CalvinBackup/SnakeAppleSecurityFiles
1
0
Fork 0
mirror of https://github.com/Karmaz95/Snake_Apple.git synced 2026-03-30 14:00:16 +02:00
Code Issues Packages Projects Releases Wiki Activity

Browse Source
This commit is contained in:
Karmaz95
2024-03-25 08:42:22 +01:00
parent ab449adc7b
commit 7c2231ec8d
1 changed files with 15 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
VI. AMFI/python/CrimsonUroboros.py
View File

@@ -2253,15 +2253,29 @@ class SnakeVI(SnakeV):
def printStickyBit(self):
print(f'STICKY: {self.hasStickyBit()}')
def hasAllowDEV(self, file_path):
'''
Checks if the binary has com.apple.security.cs.allow-dyld-environment-variables.
This allow for Dyld Environment Variables.
'''
if self.checkIfEntitlementIsUsed('com.apple.security.cs.allow-dyld-environment-variables', 'true', file_path):
return True
return False
def checkDyldInsertLibraries(self):
''' Check if binary is vulnerable to code injection using DYLD_INSERT_LIBRARIES. '''
cs_flags = self.getCodeSignatureFlags()
if cs_flags & 0x12800:
if cs_flags & 0x2800:
return False
if self.hasSetUID() or self.hasSetGID() or self.hasRestrictSegment():
return False
has_insecure_entitlements_combination = self.hasDisableLibraryValidationEntitlement(self.file_path) and self.hasAllowDEV(self.file_path)
if (cs_flags & 0x10000) and (not has_insecure_entitlements_combination):
return False
return True
def printCheckDyldInsertLibraries(self):