From 6c12efc92577ba59c2c65d2d19ec2680daa2aa96 Mon Sep 17 00:00:00 2001
From: Karmaz95 <karol.mazurek95@gmail.com>
Date: Mon, 25 Mar 2024 09:34:55 +0100
Subject: [PATCH]

---
 VI. AMFI/python/CrimsonUroboros.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/VI. AMFI/python/CrimsonUroboros.py b/VI. AMFI/python/CrimsonUroboros.py
index 879b92b..d3254f3 100755
--- a/VI. AMFI/python/CrimsonUroboros.py	
+++ b/VI. AMFI/python/CrimsonUroboros.py	
@@ -2266,14 +2266,14 @@ class SnakeVI(SnakeV):
     def checkDyldInsertLibraries(self):
         ''' Check if binary is vulnerable to code injection using DYLD_INSERT_LIBRARIES. '''
         cs_flags = self.getCodeSignatureFlags()
-        if cs_flags & 0x2800:
+        if cs_flags & 0x2800: # CS_RESTRICT | CS_REQUIRE_LV
             return False
 
-        if self.hasSetUID() or self.hasSetGID() or self.hasRestrictSegment():
+        if self.hasSetUID() or self.hasSetGID() or self.hasRestrictSegment(): # SUID | GUID | __RESTRICT,__restrict
             return False
 
         has_insecure_entitlements_combination = self.hasDisableLibraryValidationEntitlement(self.file_path) and self.hasAllowDEV(self.file_path)
-        if (cs_flags & 0x10000) and (not has_insecure_entitlements_combination):
+        if (cs_flags & 0x10000) and (not has_insecure_entitlements_combination): # CS_RUNTIME without disabled LV and allowed DEV through entitlements
             return False
 
         return True