Type | Location | Documentation |
---|---|---|
Kernel/Sytem Extensions | /System/Library/Extensions/ /Library/Extensions/ /Extra/Extensions/ |
https://developer.apple.com/fr/support/kernel-extensions/ /Extra/Extensions/ is deprecated |
Launch Daemons | /System/Library/LaunchDaemons/ /Library/LaunchDaemons/ /Users/*/Library/LaunchDaemons/ |
https://developer.apple.com/library/archive/documentation/MacOSX/Conceptual/BPSystemStartup/Chapters/Introduction.html |
Launch Agents | /System/Library/LaunchAgents/ /Library/LaunchAgents/ /Users/*/Library/LaunchAgents/ |
https://developer.apple.com/library/archive/documentation/MacOSX/Conceptual/BPSystemStartup/Chapters/Introduction.html |
Startup Items | /System/Library/StartupItems//Library/ |
Discover gists
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Date | |
2019-09-02 | |
References | |
https://www.volexity.com/blog/2019/09/02/digital-crackdown-large-scale-surveillance-and-exploitation-of-uyghurs/ | |
Artifacts | |
Filesystem | |
/data/data/com.android.browser/loader | |
/data/data/com.android.browser/loader.log |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Quick and Dirty iOS Exploits/Implant IoC from Google Project Zero blog posts | |
Date | |
2019-08-30 | |
References | |
https://googleprojectzero.blogspot.com/2019/08/a-very-deep-dive-into-ios-exploit.html | |
https://googleprojectzero.blogspot.com/2019/08/in-wild-ios-exploit-chain-1.html | |
https://googleprojectzero.blogspot.com/2019/08/in-wild-ios-exploit-chain-2.html | |
https://googleprojectzero.blogspot.com/2019/08/in-wild-ios-exploit-chain-3.html |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import requests, json, logging, sys | |
class PassiveTotal: | |
def __init__(self, apikey): | |
self.__apikey = apikey | |
self.__classifications = [ 'targeted', 'crime', 'benign', 'multiple' ] | |
self.__actions = [ 'add', 'remove' ] | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
from __future__ import annotations | |
import re | |
from typing import Optional | |
import discord | |
from discord.ext import commands | |
# Role IDs to labels mapping. | |
# role_id: label |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
package main | |
import ( | |
"bytes" | |
"fmt" | |
"io/ioutil" | |
"log" | |
"golang.org/x/crypto/ssh" | |
kh "golang.org/x/crypto/ssh/knownhosts" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
// | |
// _oo0oo_ | |
// o8888888o | |
// 88" . "88 | |
// (| -_- |) | |
// 0\ = /0 | |
// ___/`---'\___ | |
// .' \\| |// '. | |
// / \\||| : |||// \ | |
// / _||||| -:- |||||- \ |
NewerOlder