Explore >> Select a destination
|
You are here 
|
knight.sc | ||
| | | | |
blog.xpnsec.com
|
|
| | | | | While looking for avenues of injecting code into platform binaries back in macOS Monterey, I was able to identify a vulnerability which allowed the hijacking of Apple application entitlements. Recently I decided to revisit this vulnerability after a long time of trying to have it patched, and was surprised to see that it still works. There are some caveats introduced with later versions of macOS which we will explore, but in this post we'll look at a vulnerability in macOS Sonoma which has been around fo... | |
| | | | |
truesecdev.wordpress.com
|
|
| | | | | Background and acknowledgement This full disclosure is based on my discovery of a privilege escalation vulnerability in Apple OS X called rootpipe. Read my full disclosure on rootpipe here for some background info. Big thanks to Patrick Wardle who inspired me to start new investigations, by saying that he found a way to re-abuse rootpipe... | |
| | | | |
objective-see.org
|
|
| | | | | ||
| | | | |
cyble.com
|
|
| | | CRIL analyzes AMOS, a stealthy new information stealer targeting macOS and disseminating stolen information via Telegram. | ||
