MacSubstrate is a platform tool for interprocess code injection on macOS, with the similar function to Cydia Substrate on iOS. Using macSubstrate, you can inject your plugins (.bundle
or .framework
) into a mac app (including sandboxed apps) to tweak it in the runtime.
Also Read IDB – Tool To Simplify Some Common Tasks For iOS Pentesting & Research
/Applications
and launch it.
step 3 and step 4 can be switched
Once a plugin is installed by macSubstrate, it will take effect immediately. But if you want it to work whenever the target app is relaunched or macOS is restarted, you need to keep it running and allow it to automatically launch at login.
It supports plugins of .bundle
or .framework
, so you just need to create a valid .bundle
or .framework
file. The most important thing is to add a key macSubstratePlugin
into the info.plist
, with the dictionary value:
Key | Value |
---|---|
TargetAppBundleID | the target app’s CFBundleIdentifier , this tells it which app to inject. |
Description | brief description of the plugin |
AuthorName | author name of the plugin |
AuthorEmail | author email of the plugin |
Please check the demo plugins demo.bundle and demo.framework for details.
macSubstrate also provides Xcode Templates
to help you create plugins conveniently:
ln -fhs ./macSubstratePluginTemplate ~/Library/Developer/Xcode/Templates/macSubstrate\ Plugin
Welcome pull requests of your own plugins to Plugins.
Docker is a powerful open-source containerization platform that allows developers to build, test, and deploy…
Docker is one of the most widely used containerization platforms. But there may come a…
Introduction Google Dorking is a technique where advanced search operators are used to uncover information…
Introduction In cybersecurity and IT operations, logging fundamentals form the backbone of monitoring, forensics, and…
What is Networking? Networking brings together devices like computers, servers, routers, and switches so they…
Introduction In the world of Open Source Intelligence (OSINT), anonymity and operational security (OPSEC) are…