macOS Apple Scripts
Last updated
Last updated
Learn & practice AWS Hacking: Learn & practice GCP Hacking:
It's a scripting language used for task automation interacting with remote processes. It makes pretty easy to ask other processes to perform some actions. Malware may abuse these features to abuse functions exported by other processes. For example, a malware could inject arbitrary JS code in browser opened pages. Or auto click some allow permissions requested to the user;
Here you have some examples: Find more info about malware using applescripts .
Apple scripts may be easily "compiled". These versions can be easily "decompiled" with osadecompile
However, this scripts can also be exported as "Read only" (via the "Export..." option):
and tin this case the content cannot be decompiled even with osadecompile
However, there are still some tools that can be used to understand this kind of executables, ). The tool with will be very useful to understand how the script works.
Learn & practice AWS Hacking: Learn & practice GCP Hacking:
Check the !
Join the 💬 or the or follow us on Twitter 🐦 .
Share hacking tricks by submitting PRs to the and github repos.