Recent
macOS reflective code loading analysis
·12 mins
macOS code execution using
NSCreateImageFromMemory/NSLoadModule is not a pure in-memory, artifact-free, fileless technique.Reordering Architecture Headers in a Universal Mach-O Binary
·6 mins
A simple way to re-order platform architectures in universal Mach-O binaries.
Reverse Engineering License Validation in a VS Code Extension
·7 mins
A short example of reverse engineering the license check for a fairly compact VS Code extension.