Why Gemfury? Push, build, and install  RubyGems npm packages Python packages Maven artifacts PHP packages Go Modules Debian packages RPM packages NuGet packages

mochaa / idapro rpm

Repository URL to install this package:

Version: 
9.1~250226-1.fc41  ▾
Details    
idapro / opt / ida90 / libexec / idapro / cfg / macho.cfg
Size: Mime: 

// Key used to decrypt apple-protected binaries.
// Due to copyright reasons we cannot publish the key,
// but we can give you clues:
//
//  http://www.osxbook.com/book/bonus/chapter7/tpmdrmmyth
//
// (look for smc_read.c)

SMC_DEVICE_KEY = "";


// Use this option to improve the analysis of macOS11 kernelcaches.
//
// macOS11 introduced a new kernelcache format, which stores kernel extensions in multiple different files:
//
//   /System/Library/KernelCollections/BootKernelExtensions.kc
//   /System/Library/KernelCollections/SystemKernelExtensions.kc
//   /Library/KernelCollections/AuxiliaryKernelExtensions.kc
//
// BootKernelExtensions.kc contains the actual mach kernel, along with some core kernel extensions.
//
// The other .kc files also contain kernel extensions, but they will have pointers to symbols
// in BootKernelExtensions.kc. Thus, IDA can't properly resolve these pointers unless it can open
// BootKernelExtensions.kc and import the symbol data.
//
// Try setting this option to:
//
//   BOOT_KC_PATH = "/System/Library/KernelCollections/BootKernelExtensions.kc";
//
// Then open SystemKernelExtensions.kc or AuxiliaryKernelExtensions.kc in IDA.
//
// The macho loader will be able to import all referenced symbols from BootKernelExtensions.kc,
// resulting in much more robust analysis.

BOOT_KC_PATH = "";


// Path to SystemKernelExtensions.kc (also see BOOT_KC_PATH above).
//
// AuxiliaryKernelExtensions.kc might contain pointers into this file.
// Set this option to import the referenced symbols.

SYS_KC_PATH = "";


// When loading a Mach-O file, by default IDA will create IDA segment names based on the Mach-O section name,
// e.g. __text, __const, etc. Set this option to YES to make IDA include the Mach-O segment name as a prefix
// for the IDA segment name, e.g. __TEXT:__text __DATA:__const, etc.

USE_SEG_PREFIXES = NO

// shared caches might contain segments whose load command provides a size of zero
// (for example the OBJC_RO segment in libobjc.A.dylib starting in macOS 15).
// this option makes the mach-o loader attempt to load those segments anyway by loading
// the entire containing mapping (heuristic).
DSC_LOAD_ZEROSIZED_SEGS = YES


// Specify the type libraries used when loading new Mach-O files.
//
// By default IDA will automatically determine the most accurate tils to load based on clues
// in the input file. If IDA does not choose correctly, you can always force it to load the
// desired tils. For example:
//
//   TIL_CONFIG = {
//     "32" : [ "macosx" ],
//     "64" : [ "macosx64" ]
//   }

TIL_CONFIG = {}

Products

About

Resources

Contact Gemfury