codecolorist

@[email protected]
679 Followers
369 Following
613 Posts
Twitterhttps://twitter.com/codecolorist/
Bloghttps://codecolor.ist
GitHubhttps://github.com/chichou
Show threadcodecolorist15h ago
@Viss gpt and Gemini are known to have security fence. You might need to apply for gpt security
Show threadcodecolorist15h ago
@Viss none
codecolorist15h ago

claude spent less than half an hour and 3 prompts retry to finish an 0-click preauth exploit for DaVinci Resolve.

I don't know whether it's Holywood fucked or my job is fucked up

codecolorist2d ago

I highly suspect DaVinci has LAN unauthenticated RCE but too lazy to poc. Claude did it in 5 minutes.

Unemployment is on the way.

Show threadcodecoloristMar 12
@jjtech 🫣this Frida script is 1 to 1 copy from it
Show threadcodecoloristMar 11

No, the correct way is just don't use amfi_get_out_of_my_way, but frida

$ sudo frida amfid -l hook.ts

import ObjC from "frida-objc-bridge";

Interceptor.attach(
ObjC.classes.AMFIPathValidator_macos["- validateWithError:"].implementation,
{
onEnter(args) {
const self = new ObjC.Object(args[0]);
const url = self.codePath();
const name = url.path().lastPathComponent().toString();
console.log(`-[AMFIPathValidator_macos validateWithError:${args[2]}]`);
// console.log(self.cdhashAsData());
// console.log(self.teamIdentifier());
// console.log(self.infoPlist());
if (name === "vphone-cli.app") this.bypass = true;
},
onLeave(retval) {
if (this.bypass) retval.replace(ptr(1));
},
},
);

codecoloristMar 10
I put amfi_get_out_of_my_way=1 to nvram to run vphone-cli. Then vscode extensions stopped working, with vsce-sign command complaining "Failed to create CoreCLR". Looks like this vsce-sign is written in .NET and JIT has some issues when AMFI is off. Workaround: turn off extensions.verifySignature
Show threadcodecoloristMar 10
@pancake you are not alone, rada.re main site cert expired 10 days ago
codecoloristMar 6
Oh look what’s this
codecoloristMar 5
Vibe everything