Reverse Engineering Mac OS X

Reverse Engineering Mac OS X » Mac Reversing http://reverse.put.as Reverse Engineering for fun and pleasure! Sun, 05 Feb 2012 01:08:42 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Anti-disassembly & obfuscation #1: Apple doesn’t follow their own Mach-O specifications? http://reverse.put.as/2012/02/02/anti-disassembly-obfuscation-1-apple-doesnt-follow-their-own-mach-o-specifications/ http://reverse.put.as/2012/02/02/anti-disassembly-obfuscation-1-apple-doesnt-follow-their-own-mach-o-specifications/#comments Wed, 01 Feb 2012 23:13:53 +0000 fG! http://reverse.put.as/?p=1284 http://reverse.put.as/2012/02/02/anti-disassembly-obfuscation-1-apple-doesnt-follow-their-own-mach-o-specifications/feed/ 0 Anti-debug trick #1: Abusing Mach-O to crash GDB http://reverse.put.as/2012/01/31/anti-debug-trick-1-abusing-mach-o-to-crash-gdb/ http://reverse.put.as/2012/01/31/anti-debug-trick-1-abusing-mach-o-to-crash-gdb/#comments Tue, 31 Jan 2012 21:28:22 +0000 fG! http://reverse.put.as/?p=1271 http://reverse.put.as/2012/01/31/anti-debug-trick-1-abusing-mach-o-to-crash-gdb/feed/ 1 We have a crackme winner!!! http://reverse.put.as/2012/01/31/we-have-a-crackme-winner/ http://reverse.put.as/2012/01/31/we-have-a-crackme-winner/#comments Tue, 31 Jan 2012 16:09:41 +0000 fG! http://reverse.put.as/?p=1267 http://reverse.put.as/2012/01/31/we-have-a-crackme-winner/feed/ 3 My first crackme… from hell, I hope :-) http://reverse.put.as/2012/01/24/my-first-crackme-from-hell-i-hope/ http://reverse.put.as/2012/01/24/my-first-crackme-from-hell-i-hope/#comments Tue, 24 Jan 2012 02:20:58 +0000 fG! http://reverse.put.as/?p=1255 http://reverse.put.as/2012/01/24/my-first-crackme-from-hell-i-hope/feed/ 8 Some comments about plugin-alliance.com protection… http://reverse.put.as/2012/01/09/some-comments-about-plugin-alliance-com-protection/ http://reverse.put.as/2012/01/09/some-comments-about-plugin-alliance-com-protection/#comments Mon, 09 Jan 2012 21:43:43 +0000 fG! http://reverse.put.as/?p=1215 http://reverse.put.as/2012/01/09/some-comments-about-plugin-alliance-com-protection/feed/ 2 Evil iTunes Plugins from Hell http://reverse.put.as/2011/11/22/evil-itunes-plugins-from-hell/ http://reverse.put.as/2011/11/22/evil-itunes-plugins-from-hell/#comments Tue, 22 Nov 2011 04:46:25 +0000 fG! http://reverse.put.as/?p=1127 http://reverse.put.as/2011/11/22/evil-itunes-plugins-from-hell/feed/ 5 Poking around Sentinel HASP Envelope for Mac OS X :-) http://reverse.put.as/2011/10/13/poking-around-sentinel-hasp-envelope-for-mac-os-x/ http://reverse.put.as/2011/10/13/poking-around-sentinel-hasp-envelope-for-mac-os-x/#comments Wed, 12 Oct 2011 23:12:10 +0000 fG! http://reverse.put.as/?p=1065 http://reverse.put.as/2011/10/13/poking-around-sentinel-hasp-envelope-for-mac-os-x/feed/ 1 A small rant about dongles: the developer who can’t correctly implement a HASP! http://reverse.put.as/2011/10/11/a-small-rant-about-dongles-the-developer-who-cant-correctly-implement-a-hasp/ http://reverse.put.as/2011/10/11/a-small-rant-about-dongles-the-developer-who-cant-correctly-implement-a-hasp/#comments Tue, 11 Oct 2011 22:30:17 +0000 fG! http://reverse.put.as/?p=1058 http://reverse.put.as/2011/10/11/a-small-rant-about-dongles-the-developer-who-cant-correctly-implement-a-hasp/feed/ 2 Using Apple’s sandbox feature for reversing purposes :-) http://reverse.put.as/2011/08/30/using-apples-sandbox-feature-for-reversing-purposes/ http://reverse.put.as/2011/08/30/using-apples-sandbox-feature-for-reversing-purposes/#comments Tue, 30 Aug 2011 22:41:56 +0000 fG! http://reverse.put.as/?p=1000 http://reverse.put.as/2011/08/30/using-apples-sandbox-feature-for-reversing-purposes/feed/ 3 Removing iTunes 10.4 m3u processing feature with a small loader http://reverse.put.as/2011/08/25/removing-itunes-10-4-m3u-processing-feature-with-a-small-loader/ http://reverse.put.as/2011/08/25/removing-itunes-10-4-m3u-processing-feature-with-a-small-loader/#comments Thu, 25 Aug 2011 21:42:58 +0000 fG! http://reverse.put.as/?p=985 http://reverse.put.as/2011/08/25/removing-itunes-10-4-m3u-processing-feature-with-a-small-loader/feed/ 7 How gdb disables ASLR in Mac OS X Lion http://reverse.put.as/2011/08/11/how-gdb-disables-aslr-in-mac-os-x-lion/ http://reverse.put.as/2011/08/11/how-gdb-disables-aslr-in-mac-os-x-lion/#comments Thu, 11 Aug 2011 21:45:17 +0000 fG! http://reverse.put.as/?p=953 http://reverse.put.as/2011/08/11/how-gdb-disables-aslr-in-mac-os-x-lion/feed/ 8 There’s a new protection in town, Software Passport, from the developers of Armadillo :-) http://reverse.put.as/2011/02/16/theres-a-new-protection-in-town-software-passport-from-the-developers-of-armadillo/ http://reverse.put.as/2011/02/16/theres-a-new-protection-in-town-software-passport-from-the-developers-of-armadillo/#comments Tue, 15 Feb 2011 23:46:22 +0000 fG! http://reverse.put.as/?p=787 http://reverse.put.as/2011/02/16/theres-a-new-protection-in-town-software-passport-from-the-developers-of-armadillo/feed/ 23 It’s not my war but… http://reverse.put.as/2011/02/15/its-not-my-war-but/ http://reverse.put.as/2011/02/15/its-not-my-war-but/#comments Tue, 15 Feb 2011 19:42:20 +0000 fG! http://reverse.put.as/?p=782 http://reverse.put.as/2011/02/15/its-not-my-war-but/feed/ 16 Universe’s best and legal Mac OS X reversing tutorial for newbies (or maybe not!) http://reverse.put.as/2011/02/12/universes-best-and-legal-mac-os-x-reversing-tutorial-for-newbies-or-maybe-not/ http://reverse.put.as/2011/02/12/universes-best-and-legal-mac-os-x-reversing-tutorial-for-newbies-or-maybe-not/#comments Sat, 12 Feb 2011 03:01:22 +0000 fG! http://reverse.put.as/?p=775 http://reverse.put.as/2011/02/12/universes-best-and-legal-mac-os-x-reversing-tutorial-for-newbies-or-maybe-not/feed/ 19 Why cracking the vast majority of Mac apps isn’t that sexy… http://reverse.put.as/2011/01/17/why-cracking-the-vast-majority-of-mac-apps-isnt-that-sexy/ http://reverse.put.as/2011/01/17/why-cracking-the-vast-majority-of-mac-apps-isnt-that-sexy/#comments Mon, 17 Jan 2011 22:50:07 +0000 fG! http://reverse.put.as/?p=739 http://reverse.put.as/2011/01/17/why-cracking-the-vast-majority-of-mac-apps-isnt-that-sexy/feed/ 6 Reversing the exit(173) from the Mac App Store http://reverse.put.as/2011/01/15/reversing-the-exit173-from-the-mac-app-store/ http://reverse.put.as/2011/01/15/reversing-the-exit173-from-the-mac-app-store/#comments Sat, 15 Jan 2011 03:33:23 +0000 fG! http://reverse.put.as/?p=733 http://reverse.put.as/2011/01/15/reversing-the-exit173-from-the-mac-app-store/feed/ 3 The Mac App Store… Security broken by design? http://reverse.put.as/2011/01/07/the-mac-app-store-security-broken-by-design/ http://reverse.put.as/2011/01/07/the-mac-app-store-security-broken-by-design/#comments Fri, 07 Jan 2011 15:55:50 +0000 fG! http://reverse.put.as/?p=713 http://reverse.put.as/2011/01/07/the-mac-app-store-security-broken-by-design/feed/ 12 A semi-automated way to find sysent http://reverse.put.as/2010/11/27/a-semi-automated-way-to-find-sysent/ http://reverse.put.as/2010/11/27/a-semi-automated-way-to-find-sysent/#comments Fri, 26 Nov 2010 23:05:42 +0000 fG! http://reverse.put.as/?p=701 http://reverse.put.as/2010/11/27/a-semi-automated-way-to-find-sysent/feed/ 10 GDB anti-debug, Otool/otx anti-disassembly… It’s Challenge number 3 !!! http://reverse.put.as/2010/08/18/gdb-anti-debug-otoolotx-anti-disassembly-its-challenge-number-3/ http://reverse.put.as/2010/08/18/gdb-anti-debug-otoolotx-anti-disassembly-its-challenge-number-3/#comments Wed, 18 Aug 2010 02:15:06 +0000 fG! http://reverse.put.as/?p=673 http://reverse.put.as/2010/08/18/gdb-anti-debug-otoolotx-anti-disassembly-its-challenge-number-3/feed/ 20 How to Keygen MSJ Kracking Challenge ’10 – Challenge #1 http://reverse.put.as/2010/08/02/how-to-keygen-msj-kracking-challenge-10-challenge-1/ http://reverse.put.as/2010/08/02/how-to-keygen-msj-kracking-challenge-10-challenge-1/#comments Mon, 02 Aug 2010 19:18:53 +0000 fG! http://reverse.put.as/?p=661 http://reverse.put.as/2010/08/02/how-to-keygen-msj-kracking-challenge-10-challenge-1/feed/ 27 OS X Crackmes http://reverse.put.as/2010/05/21/os-x-crackmes/ http://reverse.put.as/2010/05/21/os-x-crackmes/#comments Thu, 20 May 2010 23:55:07 +0000 fG! http://reverse.put.as/?p=637 http://reverse.put.as/2010/05/21/os-x-crackmes/feed/ 3 reverse.put.as is back in a new format… http://reverse.put.as/2010/04/09/reverse-put-as-is-back-in-a-new-format/ http://reverse.put.as/2010/04/09/reverse-put-as-is-back-in-a-new-format/#comments Fri, 09 Apr 2010 18:34:25 +0000 fG! http://reverse.put.as/?p=571 http://reverse.put.as/2010/04/09/reverse-put-as-is-back-in-a-new-format/feed/ 5 Snow Leopard Impact into reverse engineering world… http://reverse.put.as/2009/10/29/snow-leopard-impact-into-reverse-engineering-world/ http://reverse.put.as/2009/10/29/snow-leopard-impact-into-reverse-engineering-world/#comments Wed, 28 Oct 2009 23:04:26 +0000 fG! http://reverse.put.as/?p=461 http://reverse.put.as/2009/10/29/snow-leopard-impact-into-reverse-engineering-world/feed/ 1 Anatomy of a gdb anti-debug trick part II: GDB isn’t alone ! http://reverse.put.as/2009/08/26/anatomy-of-a-gdb-anti-debug-trick-part-ii-gdb-isnt-alone/ http://reverse.put.as/2009/08/26/anatomy-of-a-gdb-anti-debug-trick-part-ii-gdb-isnt-alone/#comments Wed, 26 Aug 2009 00:20:41 +0000 fG! http://reverse.put.as/?p=419 http://reverse.put.as/2009/08/26/anatomy-of-a-gdb-anti-debug-trick-part-ii-gdb-isnt-alone/feed/ 0 Reversing Pokerstars online poker client (I hope they aren’t from Vegas !!!) http://reverse.put.as/2009/08/20/reversing-pokerstars-online-poker-client-i-hope-they-arent-from-vegas/ http://reverse.put.as/2009/08/20/reversing-pokerstars-online-poker-client-i-hope-they-arent-from-vegas/#comments Thu, 20 Aug 2009 15:47:35 +0000 fG! http://reverse.put.as/?p=410 http://reverse.put.as/2009/08/20/reversing-pokerstars-online-poker-client-i-hope-they-arent-from-vegas/feed/ 1 Anatomy of a gdb anti-debug trick http://reverse.put.as/2009/08/13/anatomy-of-a-gdb-anti-debug-trick/ http://reverse.put.as/2009/08/13/anatomy-of-a-gdb-anti-debug-trick/#comments Thu, 13 Aug 2009 16:38:52 +0000 fG! http://reverse.put.as/?p=391 http://reverse.put.as/2009/08/13/anatomy-of-a-gdb-anti-debug-trick/feed/ 1 How to dump a MPress packed binary… http://reverse.put.as/2009/07/22/how-to-dump-a-mpress-packed-binary/ http://reverse.put.as/2009/07/22/how-to-dump-a-mpress-packed-binary/#comments Wed, 22 Jul 2009 22:15:21 +0000 fG! http://reverse.put.as/?p=355 http://reverse.put.as/2009/07/22/how-to-dump-a-mpress-packed-binary/feed/ 2 How to dump an Apple protected binary http://reverse.put.as/2009/06/30/how-to-dump-an-apple-protected-binary/ http://reverse.put.as/2009/06/30/how-to-dump-an-apple-protected-binary/#comments Mon, 29 Jun 2009 23:04:43 +0000 fG! http://reverse.put.as/?p=330 http://reverse.put.as/2009/06/30/how-to-dump-an-apple-protected-binary/feed/ 1 A bunch of old tutorials… http://reverse.put.as/2009/04/07/a-bunch-of-old-tutorials/ http://reverse.put.as/2009/04/07/a-bunch-of-old-tutorials/#comments Tue, 07 Apr 2009 09:51:51 +0000 fG! http://reverse.put.as/?p=231 http://reverse.put.as/2009/04/07/a-bunch-of-old-tutorials/feed/ 2 Defeating Little Snitch and thinking about piracy… http://reverse.put.as/2009/03/27/defeating-little-snitch-and-thinking-about-piracy/ http://reverse.put.as/2009/03/27/defeating-little-snitch-and-thinking-about-piracy/#comments Fri, 27 Mar 2009 12:45:22 +0000 fG! http://reverse.put.as/?p=222 http://reverse.put.as/2009/03/27/defeating-little-snitch-and-thinking-about-piracy/feed/ 6 Mac OS X Kernel debugging with VMware http://reverse.put.as/2009/03/05/mac-os-x-kernel-debugging-with-vmware/ http://reverse.put.as/2009/03/05/mac-os-x-kernel-debugging-with-vmware/#comments Thu, 05 Mar 2009 12:19:37 +0000 fG! http://reverse.put.as/?p=178 http://reverse.put.as/2009/03/05/mac-os-x-kernel-debugging-with-vmware/feed/ 8 iWork/Photoshop Trojan or Botnet Binary found http://reverse.put.as/2009/01/22/iwork-trojan-or-botnet-binary-found/ http://reverse.put.as/2009/01/22/iwork-trojan-or-botnet-binary-found/#comments Thu, 22 Jan 2009 11:00:13 +0000 fG! http://reverse.put.as/?p=150 http://reverse.put.as/2009/01/22/iwork-trojan-or-botnet-binary-found/feed/ 1 Onyx The Black Cat v0.2 http://reverse.put.as/2008/11/16/onyx-the-black-cat-v02/ http://reverse.put.as/2008/11/16/onyx-the-black-cat-v02/#comments Sun, 16 Nov 2008 18:40:24 +0000 fG! http://reverse.put.as/?p=96 http://reverse.put.as/2008/11/16/onyx-the-black-cat-v02/feed/ 7 Onyx The Black Cat v0.1 – Anti Anti-debug kernel module http://reverse.put.as/2008/10/30/onyx-the-black-cat-v01-anti-anti-debug-kernel-module/ http://reverse.put.as/2008/10/30/onyx-the-black-cat-v01-anti-anti-debug-kernel-module/#comments Thu, 30 Oct 2008 11:56:18 +0000 fG! http://reverse.put.as/?p=70 http://reverse.put.as/2008/10/30/onyx-the-black-cat-v01-anti-anti-debug-kernel-module/feed/ 12 Mac OS X Code injection http://reverse.put.as/2008/07/03/mac-os-x-code-injection/ http://reverse.put.as/2008/07/03/mac-os-x-code-injection/#comments Thu, 03 Jul 2008 14:32:29 +0000 fG! http://reverse.put.as/?p=17 http://reverse.put.as/2008/07/03/mac-os-x-code-injection/feed/ 0