Apple Mach-O

Binary info otool Using otool we can get general info about the Mach-O file: otool -h [app_name] > Mach header magic cputype cpusubtype caps filetype ncmds sizeofcmds flags 0xfeedfacf 16777228 0 0x00 2 115 11384 0x00218085 Quick refernce on the meaning:

Binary Vulnerabilities And Exploits

In this article I will collect common binary vulnerability (expept for the bufferoverflow which has its own dedicated article) … .

Exploit Development Env

This is about … .


This is some malware that had a TLScallback in its main and several entry0-2 functions + 1main.

The Lord of the Apple: The Return of the iPhone

๐Ÿ“† 22/08/2021 , Sunday, โ˜๏ธ ๐Ÿ•ฐ 11:21 AM. It was a cloudy Sunday morning. I was sleeping peacefully till 8:45 AM when my daughter started crawling all over me and my husband asking wether I am awake already… .

To Carry Out MockInv'estigation. Part 2

๐Ÿ“† 16/06/2021 , Wednesday ๐Ÿ•ฐ 09:21 PM. I had a 7-day license of Magnet AXIOM and I’ve decided to try this tool and compare it with others that I had.

How I Got Started With ARM

๐Ÿ“† Friday, 12th of March, 202 โฐ 09:00 โ˜€๏ธ It was a very deceptively sunny morning, children laughing and squeaking merrily.

Compilation and Linking ๐Ÿ”—

In this article I am trying to reasearch compilation and linking process. Terms .cpp - is a human-readable file written in any programming language.

Positive and Negative Numbers

Intro One’s complement Two complement

iOS Reverse Engineering

During forensic analysis it’s not too rare to run into some suspicious application. In this article I’m going to learn to reverse engineer iOS applications.