Skip to content

Delta's Lair

May the father of understanding guide us

Skip to content
  • Home
  • About

Secure Kernel Extension Loading in macOS High Sierra

07/17/201707/26/2017 Linus

0x00 Background Reference: Technical Note TN2459: Secure Kernel Extension Loading In macOS High Sierra, Apple introduced Secure Kernel Extension Loading (aka Kext User Consent) feature to require user confirmation before loading a signed kext. Note that this restriction only apply to valid signed kexts. Unsigned kexts would be taken care… Read more

macOS  kext, macOS, secure, sip  Leave a comment

Some Hidden Changes in OS X El Capitan

10/02/201509/26/2016 Linus

OS X El Capitan introduced lots of changes, most of them are not easy to be found since they are not on the GUI level. Well, SIP can be one of them but this post will not talk about it once again. Here are some changes/hacks I found. 1. Hibernate… Read more

macOS  10.11, el capitan, OS X  8 Comments

OS X NVRAM Restriction Bypassed

09/28/201509/23/2016 Linus

Begin with OS X 10.11 El Capitan, a set of security mechanism, System Integrity Protection(SIP), has been enforced and it can only be configured or turned off in the recovery environment like “Recovery HD”. In the “normal environment”, SIP configuration will not be permitted even with root privilege. If so,… Read more

macOS  bypass, NVRAM, patch, sip  16 Comments

Simple ASCII Encryption and Decryption Tool

09/23/2015 Linus

This is a simple tool play with ASCII to encrypt or decrypt input text. Wrote this for a demo purpose and fun. How to “Encryption”? -> Start with a plaintext character, followed by the ascii value in hex of the next character. The code is kind of self-explain and there… Read more

Others  ascii, fun, hex  Leave a comment

Usage of csrutil and Standalone OS X 10.9 Recovery HD Backup

08/10/201507/20/2017 Linus

09/18 Update:  Begin with 10.11.1, the Apple Internal flag won’t allowed to be set. This Apple Internal status provided by csrutil tool shall always be “Disabled” even if you set this bit in your csr-active-config. 08/19 Update: An updated csrutil tool has been released with the DP7 of 10.11 El… Read more

macOS  Recovery HD, sip  4 Comments

About the Compact OS deployment in Windows 10

08/07/201508/08/2015 Linus

The newly released Windows 10 introduced a new feature called Compact OS. This technology is the evolution of  WIMBoot in Windows 8.1. In short, the Compact OS allow the system files compressed like wim file and transparent to the upper level in order to reduce the size of the system files… Read more

Windows  Compactos, deployment, windows 10  Leave a comment

Kext to check SIP/Rootless status on El Capitan

07/22/201508/05/2015 Linus

About SIP/Rootless:  SIP/Rooless Internal in El Capitan In order to check the status of all security mechanisms provided by SIP/Rootless, a tiny little kext was built. WARNING: This kext is for testing purpose ONLY. Download: SIPCheck.command.zip Requirements: 1. OS X 10.11 for the SIP status check; bootargs flags check would be… Read more

macOS  el capitan, kext, rootless, sip  2 Comments

SIP/Rootless Internal in El Capitan and later

07/18/201510/02/2017 Linus

As many people already found out, the next OS X El Capitan introduced a new mechanism of system security policy called “Rootless”, which officially named “System Integrity Protection” (SIP). According to the security session in WWDC2015, the rootless is a complete infrastructure built for the OS X security and it contains three… Read more

macOS  el capitan, rootless, sip  9 Comments

HOW OS X open the gate for TRIM on 3rd party SSD

07/01/201507/31/2017 Linus

For many years (since 10.6.8 maybe), the IOAHCIBlockStorage.kext driver in the OS X only allows TRIM to be enabled on Apple SSD. Such behavior blocks all 3rd party SSD to enable this essential technology while running OS X. Although it was possible to patch the IOAHCIBlockStorage binary to force enable TRIM on… Read more

macOS  OS X, TRIM  Leave a comment

Lenovo Y450 BIOS WWAN whitelist removal

10/27/2014 Linus

I always hate those PC manufacturers who put so called hardware whitelist in the BIOS, I understand they did this for the benefits of the company by blocking “unauthorized” devices. However, as customer, I believed that at least I have the rights to study and control my own machine, just like the jailbreak on the Apple… Read more

Others  BIOS, whitelist, WWAN, Y450  1 Comment

Posts navigation

Older posts

Recent Posts

  • Secure Kernel Extension Loading in macOS High Sierra
  • Some Hidden Changes in OS X El Capitan
  • OS X NVRAM Restriction Bypassed
  • Simple ASCII Encryption and Decryption Tool
  • Usage of csrutil and Standalone OS X 10.9 Recovery HD Backup

Archives

  • July 2017
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • October 2014
  • September 2014
  • February 2013
  • October 2012
  • September 2012
  • July 2012
  • April 2012
  • March 2012
  • February 2012
  • January 2012

Recent Comments

  • 黑蘋果升級 OS X 10.11 Public Beta 3~5(SIP/USB2 fix) – Ben Cheng 的打字人生 on SIP/Rootless Internal in El Capitan and later
  • Secure Kernel Extension Loading in macOS High Sierra – Delta's Lair on SIP/Rootless Internal in El Capitan and later
  • Angel on OS X NVRAM Restriction Bypassed
  • Angel on OS X NVRAM Restriction Bypassed
  • CH340 CH341 serial adapters fix for El Capitan OS X | 万维网黑客 on SIP/Rootless Internal in El Capitan and later

Categories

  • Linux
  • macOS
  • Others
  • Personal
  • Site
  • Windows
© 2012-2017 All rights reserved