Tatsh/tccx

GitHub: Tatsh/tccx

tccx 是一项针对 macOS TCC 隐私权限系统的逆向工程研究,附带验证工具 tcc-preapprove,探索以编程方式预先批准隐私权限的可行性。

Stars: 2 | Forks: 0

# tccx [![GitHub 标签(带过滤器)](https://img.shields.io/github/v/tag/Tatsh/tccx)](https://github.com/Tatsh/tccx/tags) [![许可证](https://img.shields.io/github/license/Tatsh/tccx)](https://github.com/Tatsh/tccx/blob/master/LICENSE.txt) [![自最新发布以来的 GitHub 提交(包含基于 SemVer 的预发布版本)](https://img.shields.io/github/commits-since/Tatsh/tccx/v0.0.3/master)](https://github.com/Tatsh/tccx/compare/v0.0.3...master) [![Dependabot](https://img.shields.io/badge/Dependabot-enabled-blue?logo=dependabot)](https://github.com/dependabot) [![pages-build-deployment](https://static.pigsec.cn/wp-content/uploads/repos/cas/cb/cbfe37aed30c3d39993686ce1959c2a4b9f40ac57057a0431141f1d1a693ea94.svg)](https://tatsh.github.io/tccx/) [![Stargazers](https://img.shields.io/github/stars/Tatsh/tccx?logo=github&style=flat)](https://github.com/Tatsh/tccx/stargazers) [![pre-commit](https://img.shields.io/badge/pre--commit-enabled-brightgreen?logo=pre-commit)](https://github.com/pre-commit/pre-commit) [![Prettier](https://img.shields.io/badge/Prettier-black?logo=prettier)](https://prettier.io/) [![测试](https://github.com/Tatsh/tccx/actions/workflows/tests.yml/badge.svg)](https://github.com/Tatsh/tccx/actions/workflows/tests.yml) [![覆盖率状态](https://coveralls.io/repos/github/Tatsh/tccx/badge.svg?branch=master)](https://coveralls.io/github/Tatsh/tccx?branch=master) [![@Tatsh](https://img.shields.io/badge/dynamic/json?url=https%3A%2F%2Fpublic.api.bsky.app%2Fxrpc%2Fapp.bsky.actor.getProfile%2F%3Factor=did%3Aplc%3Auq42idtvuccnmtl57nsucz72&query=%24.followersCount&label=Follow+%40Tatsh&logo=bluesky&style=social)](https://bsky.app/profile/Tatsh.bsky.social) [![请我喝杯咖啡](https://img.shields.io/badge/Buy%20Me%20a%20Coffee-Tatsh-black?logo=buymeacoffee)](https://buymeacoffee.com/Tatsh) [![Libera.Chat](https://img.shields.io/badge/Libera.Chat-Tatsh-black?logo=liberadotchat)](irc://irc.libera.chat/Tatsh) [![关注 Mastodon](https://img.shields.io/mastodon/follow/109370961877277568?domain=hostux.social&style=social)](https://hostux.social/@Tatsh) [![Patreon](https://img.shields.io/badge/Patreon-Tatsh2-F96854?logo=patreon)](https://www.patreon.com/Tatsh2) 对 macOS **TCC**(透明度、同意与控制)和 **SIP**(系统完整性保护)的逆向工程,基于 `TCC.framework/Support/tccd`(macOS **10.15.6**)附带的 `tccd` 二进制文件和 Ghidra 项目 `tcc` 研究得出——此外还有 [`tcc-preapprove`](https://tccx.readthedocs.io/en/latest/tcc-preapprove.html),一个实现了这些发现的微型 Swift CLI。 该项目旨在回答的问题是:**TCC 隐私权限能否以编程方式预先批准?** 通过阅读二进制文件得出的简短回答是,可以自由地_构造_真正的授权,但只有在禁用 SIP 文件系统保护的情况下,或者通过 Apple 认可的 MDM/PPPC 渠道,才能对其进行_持久化_。 ## 文档 [阅读文档](https://tccx.readthedocs.io/en/latest/) 要在本地构建它:`yarn gen-docs`(输出在 `docs/_build/html` 中)。 ## 工具 `tcc-preapprove` 记录于 [tcc-preapprove 参考](https://tccx.readthedocs.io/en/latest/tcc-preapprove.html)。 ## 构建 所有操作均通过 `package.json` 脚本运行: ``` yarn build # debug build, signed with entitlements yarn build:release # universal (arm64 + x86-64) release build, signed with entitlements yarn test # swift test swift run tcc-preapprove --help ```
标签:CSV导出, MITM代理, Streamlit, TCC, Web报告查看器, 子域名枚举, 权限管理, 模型越狱, 系统安全, 访问控制