Summary
This is a comprehensive macOS offensive security reference covering TCC bypass, Gatekeeper evasion, SIP exploitation, and sandbox escape techniques for authorized red team engagements. It's structured as a decision tree with version-specific bypass matrices, actual CVE references (Shrootless, MacDirtyCow, Migraine), and concrete attack patterns like FDA inheritance through Terminal.app or Apple Events automation abuse. The skill routes you to related toolkits for process injection and privilege escalation when needed. Worth loading if you're hitting macOS endpoints and need to navigate the interaction effects between multiple protection layers, which base models consistently miss. Assumes you already have initial access and legitimate authorization.
Install to Claude Code
npx -y skills add yaklang/hack-skills --skill macos-security-bypass --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
