Mastodawn

Throw back to 2 years ago today, 2024 G5 geomagnetic storm "The Gannon Storm" brought Aurora pillars to Berlin city center, right above OffensiveCon after party, while most of the attendees didn’t know about it 🤭

codecolorist Apr 29

Did a bit of follow-up to my 0x41con talk to download another industrial standard non linear editing solution.

Just incredible. It runs some 2000-ish java server code as root on desktop version, and easily popped an preauth rce (root) from network.

Can't believe this full of bugs solution edited so many Oscar winners

codecolorist Apr 16

I pity for whoever makes the decision to dump Launchpad for the jitter Spotlight. He or she must have suffer a lot from life, terrible married life, childhood trauma and brain issue.

codecolorist Apr 14

Another ADHD:
Added file history and diff view to entitlement database

https://codecolor.ist/entdb/

codecolorist Apr 9

Getting serious ADHD and building software nobody asked.

checksec for Mach-O
https://github.com/ChiChou/macchk

⚠️ Warning: vibe coded

codecolorist Apr 6

对 iTunes 把华语和日韩歌曲一律改成罗马化拼写的弱智行为忍无可忍，写了个脚本导出 Apple Music - gemini 清洗数据 - 批量重命名 iTunes 库

https://github.com/ChiChou/pinyinfix

GitHub - ChiChou/pinyinfix: 修复神经的 Apple Music 歌名

修复神经的 Apple Music 歌名. Contribute to ChiChou/pinyinfix development by creating an account on GitHub.

GitHub

codecolorist Mar 26

Boris Larin Mar 26

We analyzed the Coruna exploit kit and found intriguing code overlaps with Operation Triangulation https://securelist.com/coruna-framework-updated-operation-triangulation-exploit/119228/

codecolorist Mar 23

opa334 Mar 23

https://github.com/opa334/darksword-kexploit

Unlike other repos, this one was not written by generative AI.

WIP

GitHub - opa334/darksword-kexploit: iOS <=26.0.1 DarkSword Kernel Exploit reimplemented in Objective-C (WIP)

iOS <=26.0.1 DarkSword Kernel Exploit reimplemented in Objective-C (WIP) - opa334/darksword-kexploit

GitHub

codecolorist Mar 22

Double tap on iOS is for zooming in and out. Any app that maps this gesture to like should be taken down if App Store review ever makes sense

codecolorist Mar 19

frida recently shipped strace, so I piped it to Wireshark again

Twitter	https://twitter.com/codecolorist/
Blog	https://codecolor.ist
GitHub	https://github.com/chichou