🔴 #Apple #iOS, iPadOS, #macOS, tvOS - Validation Issue (#CVE-2024-23264 - High)

https://dailycve.com/apple-ios-ipados-macos-tvos-validation-issue-cve-2024-23264-high/

@DailyCVE

🔴 #macOS Sonoma - Privacy Issue (#CVE-2024-23287) - Critical

https://dailycve.com/macos-sonoma-privacy-issue-cve-2024-23287-critical/

@Daily_CVE

🔴 GarageBand, Use-After-Free Vulnerability, #CVE-2024-23300 (Critical)

https://dailycve.com/garageband-use-after-free-vulnerability-cve-2024-23300-critical/

@Daily_CVE

🔴 #macOS, #iOS, iPadOS - Privacy Issue - #CVE-2024-23283 (Critical)

https://dailycve.com/macos-ios-ipados-privacy-issue-cve-2024-23283-critical/

@Daily_CVE

🔴 #macOS Kernel Vulnerability: #CVE-2024-23265 (Critical)

https://dailycve.com/macos-kernel-vulnerability-cve-2024-23265-critical/

@Daily_CVE

🔴 #Apple Lock Screen Bypass via Siri (#CVE-2024-23289) - Critical

https://dailycve.com/apple-lock-screen-bypass-via-siri-cve-2024-23289-critical/

@Daily_CVE

🔴 #Apple #iOS System Notification Spoofing Vulnerability (#CVE-2024-23262) - Critical

https://dailycve.com/apple-ios-system-notification-spoofing-vulnerability-cve-2024-23262-critical/

@Daily_CVE

🔵 #Apple WebKit Remote Code Execution Vulnerability (#CVE-2024-10118)

https://dailycve.com/apple-webkit-remote-code-execution-vulnerability-cve-2024-10118/

@Daily_CVE

⚡️ #Reddit's New #AI-Powered Search: #Reddit Answers

https://undercodenews.com/reddits-new-ai-powered-search-reddit-answers/

@Undercode_News

Mark Zuckerberg's Meteoric Rise: A Closer Look

https://undercodenews.com/mark-zuckerbergs-meteoric-rise-a-closer-look/

@Undercode_News

🦑Cisco is Offering FREE Cyber Security Courses + official Badges!
Start Your Cybersecurity Career with these in demand courses!

⭕1. Introduction to Cybersecurity

- Course Duration: 6 HOURS
- Level: BEGINNER
- Lab: 7 LABS
- Delivery Type: SELF-PACED

Course Link: https://lnkd.in/eh5MTBwT

⭕2. Cyber Threat Management

- Course Duration: 16 HOURS
- Level: INTERMEDIATE
- Lab: 16 LABS
- Delivery Type: SELF-PACED

Course Link: https://lnkd.in/ehwb_Hsh

⭕3. Endpoint Security

- Course Duration: 27 HOURS
- Level: Intermediate
- Labs: 31 LABS
- Delivery Type: SELF-PACED

Course Link: https://lnkd.in/eV2UB7xy

⭕4. Network Defense

- Course Duration: 27 HOURS
- Level: INTERMEDIATE
- Lab: 29 LABS
- Delivery Type: SELF-PACED

Course Link: https://lnkd.in/ekTpuvyn

Source: Linkedin

#Tesla Prepares for Growth with the Arrival of the Affordable Model Q!

https://undercodenews.com/tesla-prepares-for-growth-with-the-arrival-of-the-affordable-model-q/

@Undercode_News

🚨 Critical RCE Vulnerability in #Apple WebKit: #Update Now!

https://undercodenews.com/critical-rce-vulnerability-in-apple-webkit-update-now/

@Undercode_News

🦑Reverse Engineering iOS Applications:

> Here's a streamlined approach to obtain the required tools and set up your environment for iOS reverse engineering, as described. The provided GitHub repository is an excellent resource for guidance.

### Key Tools and Instructions

1. iTunnel
- Download: Allows SSH over USB.
- Usage:

     itnl --lport 2222 --iport 22
     ssh -p 2222 root@localhost
     

2. Cydia Impactor
- Download: Lets you sideload iOS apps using a developer certificate.

3. Hopper
- Download: Reverse engineering tool for disassembly, decompilation, and debugging.
- Trial version is sufficient.

4. Cycript
- Download: Enables runtime modification of app behavior via a console.

5. Frida
- Install:

     sudo pip install frida-tools
     

- Purpose: Scripting to change app behavior at runtime.

6. Bettercap
- Download: Perform MITM (Man-in-the-Middle) attacks.

7. class-dump-z
- Download: Dumps ObjC classes (for ObjC apps).

8. momdec
- Download: Decompiles CoreData models.

9. Ghidra
- Download: Alternative reverse engineering tool.

---

### iOS-Specific Tools

#### iOS 10.x
- Clutch
- Use for decrypting iOS applications.

#### iOS 11.x+
- bfinject
- Extract apps using Cycript and Clutch.
- Install dependencies:

    sudo pip install -r requirements.txt --upgrade
    

#### iOS 12.x
- frida-ios-dump
- Decrypt apps and auto-transfer to your computer.

---

### Device Setup

1. On iOS < 11.0
- Jailbreak and install via Cydia:
- Cycript
- Apple File Conduit "2"
- Frida (Source: https://build.frida.re)

- Test SSH:

     itnl --lport 2222 --iport 22
     ssh -p 2222 root@localhost
     

2. On iOS > 11.0
- Create required directories:

     cd / && mkdir jb
     mkdir /jb/bfinject && cd /jb/bfinject
     

- Transfer and extract bfinject:

     scp -P 2222 ~/Downloads/bfinject.tar root@localhost:/jb/bfinject
     tar xvf bfinject.tar
     

3. On iOS 12.x
- Install Frida via Cydia (Source: https://build.frida.re).


For more details and resources, check the GitHub repository: [RE-iOS-Apps](https://github.com/ivRodriguezCA/RE-iOS-Apps).

#GTA 6's Massive Map: A Fan-Made Recreation Reveals Its Scale

https://undercodenews.com/gta-6s-massive-map-a-fan-made-recreation-reveals-its-scale/

@Undercode_News

🛠️ Improved Quantum Leap in Computing: #Google's Breakthrough in Error Correction

https://undercodenews.com/improved-quantum-leap-in-computing-googles-breakthrough-in-error-correction/

@Undercode_News

🖥️ Unlocking the Power of Embeddings: Building a Custom Retrieval System with Motoko and Nodejs

https://undercodenews.com/unlocking-the-power-of-embeddings-building-a-custom-retrieval-system-with-motoko-and-nodejs/

@Undercode_News

Curated list of data leaks around the world:

https://github.com/inspektor-dev/awesome-data-leak

🎮 #Samsung's Next XR Headset: A 2025 Release?

https://undercodenews.com/samsungs-next-xr-headset-a-2025-release/

@Undercode_News

🔴 Rockwell Automation Arena Simulation #Software Vulnerability (#CVE-2024-21913) - HIGH

https://dailycve.com/rockwell-automation-arena-simulation-software-vulnerability-cve-2024-21913-high/

@DailyCVE