Outer Web | Explore

Explore >> Select a destination

You are here		objective-see.org Objective-See's Blog
\|	\|	intezer.com New SysJoker BackdoorTargets Windows, Linux, and macOS - Intezer	7.5 parsecs away Travel
\|	\|	In December 2021, we discovered a new multi-platformbackdoor that targets Windows, Mac, and Linux that we have named SysJoker.	7.5 parsecs away Travel
\|	\|	blog.quarkslab.com Exploiting Microsoft Teams on macOS during a Purple Team engagement - Quarkslab's blog	7.5 parsecs away Travel
\|	\|	The following article explains how during a Purple Team engagement we were able to identify a vulnerability in Microsoft Teams on macOS allowing us to access a user's camera and microphone.	7.5 parsecs away Travel
\|	\|	bradleyjkemp.dev LaunchDaemon Hijacking: privilege escalation and persistence via insecure folder permissions \| bradleyjkemp	7.4 parsecs away Travel
\|	\|	LaunchDaemon (or LaunchAgent) Hijacking is a MacOS privilege escalation and persistence technique. It involves abusing insecure file/folder permissions to replace legitimately installed, misconfigured LaunchDaemons with malicious code. I first spotted this issue affecting the OSQuery installer but went looking and found multiple other products with the same problem. This isn't a novel technique (it's briefly mentioned in T1543.004) but I was surprised to find it so rarely talked about. Example - Hijacking the OSQuery LaunchDaemon ?? I've already disclosed this issue to the OSQuery team and they kindly let me use it as an example in this post.	7.4 parsecs away Travel
\|	\|	haim.dev Signing and notarizing a Python MacOS UI application	65.2 parsecs away Travel
\|		A guide to making a MacOS application written in Python notarized for Catalina.	65.2 parsecs away Travel