Pages

Sunday 30 August 2020

macSubstrate - Tool For Interprocess Code Injection On macOS


macSubstrate is a platform tool for interprocess code injection on macOS, with the similar function to Cydia Substrate on iOS. Using macSubstrate, you can inject your plugins (.bundle or .framework) into a mac app (including sandboxed apps) to tweak it in the runtime.
  • All you need is to get or create plugins for your target app.
  • No trouble with modification and codesign for the original target app.
  • No more work after the target app is updated.
  • Super easy to install or uninstall a plugin.
  • Loading plugins automatically whenever the target app is relaunched.
  • Providing a GUI app to make injection much easier.

Prepare
  • Disable SIP
  • Why should disable SIP
    System Integrity Protection is a new security policy that applies to every running process, including privileged code and code that runs out of the sandbox. The policy extends additional protections to components on disk and at run-time, only allowing system binaries to be modified by the system installer and software updates. Code injection and runtime attachments to system binaries are no longer permitted.

Usage
  1. download macSubstrate.app, put into /Applications and launch it.
    StatusBar
  2. grant authorization if needed.
  3. install a plugin by importing or dragging into macSubstrate.
    ToInstall
  4. launch the target app.
    step 3 and step 4 can be switched
    Once a plugin is installed by macSubstrate, it will take effect immediately. But if you want it to work whenever the target app is relaunched or macOS is restarted, you need to keep macSubstrate running and allow it to automatically launch at login.
  5. uninstall a plugin when you do not need it anymore.
    Installed

Plugin
macSubstrate supports plugins of .bundle or .framework, so you just need to create a valid .bundle or .framework file. The most important thing is to add a key macSubstratePlugin into the info.plist, with the dictionary value:
Key Value
TargetAppBundleID the target app's CFBundleIdentifier, this tells macSubstrate which app to inject.
Description brief description of the plugin
AuthorName author name of the plugin
AuthorEmail author email of the plugin
Please check the demo plugins demo.bundle and demo.framework for details.

Xcode Templates
macSubstrate also provides Xcode Templates to help you create plugins conveniently:
  1. ln -fhs ./macSubstratePluginTemplate ~/Library/Developer/Xcode/Templates/macSubstrate\ Plugin
  2. Launch Xcode, and there will be 2 new plugin templates for you.

Security
  1. SIP is a new security policy on macOS, which will help to keep you away from potential security risk. Disable it means you will lose the protection from SIP.
  2. If you install a plugin from a developer, you should be responsible for the security of the plugin. If you do not trust it, please do not install it. macSubstrate will help to verify the code signature of a plugin, and I suggest you to scan it using VirusTotal. Anyway, macSubstrate is just a tool, and it is your choice to decide what plugin to install.


More articles


  1. Hacking Tools Windows
  2. Hack Tool Apk No Root
  3. Hacker Tools For Windows
  4. Hacking Tools Free Download
  5. Hack Tools 2019
  6. Hacker Tools Apk
  7. Hack Tools
  8. Hacking Tools Pc
  9. Pentest Reporting Tools
  10. Pentest Tools Apk
  11. Pentest Tools Website
  12. New Hack Tools
  13. Pentest Tools Windows
  14. Pentest Tools Download
  15. Black Hat Hacker Tools
  16. Hacker Tools Github
  17. How To Install Pentest Tools In Ubuntu
  18. Hacker Tools For Ios
  19. New Hack Tools
  20. Pentest Tools Apk
  21. Hacker Tools For Ios
  22. Hacker Tools For Ios
  23. Hacker Tools For Mac
  24. Hacking Tools For Kali Linux
  25. Hack Tools For Ubuntu
  26. Black Hat Hacker Tools
  27. Hackers Toolbox
  28. Free Pentest Tools For Windows
  29. Nsa Hacker Tools
  30. Growth Hacker Tools
  31. Pentest Reporting Tools
  32. Hack And Tools
  33. Hack Tools Online
  34. Pentest Tools Website Vulnerability
  35. Hacking Tools Windows 10
  36. Pentest Tools Tcp Port Scanner
  37. Best Pentesting Tools 2018
  38. Hack Tools Download
  39. Hacker Tools Linux
  40. Hacking Tools For Windows
  41. Hacking Tools For Windows 7
  42. Hack Tools For Games
  43. Hacker Tools Apk
  44. Hacker Tools Software
  45. Pentest Tools Linux
  46. Hacker Tools Hardware
  47. Pentest Automation Tools
  48. Best Pentesting Tools 2018
  49. Hacker Techniques Tools And Incident Handling
  50. Termux Hacking Tools 2019
  51. Underground Hacker Sites
  52. Hack Tools
  53. Hacker Tools For Ios
  54. Hack Tools For Windows
  55. Hacking Tools Free Download
  56. Pentest Reporting Tools
  57. Pentest Recon Tools
  58. Hacking Tools For Mac
  59. Hacking Tools And Software
  60. Hack Tool Apk
  61. Pentest Tools Open Source
  62. Hacker Tools Mac
  63. Hacking Tools Usb
  64. Top Pentest Tools
  65. Hack Tools Pc
  66. Pentest Tools Url Fuzzer
  67. Physical Pentest Tools
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)