Links Digest – August 2025

Aug 31, 2025 #

• Windows 11 24H2: Security issue caused by unattend.xml

Aug 28, 2025 #

• Win/Cmd/Super+P cycles through display modes (Internal only → Mirror → Extend → External only) in major Linux desktop environments and Windows 7+

• Linux Mint Cinnamon prompts with "Run in Terminal | Display | Cancel | Run" when opening txt files; fix by opening Nemo → Edit → Preferences → Behavior → Executable Text Files and setting it to View executable text files when they are opened.

Aug 26, 2025 #

• Fake macOS help sites push Shamos infostealer via ClickFix technique
• SteerMouse: Customize buttons, wheels and cursor speed on USB and Bluetooth mice in macOS

Aug 25, 2025 #

• afconvert: macOS built-in alternative to ffmpeg/XLD for batch audio conversion
• Google will require developer verification to install Android apps, including sideloading
• macOS 26 Tahoe’s Dead Canary Utility App Icons
• A recent survey of U.S. professors found that 75% were looking for work outside the country. The result is an exodus that has not been seen since European scientists sought refuge on U.S. shores during the World War II era.

Aug 22, 2025 #

• Eating Our Way to Extinction, narrated by Kate Winslet

Aug 20, 2025 #

• Whishper: Transcribe any audio to text, translate and edit subtitles 100% locally with a web UI. Powered by whisper models!
• VoiceInk: Voice-to-text app for macOS to transcribe what you say to text almost instantly
• Chrome VPN extension with 100k installs and a verified badge on the Chrome Web Store screenshots and exfiltrates all sites users visit

Aug 19, 2025 #

• Windows 10 Consumer Extended Security Updates (ESU) program

Aug 18, 2025 #

• The LaZagne project "is an open source application used to retrieve lots of passwords stored on a local computer. Each software stores its passwords using different techniques (plaintext, APIs, custom algorithms, databases, etc.). This tool has been developed for the purpose of finding these passwords for the most commonly-used software."
• Addressing Windows 11 24H2 BSODs on select WD & SanDisk SSDs
• Microsoft's latest Windows 11 24H2 update breaks SSDs/HDDs, may corrupt your data
  • UPDATES:
    • Windows 11 Update KB5063878 Causing SSD Failures
    • Until the root cause behind this issue is found and addressed, Windows 11 users with...drives that are over 60% full are advised to avoid downloading, copying, or writing large files (tens of gigabytes).
    • Windows 11 24H2: Silent fix for (Japanese) SSD problems?

Aug 17, 2025 #

• Hyperclay: Single-file HTML apps
• Bypass Win11 24H2 hardware checks via .\setupprep.exe /product server in PowerShell from ISO's sources directory
• Hold CTRL and SHIFT when pressing enter on a run command (or clicking an icon in the Start menu) to run as admin

Aug 16, 2025 #

• Run sudo from a standard macOS account by switching to an admin account via login adminusername

Aug 13, 2025 #

• Hands-On: How Apple’s New Speech APIs Outpace Whisper for Lightning-Fast Transcription
• yap: A CLI for on-device speech transcription using Speech.framework on macOS 26.

Aug 12, 2025 #

• In Monumental Declaration, NIH Follows FDA and Says Agency Will Turn Away from Animal Testing

Aug 11, 2025 #

• GitHub is no longer independent at Microsoft after CEO resignation
• Forgejo is a self-hosted lightweight software forge. Easy to install and low maintenance, it just does the job.
• Codeberg is a non-profit, community-led effort that provides Git hosting and other services for free and open source projects

Aug 10, 2025 #

• Pentest Trick: Out of sight, out of mind with Windows Long File Names

Aug 9, 2025 #

• About This Hack: Hardware info app that retains the beloved design language of the classic 'About This Mac' interface
• Abogen: Generate high-quality audiobooks from EPUBs, PDFs and text with synchronized captions. (H/T)
• This free email scam detector gives you the protection Gmail and Outlook don’t
• Forward any suspicious email to scan@snitcher.space to get a detailed scam analysis in seconds.

Aug 8, 2025 #

• Upscaling images offline:

  • Upscayl is an open-source, cross-platform Electron app that "lets you enlarge and enhance low-resolution images using advanced AI algorithms."

  • Pixelmator Pro's Super Resolution (Image → Super Resolution) "harnesses the power and intelligence of machine learning to upscale photos while preserving and even recreating visually important details. The Super Resolution algorithm is trained to analyze the patterns and textures in a photo instead of interpolating the values of pixels mathematically as done by the regular scaling algorithms."

Aug 7, 2025 #

• Vibe: Cross-platform Tauri app for offline audio/video transcription using OpenAI Whisper
• Halfix: "x86 PC emulator that runs both natively and in the browser, via WebAssembly"
• VirtualXP: "Virtual Machine running on a web browser"

Aug 6, 2025 #

• Congress Just Deleted Habeas Corpus From The Constitution On Its Website

Aug 4, 2025 #

• Unpack Xcode XIP files faster with unxip (CLI) or Unxippity (GUI)
• Barrel: "Time Machine for your development environment"

Aug 3, 2025 #

• Android 16 runs Linux w/ GPU acceleration
• Microsoft Recall can still capture credit cards and passwords; tests have shown there are ways to get around the promised security improvements
• Legacy freeware from Gavin Stark's Epsilon Squared:
  • InstallWatch "records modifications made to your PC during the installation of software, hardware, or configuration changes."
  • InstallRite "(which includes all the features of InstallWatch) provides 'application cloning' as opposed to 'disk cloning', simplifying software distribution."

Aug 2, 2025 #

• 7/24/25: Dutch researchers use heartbeat detection to unmask deepfakes

  "Now, researchers at the Netherlands Forensic Institute (NFI) have developed a method that adds biological authentication to this arsenal, detecting deepfakes by analysing blood flow patterns in human faces – patterns that current deepfake generation tools cannot yet replicate."

• 4/29/25: Deepfakes now come with a realistic heartbeat, making them harder to unmask

  "Current algorithms for the detection of deepfakes increasingly rely on remote pulse reading to distinguish them from genuine videos of people. Here, scientists show for the first time that the most recent deepfakes feature a global pulse rate which appears realistic. This worrying development makes it necessary for deepfake detectors to become more powerful, for example, by focusing on local variations in blood flow within the face."

Aug 1, 2025 #

• Remap macOS keys natively via hidutil:

  • hidutil key remapping generator for MacOS
  • How to remapping keys on macOS without third-party applications.
  • Using hidutil to map macOS keyboard keys
  • Guide on how to remap Keyboard keys on macOS
  • PearHID by Alin Lupascu simplifies remapping (don't miss his other open source apps:
    • Pearcleaner: "Source-available Mac app cleaner inspired by Freemacsoft's AppCleaner and Sun Knudsen's Privacy Guides."
    • Viz: "A utility for capturing text from images, videos, QR/barcodes and colors."
    • Sentinel: "A GUI for controlling Gatekeeper, unquarantining apps and more.")

❧ 2025-09-17

Links Digest – July 2025

Jul 31, 2025 #

• Shareware apps by Robby Pählig:
  • Ammonite: "The tag cloud for macOS."
  • BackupLoupe: "Swiss Army Knife for anything related to Time Machine."
  • GoToFile: "Instantly access any file on your Mac using fuzzy search or regular expressions."
  • LaunchControl: "Create, manage and debug launchd(8) services."

Jul 30, 2025 #

• Drink water upside down to cure hiccups
• Stop macOS Sequoia sharing your Safari and Spotlight searches with Apple
• Brilliant, the transparent canvas for drawing, typing, and annotating over any app, is now free

Jul 29, 2025 #

• IORegistryClone versions 2.1.0 and 3.0.2 hosted by former Open Core Legacy Patcher developer and recent Apple employee, Mykola Grymalyuk
• Large list of Hackintosh and macOS free tools
• VBoxRawdisk is a small utility that makes it a little easier to generate the raw disk (VMDK) file required to load a real disk drive into VirtualBox

Jul 28, 2025 #

• Find all bulk emails in Gmail via "label:^unsub"
• copyparty: turn almost any device into a file server with resumable uploads/downloads using any web browser (H/T: HN)

Jul 27, 2025 #

• 'Quishing' scams dupe millions of Americans as cybercriminals turn the QR code bad
• Crohn's Disease Remission with a Plant-Based Diet: A Case Report
• macOS Tahoe Beta Forces Sharing FileVault Key
• Kagi Assistant: Access to the latest and most performant large language models from OpenAI, Anthropic, Meta, Google, Mistral, Amazon, Alibaba and DeepSeek
• Compromised Amazon Q extension told AI to delete everything – and it shipped

❧ 2025-09-17

Device Support for macOS 26 / Mobile Device Support

Attempting to install macOS 26 Tahoe in UTM on a macOS 15 Sequoia host returned:

Error

A software update is required to complete the installation. Installation requires a software update.

In some cases, the following window would also appear:

A software update is required to install macOS in a virtual machine.

Would you like to download and install this update now?

Use of this software is subject to the original Software License Agreements) that accompanied the software being updated.

Learn More… | Not Now | Install

Clicking "Install" resulted in:

Installation failed

Can't install the software because it is not currently available from the Software Update server.

Preferred updating "Device Support for macOS 26"/"Mobile Device Support" to installing a new version of Xcode, but it was missing from developer.apple.com. Expected that it must be in the Xcode installer:

1. Downloaded Xcode_26_Release_Candidate_Apple_silicon.xip

2. Unpacked with unxip (2-3x faster than Archive Utility)

3. Searched for "Mobile*" under Xcode.app/Contents/ via Find Any File, unearthing MobileDevice.pkg in Xcode.app/Contents/Resources/Packages/

4. After running MobileDevice.pkg (13897894 bytes, SHA256: 305ddeb575c7f85e76f83c1fd5d20d0de34538bb9a61113db041fb4deab12363), Tahoe installation in UTM proceeded normally (searching online for MobileDevice.pkg confirmed it had worked for others as well)

❧ 2025-09-15

Reduce macOS menu bar icon spacing

Minimal spacing

defaults -currentHost write -globalDomain NSStatusItemSpacing -int 0 && defaults -currentHost write -globalDomain NSStatusItemSelectionPadding -int 0 && killall ControlCenter

Restore default spacing

defaults -currentHost delete -globalDomain NSStatusItemSpacing && defaults -currentHost delete -globalDomain NSStatusItemSelectionPadding && killall ControlCenter

Sources

Reduce menu bar icon spacing to fit more icons

Hidden preference to alter the menubar spacing

Third-party apps

• Ice: "Powerful menu bar manager for macOS"

• TighterMenubar: Allows "customizing menu bar item spacing and padding to create a more compact menu bar layout"

• Menu Bar Spacing: "Customize the gap between menu bar items"

❧ 2025-09-08

Clean & eject external drives in macOS

There have been a host of macOS utilities over the years that remove macOS hidden system and metadata files from external drives in order to prevent compatibility issues on devices like MP3 players, car stereos, etc.:

• CleanEject: "Remove unwanted hidden files on USB-sticks, cameras, GPSses and other devices"

• Eject-for-Windows (GH): "Remove hidden files from removable storages"

• CleanAndEject: "Will clean most of the OSX created dot files that pollute every removable drive you plug into your Mac"

• CleanMyDrive: "Automatically clean hidden junk from external drives" (now bundled into CleanMyMac)

• Hidden Cleaner: Removes macOS 'ghost' files from devices like MP3 players and USB drives before ejecting them, preventing playback errors and compatibility issues

• HiM (Hidden Cleaner iMproved): "Cleans and ejects USB devices like MP3 players, USB sticks... (and also local folders)"

• USBclean: "Quickly and easily remove pesky junk and ghost files from your external USB drives"

• BlueHarvest: "Removes .DS_Store and ._ AppleDouble files from your USB keys, SD cards, music players, file servers or any non Mac disk"

• Hidden File Cleaner: "Ensures annoying hidden files don't clutter your drives"

Bash

The developer of CleanEject kindly posted a Bash script that does the job admirably (tested in macOS Sequoia):

#!/bin/bash
if [ -d "$1/.Spotlight-V100" ]; then
   dot_clean -m "$1"
   find "$1" -name .DS_Store -o -name .apdisk -delete
   rm -rf "$1/.Trashes"
   rm -rf "$1/.Spotlight-V100"
   rm -rf "$1/.fseventsd"
   rm -rf "$1/.TemporaryItems"
   hdiutil unmount "$1"
fi

Here's a slightly modified version that does not require .Spotlight-V100 to be present, fixes .DS_Store deletion, and uses a safer eject method:

#!/bin/bash
if [ -d "$1" ]; then
  dot_clean -m "$1"
  find "$1" \( -name .DS_Store -o -name .apdisk \) -type f -delete
  rm -rf "$1"/{.Trashes,.Spotlight-V100,.fseventsd,.TemporaryItems}
  diskutil eject "$1"
fi

AppleScript

The modified version wrapped in AppleScript for a simple GUI volume chooser (assuming the user can be trusted not to select Macintosh HD, Time Machine volumes, etc.):

set selectedVolume to choose folder with prompt "Select drive to clean and eject:" default location (POSIX file "/Volumes")
set volumePath to POSIX path of selectedVolume
do shell script "
if [ -d '" & volumePath & "' ]; then
  dot_clean -m '" & volumePath & "'
  find '" & volumePath & "' \\( -name .DS_Store -o -name .apdisk \\) -type f -delete
  rm -rf '" & volumePath & "'/{.Trashes,.Spotlight-V100,.fseventsd,.TemporaryItems}
  diskutil eject '" & volumePath & "'
fi"

To reduce the risk of mishap, this final attempt ("One more coruscation, my dear Watson—yet another brain-wave!") processes only FAT and exFAT-formatted volumes:

set selectedVolume to choose folder with prompt "Select drive to clean and eject:" default location (POSIX file "/Volumes")
set volumePath to POSIX path of selectedVolume

-- Only allow FAT family and exFAT
set fsType to do shell script "diskutil info -plist " & quoted form of volumePath & " | plutil -extract FilesystemType raw -"

if fsType is not in {"msdos", "exfat", "fat16", "fat32"} then
    display alert "Unsupported Volume" message "Only FAT16, FAT32 and exFAT volumes are supported for safety" buttons {"OK"} default button "OK"
    return
end if

-- Clean the volume
do shell script "
dot_clean -m " & quoted form of volumePath & " 2>/dev/null || true
find " & quoted form of volumePath & " \\( -name .DS_Store -o -name .apdisk \\) -type f -delete 2>/dev/null || true
rm -rf " & quoted form of volumePath & "/.Trashes " & quoted form of volumePath & "/.Spotlight-V100 " & quoted form of volumePath & "/.fseventsd " & quoted form of volumePath & "/.TemporaryItems 2>/dev/null || true
"

-- Eject
try
    do shell script "diskutil eject " & quoted form of volumePath
on error
    display alert "Eject Failed" message "Cleaning completed but eject failed" buttons {"OK"} default button "OK"
end try

• Save either AppleScript script in Script Editor via File → Export... → File Format: Application → Code sign: Sign to Run Locally, then grant Accessibility and Full Disk Access permissions in System Settings/Privacy & Security.

• Using File → Save... → File Format: Application instead or not granting the necessary permissions will prevent the app from removing .Trashes and .Spotlight-V100.

• Script Editor sometimes failed to generate Contents/_CodeSignature/CodeResources inside the exported app, preventing proper handling of .Trashes and .Spotlight-V100. Toggling Code Sign: to Don't Code Sign then back to Sign to Run Locally before saving resolved the issue.

• TCC permissions occasionally failed despite valid entitlements and pre-approved access, blocking deletion of .Trashes and .Spotlight-V100; renaming the exported app and re-granting permissions resolved the issue.

Related

• Are there plans to ever improve the error-prone, moody TCC?

• TCC issues after a data transfer

• Introduction to macOS - TCC

• Why are my Applescript scripts executing in ScriptEditor but not as an application?

• AppleScript difference between scpt and app

• How can I get my script exported as an app to stop asking for permissions

• SD Notary 2 Release Notes

❧ 2025-09-01

Dark mode for macOS Script Editor

is still virtually absent as of Sequoia (UPDATE: fixed in Tahoe!):

Happily, Late Night Software has released its legendary Script Debugger free of charge with full dark mode support (Settings → Themes → Active Theme → Default Dark) and a deep feature set:

Sadly, after 30 years, development has ended. Big thanks to Mark and Shane for crafting and sharing such an exceptional tool.

❧ 2025-08-23

Export Safari tabs to PDF, URL list, or Markdown links via AppleScript

Safari tabs to PDF

Safari tabs to URL list

Safari tabs to Markdown links

❧ 2025-08-18

Access classic Windows options that Microsoft buried

This collection catalogs useful legacy components in Windows 11 Pro 24H2 that are hidden (e.g., the classic background chooser), moved (e.g., Folder Options in File Explorer), or hijacked (e.g., Control Panel entries like "Devices and Printers" that redirect to Settings).

Quickly launchable items (e.g., Device Manager via Start search) are excluded. Components on the Start menu are also omitted, though many behave inconsistently depending on launch method (e.g., Administrative Tools ignores dark mode when opened from its Start shortcut (corresponding to control /name Microsoft.AdministrativeTools) but partially honors it when opened via shell:::{D20EA4E1-3957-11d2-A40B-0C5020524153}), illustrating Windows 11's fragmented UI.

The list spans Control Panel applets, MMC snap-ins, executables, shell commands, and control commands:

Desktop background chooser

• shell:::{ED834ED6-4B5A-4bfe-8F11-A626DCB6A921} -Microsoft.Personalization\pageWallpaper

Devices and Printers

• control /name Microsoft.Printers
• shell:::{A8A91A66-3A7D-4424-8D24-04E180695C7A}

File Explorer Options

• control folders
• shell:::{6DFD7C5C-2451-11D3-A299-00C04F8EF6AF}

Local Users and Groups

• lusrmgr.msc

Network Connections

• ncpa.cpl
• control netconnections
• shell:ConnectionsFolder
• shell:::{7007ACC7-3202-11D1-AAD2-00805FC1270E}

Notification area icons

• shell:::{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}

Print Management

• printmanagement.msc

System Properties

• sysdm.cpl
  • SystemPropertiesComputerName.exe
  • SystemPropertiesHardware.exe
  • SystemPropertiesAdvanced.exe
  • SystemPropertiesProtection.exe
  • SystemPropertiesRemote.exe

Theme selector

• shell:::{ED834ED6-4B5A-4bfe-8F11-A626DCB6A921}

User Accounts

• netplwiz
• control userpasswords2
• shell:::{7A9D77BD-5403-11d2-8785-2E0420524153}

Note

• In a few cases, prepending explorer to shell: commands or appending .exe to control in the Run menu was required.

Sources / Related

• Default MMC snap-ins (MSC files) in Windows 10

• Bypass Windows 11 GUI bloat via CPL commands

• Windows 11 desktop background slideshow interval

• Launching Windows Special Folders

• How to run Control Panel tools by typing a command

• Complete List Of Windows 11 Shell Folders By CLSID GUIDs

• CLSID (GUID) shell location list in Windows 10

❧ 2025-08-18

Windows 11 black screen after upgrade to 24H2 in UTM

Missed the warnings on MAS:

v4.6.5 reverted a change from v4.6.4 due to reports of crashes and kernel panics on some machines. As a result, there will be issues when upgrading to Windows 11 24H2 where the screen will go black. An alternative fix is provided as a driver update. Please update the Windows driver from the CD icon -> Install Windows Guest Tools before updating Windows.

and GitHub:

v4.6.5 reverted a change from v4.6.4 due to reports of crashes and kernel panics on some machines. As a result, there will be issues when upgrading to Windows 11 24H2 where the screen will go black. An alternative fix with an updated driver will be provided as soon as possible, but for now if you plan to upgrade to Windows 11 24H2, it is recommended you do it from v4.6.4 before updating UTM.

Startup sound confirmed the VM was running. Used Alt+F4 then Enter to shut down gracefully (auto-login had been enabled previously).

In Display → Emulated Display Card, switched from virtio-ramfb to virtio-gpu-gl-pci (GPU Supported) as documented by chadlwilson (aidangoettsch adds that installer and SPICE ISOs must be ejected also).

Display returned, but keyboard and mouse required manually capturing input via the top-right Capture input devices icon (Cmd+Opt to release).

Downloaded and installed the latest Windows Guest Tools https://getutm.app/downloads/utm-guest-tools-latest.iso, which hung near completion; after a forced VM restart, input and display worked normally.

❧ 2025-08-18

Windows 11 desktop background slideshow interval

Windows 11’s default background slideshow (Settings → Personalization → Background → Slideshow) exposes only six rotation frequencies:

• 1 minute
• 10 minutes
• 30 minutes
• 1 hour
• 6 hours
• 1 day

while the legacy background chooser, still accessible via shell:::{ED834ED6-4B5A-4bfe-8F11-A626DCB6A921} -Microsoft.Personalization\pageWallpaper, offers 16:

• 10 seconds
• 30 seconds
• 1 minute
• 3 minutes
• 5 minutes
• 10 minutes
• 15 minutes
• 20 minutes
• 30 minutes
• 1 hour
• 2 hours
• 3 hours
• 4 hours
• 6 hours
• 12 hours
• 1 day

Even finer control may be possible in HKEY_CURRENT_USER\Control Panel\Personalization\Desktop Slideshow, though intervals <20s are reportedly unreliable.

❧ 2025-08-16