com/YeapGuy/f473de53c2a4e8978bc63217359ca1e4 | |
| // Modified by Airy | |
| // | |
| import Cocoa |
ink-splatters
/ sandbox.h
Created
May 6, 2024 14:03
— forked from Quiark/sandbox.h
restricted version of sbtool that is compilable
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // courtesy of clang | |
| // https://github.com/applesrc/clang/blob/bb8f644/src/projects/compiler-rt/lib/sanitizer_common/sanitizer_mac_spi.cc | |
| enum sandbox_filter_type { | |
| SANDBOX_FILTER_NONE, | |
| SANDBOX_FILTER_PATH, | |
| SANDBOX_FILTER_GLOBAL_NAME, | |
| SANDBOX_FILTER_LOCAL_NAME, | |
| SANDBOX_FILTER_APPLEEVENT_DESTINATION, |
ink-splatters
/ add_debug_entitlement.sh
Created
October 29, 2023 05:33
— forked from talaviram/add_debug_entitlement.sh
Simple Utility Script for allowing debug of hardened macOS apps.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #! /bin/bash | |
| # Simple Utility Script for allowing debug of hardened macOS apps. | |
| # This is useful mostly for plug-in developer that would like keep developing without turning SIP off. | |
| # Credit for idea goes to (McMartin): https://forum.juce.com/t/apple-gatekeeper-notarised-distributables/29952/57?u=ttg | |
| # Update 2022-03-10: Based on Fabian's feedback, add capability to inject DYLD for sanitizers. | |
| # | |
| # Please note: | |
| # - Modern Logic (on M1s) uses `AUHostingService` which resides within the system thus not patchable and REQUIRES to turn-off SIP. | |
| # - Some hosts uses separate plug-in scanning or sandboxing. | |
| # if that's the case, it's required to patch those (if needed) and attach debugger to them instead. |
ink-splatters
/ README.en.md
Created
July 18, 2023 23:46
— forked from akihikodaki/README.en.md
Linux Desktop on Apple Silicon in Practice
I bought M1 MacBook Air. It is the fastest computer I have, and I have been a GNOME/GNU/Linux user for long time. It is obvious conclusion that I need practical Linux desktop environment on Apple Silicon.
Fortunately, Linux already works on Apple Silicon/M1. But how practical is it?
- Two native ports exist.
ink-splatters
/ self-signed-certificate-with-custom-ca.md
Created
July 15, 2023 23:57
— forked from fntlnz/self-signed-certificate-with-custom-ca.md
Self Signed Certificate with Custom Root CA
ink-splatters
/ macOS Internals.md
Created
June 19, 2023 15:37
— forked from kconner/macOS Internals.md
macOS Internals
ink-splatters
/ DiskUtil.sh
Created
April 21, 2023 18:08
— forked from joevt/DiskUtil.sh
macOS disk labels, mounting partitions
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # by joevt May 23, 2022 | |
| directblesscmd="/Volumes/Work/Programming/XcodeProjects/bless/bless-204.40.27 joevt/DerivedData/bless/Build/Products/Debug/bless" | |
| usedirectbless=0 | |
| if [[ -d /System/Library/PrivateFrameworks/APFS.framework/Versions/A ]]; then | |
| if [[ ! -f "$directblesscmd" ]]; then | |
| echo "# Download and build bless from https://github.com/joevt/bless , then update the path of directbless defined in DiskUtil.sh" | |
| else | |
| usedirectbless=1 |
NewerOlder