Explore >> Select a destination
|
You are here 
|
balintmagyar.com | ||
| | | | |
bradleyjkemp.dev
|
|
| | | | | LaunchDaemon (or LaunchAgent) Hijacking is a MacOS privilege escalation and persistence technique. It involves abusing insecure file/folder permissions to replace legitimately installed, misconfigured LaunchDaemons with malicious code. I first spotted this issue affecting the OSQuery installer but went looking and found multiple other products with the same problem. This isn't a novel technique (it's briefly mentioned in T1543.004) but I was surprised to find it so rarely talked about. Example - Hijacking the OSQuery LaunchDaemon ?? I've already disclosed this issue to the OSQuery team and they kindly let me use it as an example in this post. | |
| | | | |
janik6n.net
|
|
| | | | | Run a scheduled task on macOS with launchd | |
| | | | |
www.naseer.dev
|
|
| | | | | A Hyper Key is an extra modifier key that can be used to add extra keyboard shortcuts in tools such as hammerspoon. The most common method on a Mac was to use your Caps Lock key as your Hyper key using a tool called Karabiner Elements. The issue with Karabiner though is that it is a kernel extension and keeps running into problems with newer OS X releases. If your only use case for Karabiner is to remap the Caps Lock key - you may be able to use the OS X native hidutil utility to achieve the same result. | |
| | | | |
hiltmon.com
|
|
| | | [AI summary] The post discusses increasing the file descriptor ulimit on macOS to prevent resource starvation in development environments, providing a script to adjust system limits permanently. | ||
