Канал: Objective-See Foundation

#OFTW v2.0, Kyiv: Welcome speech

#OFTW v2.0, Kyiv: Welcome speech

#OFTW v2.0, Kyiv: Closing speech

#OFTW v2.0, Kyiv: Closing speech

#OFTW v2.0, Kyiv: "Cmd+Option+Sec: Navigating App Security" - Anastasiia Voitova

#OFTW v2.0, Kyiv: "Cmd+Option+Sec: Navigating App Security" - Anastasiia Voitova

#OFTW v2.0 Kyiv: "Reverse Engineering of Application and What Can We Get From It" - Roman Mishchenko

#OFTW v2.0 Kyiv: "Reverse Engineering of Application and What Can We Get From It" - Roman Mishchenko

#OFTW v2.0, Kyiv: "The Hidden Treasures of Crash Reports" - Patrick Wardle

#OFTW v2.0, Kyiv: "The Hidden Treasures of Crash Reports" - Patrick Wardle

#OFTW v2.0, Kyiv: "Detection of Hidden Sanctioned Mobile Applications" - Dmytro Kovalenko

#OFTW v2.0, Kyiv: "Detection of Hidden Sanctioned Mobile Applications" - Dmytro Kovalenko

#OFTW v2.0, Kyiv: "Navigating the Rising Tide of macOS Stealer Malware in 2024" - Kseniia Yamburh

#OFTW v2.0, Kyiv: "Navigating the Rising Tide of macOS Stealer Malware in 2024" - Kseniia Yamburh

#OFTW v2.0, Kyiv: Panel "Unlocking Security Careers: Skills, Mindset, and Learning from Mistakes"

#OFTW v2.0, Kyiv: Panel "Unlocking Security Careers: Skills, Mindset, and Learning from Mistakes"

#OFTW v2.0, Kyiv: Panel "Cyber Guardians: The Critical Need for Security Experts in Times of War"

#OFTW v2.0, Kyiv: Panel "Cyber Guardians: The Critical Need for Security Experts in Times of War"

#OFTW v1.0: "The Art of Cryptojacking" - Jaron Bradley

#OFTW v1.0: "The Art of Cryptojacking" - Jaron Bradley

#OFTW v1.0: "About Diversity" panel - Megan Valentine, Kt Sagona, Laura Peaslee, & Patrick Wardle

#OFTW v1.0: "About Diversity" panel - Megan Valentine, Kt Sagona, Laura Peaslee, & Patrick Wardle

#OFTW v1.0: Introduction

#OFTW v1.0: Introduction

#OFTW v1.0: "Ask a Hacker" panel - Devin Byrd, Jaron Bradley, Eva Galperin & Patrick Wardle

#OFTW v1.0: "Ask a Hacker" panel - Devin Byrd, Jaron Bradley, Eva Galperin & Patrick Wardle

#OFTW v1.0: "Your Mac's Immune System: Resilience through Endpoint Security" - Brandon Dalton

#OFTW v1.0: "Your Mac's Immune System: Resilience through Endpoint Security" - Brandon Dalton

#OFTW v1.0: "Leveraging macOS's Networking Frameworks to Heuristically Detect Malware" - Patrick W.

#OFTW v1.0: "Leveraging macOS's Networking Frameworks to Heuristically Detect Malware" - Patrick W.

#OFTW v1.0: "Hey Siri, Find My Ex" - Eva Galperin

#OFTW v1.0: "Hey Siri, Find My Ex" - Eva Galperin

#OFTW v1.0: "Navigating the Dynamic Landscape of Mac Malware" - Ferdous Saljooki

#OFTW v1.0: "Navigating the Dynamic Landscape of Mac Malware" - Ferdous Saljooki

#OBTS v6.0: Closure and 2024 announcements. Marbella, Spain. October 12th and 13th, 2023

#OBTS v6.0: Closure and 2024 announcements. Marbella, Spain. October 12th and 13th, 2023

#OBTS v6.0: Opening. Marbella, Spain. October 12th and 13th, 2023

#OBTS v6.0: Opening. Marbella, Spain. October 12th and 13th, 2023

#OBTS v6.0: "Launch and Environment Constraints Overview" - Fitzl Csaba

#OBTS v6.0: "Launch and Environment Constraints Overview" - Fitzl Csaba

#OBTS v6.0: "Unexpected, Unreasonable, Unfixable: Filesystem Attacks on macOS" - Gergely Kalman

#OBTS v6.0: "Unexpected, Unreasonable, Unfixable: Filesystem Attacks on macOS" - Gergely Kalman

#OBTS v6.0: "Stewie Talking to Apple's Satellite Network" - Jiska Classen & Alexander Heinrich

#OBTS v6.0: "Stewie Talking to Apple's Satellite Network" - Jiska Classen & Alexander Heinrich

#OBTS v6.0: "The Clock is TCCing" - Calum Hall & Luke Roberts

#OBTS v6.0: "The Clock is TCCing" - Calum Hall & Luke Roberts

#OBTS v6.0: "Escaping the Safari Sandbox in iOS 16" - Ian Beer

#OBTS v6.0: "Escaping the Safari Sandbox in iOS 16" - Ian Beer

#OBTS v6.0: "Elevating Privileges on macOS by Audit Token Spoofing" - Thijs Alkemade

#OBTS v6.0: "Elevating Privileges on macOS by Audit Token Spoofing" - Thijs Alkemade

#OBTS v6.0: "Modern macOS Threat Hunting" - Karl Hiramoto

#OBTS v6.0: "Modern macOS Threat Hunting" - Karl Hiramoto

#OBTS v6.0: A Journey into Reversing RustBucket on macOS - Jaron Bradley & Ferdous Saljooki

#OBTS v6.0: A Journey into Reversing RustBucket on macOS - Jaron Bradley & Ferdous Saljooki

#OBTS v6.0: "Safari, Hold Still for NaN Minutes!" - Javier Jimenez & Vignesh Rao

#OBTS v6.0: "Safari, Hold Still for NaN Minutes!" - Javier Jimenez & Vignesh Rao

#OBTS v6.0: "Snapshot Fuzzing macOS Kernel Via Emulation" - Aleksander Nikolic

#OBTS v6.0: "Snapshot Fuzzing macOS Kernel Via Emulation" - Aleksander Nikolic

#OBTS v6.0: "Santa's Got a Brand New Bag" - Matt White & Pete Markowsky

#OBTS v6:0 "ELECTRONizing macOS Privacy - a New Weapon in Your Red Teaming Armory" - Wojciech Reguła

#OBTS v6:0 "ELECTRONizing macOS Privacy - a New Weapon in Your Red Teaming Armory" - Wojciech Reguła

#OBTS v6.0: Poisoned - How Do We Find Them? - Matthias Frielingsdorf

#OBTS v6.0: Poisoned - How Do We Find Them? - Matthias Frielingsdorf

#OBTS v6.0: "Dissecting the Protocols Inside Apple AirTags" - Christine Fossaceca

#OBTS v6.0: "Dissecting the Protocols Inside Apple AirTags" - Christine Fossaceca

#OBTS v6.0: "Two More Ways the Quarantine Attribute Can Fail Us" - Arthur Valiev & Rasmus Sten

#OBTS v6.0: "Two More Ways the Quarantine Attribute Can Fail Us" - Arthur Valiev & Rasmus Sten

Herhax podcast live from #OBTS v6.0, Marbella, Spain.

Herhax podcast live from #OBTS v6.0, Marbella, Spain.

#OBTS v6.0: "Demystifying macOS's Background Task Management" - Patrick Wardle & Chris Lopez

#OBTS v6.0: "Demystifying macOS's Background Task Management" - Patrick Wardle & Chris Lopez

#OBTS v6.0: "Dropping Lotus Bombs: ATT&CK in macOS Purple Team Operations" - Cat Self & Megan Carney

#OBTS v6.0: "Dropping Lotus Bombs: ATT&CK in macOS Purple Team Operations" - Cat Self & Megan Carney

#OBTS v6.0 "Bypassing the Signature Verification and Pwning the Kernel" - Mickey Jin

#OBTS v6.0 "Bypassing the Signature Verification and Pwning the Kernel" - Mickey Jin

#OBTS v6.0: "An Examination of Interactive Intrusions by a North Korean APT" Greg Longo & Ben Wiley

#OBTS v6.0: "An Examination of Interactive Intrusions by a North Korean APT" Greg Longo & Ben Wiley

#OBTS v6.0: "From Crash …to trash? cash? or (bin)bash?" - Patrick Wardle

#OBTS v6.0: "From Crash …to trash? cash? or (bin)bash?" - Patrick Wardle

#OBTS v6.0: "iObfuscate Unraveling iOS Obfuscation Techniques" - Laurie Kirk

#OBTS v6.0: "iObfuscate Unraveling iOS Obfuscation Techniques" - Laurie Kirk

What is "Objective by the Sea" #OBTS?

What is "Objective by the Sea" #OBTS?

#OBTS v5.0: "ATT&CKing Pandas: Drawing out ATT&CK Techniques in the Wild" - Cat Self

#OBTS v5.0: "ATT&CKing Pandas: Drawing out ATT&CK Techniques in the Wild" - Cat Self

OBTS: Process injection: breaking all macOS Sec Layers with a Single Vulnerability/ Daan K & Thijs A

OBTS: Process injection: breaking all macOS Sec Layers with a Single Vulnerability/ Daan K & Thijs A

#OBTS v5.0: "Learning how to Machine Learn - Classifying MachO Malware" - Kimo Bumanglag

#OBTS v5.0: "Learning how to Machine Learn - Classifying MachO Malware" - Kimo Bumanglag

#OBTS v5.0: "Abusing iPhone Co-Processors for Privilege Escalation" - Ian Beer

#OBTS v5.0: "Abusing iPhone Co-Processors for Privilege Escalation" - Ian Beer

#OBTS v5.0: "Bombastically Abominating Bomshellz" - Jaron Bradley & Ferdous Saljooki

#OBTS v5.0: "Bombastically Abominating Bomshellz" - Jaron Bradley & Ferdous Saljooki

#OBTS v5.0: "Farming The Apple Orchards: Living off the Land Techniques" - Chris Ross & Cedric Owens

#OBTS v5.0: "Farming The Apple Orchards: Living off the Land Techniques" - Chris Ross & Cedric Owens

#OBTS v5.0: "Handoff All Your Privacy (Again)" - Christine Fossaceca

#OBTS v5.0: "Handoff All Your Privacy (Again)" - Christine Fossaceca

#OBTS v5.0: "Evolution of the Mac Threat Landscape" - Thomas Reed

#OBTS v5.0: "Evolution of the Mac Threat Landscape" - Thomas Reed

#OBTS v5.0: "What Happens on your Mac, Stays on Apple's iCloud?!" - Wojciech Regula

#OBTS v5.0: "What Happens on your Mac, Stays on Apple's iCloud?!" - Wojciech Regula

#OBTS v5.0: "Fugu15 - The Journey to Jailbreaking iOS 15.4.1" - Linus Henze

#OBTS v5.0: "Fugu15 - The Journey to Jailbreaking iOS 15.4.1" - Linus Henze

#OBTS v5.0 Improving macOS Security by Reducing Authentication Prompts - M. Morowczynski & M. Epping

#OBTS v5.0 Improving macOS Security by Reducing Authentication Prompts - M. Morowczynski & M. Epping

#OBTS v5.0: "In the Aftermath" - Stuart Ashenbrenner & Matt Benyo

#OBTS v5.0: "In the Aftermath" - Stuart Ashenbrenner & Matt Benyo

#OBTS v5.0: "Sandboxing with ESF Playground on macOS" - Matt Carman

#OBTS v5.0: "Sandboxing with ESF Playground on macOS" - Matt Carman

#OBTS: Do as I say, Not as I did: Pivoting into Mac Malware Analysis for the 1st Time/ K. Del Rosso

#OBTS: Do as I say, Not as I did: Pivoting into Mac Malware Analysis for the 1st Time/ K. Del Rosso

#OBTS v5.0: "Lock Picking the macOS Keychain" - Cody Thomas

#OBTS v5.0: "Lock Picking the macOS Keychain" - Cody Thomas

#OBTS v5.0: "The Achilles Heel of EndpointSecurity" - Fitzl Csaba

#OBTS v5.0: "The Achilles Heel of EndpointSecurity" - Fitzl Csaba

#OBTS v5.0: "Tales from Developing and Deploying EndpointSecurity in Osquery" - Sharvil Shah

#OBTS v5.0: "Tales from Developing and Deploying EndpointSecurity in Osquery" - Sharvil Shah

#OBTS v5.0: "Fugu15 - The Journey to Jailbreaking iOS 15.4.1" - Linus Henze

#OBTS v5.0: "Fugu15 - The Journey to Jailbreaking iOS 15.4.1" - Linus Henze

#OBTS v5.0: "In Walled Gardens be Careful of Poisoned Apples" - Matthias Frielingsdorf

#OBTS v5.0: "In Walled Gardens be Careful of Poisoned Apples" - Matthias Frielingsdorf

#OBTS v5.0: "Making oRAT, Go" - Patrick Wardle

#OBTS v5.0: "Making oRAT, Go" - Patrick Wardle

Patreon and Objective-See: Interview with Patrick Wardle

Patreon and Objective-See: Interview with Patrick Wardle

OBTS v4.0: "Apple's Envy: Root once, bypass TCC" - Andy Grant

OBTS v4.0: "Apple's Envy: Root once, bypass TCC" - Andy Grant

OBTS v4.0: "Anti Analysis Logic of Arm Malware on macOS" - Patrick Wardle

OBTS v4.0: "Anti Analysis Logic of Arm Malware on macOS" - Patrick Wardle

OBTS v4.0: "The Wild World of macOS Installers" - Tony Lambert

OBTS v4.0: "The Wild World of macOS Installers" - Tony Lambert

OBTS v4.0: "FIDO on MacOS: How it works, Attack Vectors and Other Learnings" - Joel Rennich

OBTS v4.0: "FIDO on MacOS: How it works, Attack Vectors and Other Learnings" - Joel Rennich

OBTS v4.0: "Becoming a Yogi on Mac ATT&CK with OceanLotus Postures" - Cat Self & Adam Pennington

OBTS v4.0: "Becoming a Yogi on Mac ATT&CK with OceanLotus Postures" - Cat Self & Adam Pennington

OBTS v4.0: "Pocket Litter - A Peek Inside Your Apple Wallet" - Sarah Edwards

OBTS v4.0: "Pocket Litter - A Peek Inside Your Apple Wallet" - Sarah Edwards

OBTS v4.0: "All Your Macs Are Belong To Us" - Cedric Owens, Jaron Bradley & Parick Wardle

OBTS v4.0: "All Your Macs Are Belong To Us" - Cedric Owens, Jaron Bradley & Parick Wardle

OBTS v4.0: "Kernel Exploitation on Apple's M1 chip" - 08tc3wbb

OBTS v4.0: "Kernel Exploitation on Apple's M1 chip" - 08tc3wbb

OBTS v4.0: "Mount(ain) of Bugs" - Csaba Fitzl

OBTS v4.0: "Mount(ain) of Bugs" - Csaba Fitzl

OBTS v4.0: "iOS Reverse Engineering With Frida" - Christine Fossaceca

OBTS v4.0: "iOS Reverse Engineering With Frida" - Christine Fossaceca

OBTS v4.0: "n-1 and n-2: Should we really trust in you?" - Josh Long

OBTS v4.0: "n-1 and n-2: Should we really trust in you?" - Josh Long

OBTS v4.0: "Environmental Disaster: A LaunchServices Tale" - Ron Waisberg

OBTS v4.0: "Environmental Disaster: A LaunchServices Tale" - Ron Waisberg

OBTS v4.0: "Mac Detections by The Numbers" - Thomas Reed

OBTS v4.0: "Mac Detections by The Numbers" - Thomas Reed

OBTS v4.0: Made In America: Analyzing US Spy Agencies macOS Implants - Runa Sandvik & Patrick Wardle

OBTS v4.0: Made In America: Analyzing US Spy Agencies macOS Implants - Runa Sandvik & Patrick Wardle

OBTS v4.0: "Plug-n-Play: Using Native Code with Installer Plugins for Initial Access" - Chris ross

OBTS v4.0: "Plug-n-Play: Using Native Code with Installer Plugins for Initial Access" - Chris ross

OBTS v4.0: "Siri, Find My Ex" - Eva Galperin

OBTS v4.0: "Siri, Find My Ex" - Eva Galperin

OBTS v3.0: "Documents of Doom" - Patrick Wardle

OBTS v3.0: "Documents of Doom" - Patrick Wardle

OBTS v3.0: "An Attackers Perspective on Jamf Configurations" - Luke Roberts / Calum Hall

OBTS v3.0: "An Attackers Perspective on Jamf Configurations" - Luke Roberts / Calum Hall

OBTS v3.0: "Binary Emulation Environment for Mach-O Malware" - Erika Noerenberg

OBTS v3.0: "Binary Emulation Environment for Mach-O Malware" - Erika Noerenberg

OBTS v2.0: "Grafting Apple Trees" - Jaron Bradley

OBTS v2.0: "Grafting Apple Trees" - Jaron Bradley

OBTS v3.0: "tvOS-Checkra1n" - Kevin Bradley

OBTS v3.0: "tvOS-Checkra1n" - Kevin Bradley

OBTS v3.0: "Job(s) Bless Us! Privileged Operations on macOS" - Julia Vashchenko

OBTS v3.0: "Job(s) Bless Us! Privileged Operations on macOS" - Julia Vashchenko

OBTS v3.0: "KTRW: The journey to build a debuggable iPhone" - Brandon Azar

OBTS v3.0: "KTRW: The journey to build a debuggable iPhone" - Brandon Azar

OBTS v3.0: "Finding Waldo: Leveraging the Apple Unified Log for Incident Response" - Musunuri/Martin

OBTS v3.0: "Finding Waldo: Leveraging the Apple Unified Log for Incident Response" - Musunuri/Martin

Patrick Wardle on Yahoo Finance: Government and private sector working together on cybersecurity

Patrick Wardle on Yahoo Finance: Government and private sector working together on cybersecurity

OBTS v3.0: "The Case of The Fly on the Wall" - Thomas reed

OBTS v3.0: "The Case of The Fly on the Wall" - Thomas reed

OBTS v3.0: "Mimic in Configuration" - Manabu Niseki / Suguru Ishimaru

OBTS v3.0: "Mimic in Configuration" - Manabu Niseki / Suguru Ishimaru

OBTS v3.0: "File Quarantine Handling in macOS Apps" - Vladmir Metnew

OBTS v3.0: "File Quarantine Handling in macOS Apps" - Vladmir Metnew

OBTS v3.0: "Abusing & Security XPC in macOS apps" - Wojciech Regula

OBTS v3.0: "Abusing & Security XPC in macOS apps" - Wojciech Regula

OBTS v3.0: "Walking the bifrost" - Cody Thomas

OBTS v3.0: "Walking the bifrost" - Cody Thomas

OBTS v3.0: "Exploring MacOS with APOLLO" - Sarah Edwards

OBTS v3.0: "Exploring MacOS with APOLLO" - Sarah Edwards

OBTS v3.0: "iMessage Exploitation" - Samuel Grob

OBTS v3.0: "iMessage Exploitation" - Samuel Grob

OBTS v3.0: "Endpoint Security & Insecurity" - Scott Knight

OBTS v3.0: "Endpoint Security & Insecurity" - Scott Knight

OBTS v3.0 Conference Opening

OBTS v3.0 Conference Opening

OBTS v2.0: "Herding Cattle in the Desert" - Omer Zohar/Roee Avni

OBTS v2.0: "Herding Cattle in the Desert" - Omer Zohar/Roee Avni

OBTS v2.0: "Bad Things in Small Packages" - Jaron Bradley

OBTS v2.0: "Bad Things in Small Packages" - Jaron Bradley

OBTS v2.0: "Detecting macOS Compromise with Venator" - Richie Cyrus

OBTS v2.0: "Detecting macOS Compromise with Venator" - Richie Cyrus

OBTS v2.0: "Watching the Watchers" - Sarah Edwards

OBTS v2.0: "Watching the Watchers" - Sarah Edwards

OBTS v2.0: "Gaining Root with Harmless AppStore Apps" - Csaba Fitzl

OBTS v2.0: "Gaining Root with Harmless AppStore Apps" - Csaba Fitzl

OBTS v2.0 "KeySteal: A Vulnerability in Apple's Keychain" - Linus Henze

OBTS v2.0 "KeySteal: A Vulnerability in Apple's Keychain" - Linus Henze

OBTS v2.0: "0dayz of our Life" - Josh Hill

OBTS v2.0: "0dayz of our Life" - Josh Hill

OBTS v2.0: "Root Canal" - Sam Keeley

OBTS v2.0: "Root Canal" - Sam Keeley

OBTS v2.0: "Fun with Mac Malware Attribution" (Josh Long)

OBTS v2.0: "Fun with Mac Malware Attribution" (Josh Long)

OBTS v2.0: "Peeling back the 'Shlayers' of macOS Malware" (Erika Noerenberg & Josh Watson)

OBTS v2.0: "Peeling back the 'Shlayers' of macOS Malware" (Erika Noerenberg & Josh Watson)

OBTS v2.0: "Malware Behavior on macOS" - Thomas Reed

OBTS v2.0: "Malware Behavior on macOS" - Thomas Reed

OBTS v2.0: "Hypervisor-based Analysis of macOS Malware" - Felix Seele

OBTS v2.0: "Hypervisor-based Analysis of macOS Malware" - Felix Seele

OBTS v2.0: "Never Before Had Stierlitz Been So Close To Failure" - Sergei Shevchenko

OBTS v2.0: "Never Before Had Stierlitz Been So Close To Failure" - Sergei Shevchenko

OBTS v2.0: "Bash-ing Brittle Indicators: Red Teaming macOS without Bash or Python" - Cody Thomas

OBTS v2.0: "Bash-ing Brittle Indicators: Red Teaming macOS without Bash or Python" - Cody Thomas

OBTS v2.0: "A Few JSC Tales" - Luca Todesco

OBTS v2.0: "A Few JSC Tales" - Luca Todesco

OBTS v2.0: "[0day] Click and Chill" - Patrick Wardle

OBTS v2.0: "[0day] Click and Chill" - Patrick Wardle

OBTS v2.0: "vm_map'ping out XNU virtual memory" (Ian Beer)

OBTS v2.0: "vm_map'ping out XNU virtual memory" (Ian Beer)

OBTS v1.0: "Protecting the Garden of Eden" - Patrick Wardle

OBTS v1.0: "Protecting the Garden of Eden" - Patrick Wardle

OBTS v1.0: "Who Moved my Pixels?" - Mike Sosonkin

OBTS v1.0: "Who Moved my Pixels?" - Mike Sosonkin

OBTS v1.0: "Code Signing Flaw in macOS" - Thomas Reed

OBTS v1.0: "Code Signing Flaw in macOS" - Thomas Reed

OBTS v1.0: "Crashing to Root" - Branzdon Azad

OBTS v1.0: "Crashing to Root" - Branzdon Azad

OBTS v1.0: "Aliens Among Us" - Mike Lynn

OBTS v1.0: "Aliens Among Us" - Mike Lynn

OBTS v1.0: "MacDoored" - Jaron Bradley

OBTS v1.0: "MacDoored" - Jaron Bradley

OBTS v1.0: "From Apple Seeds to Apple Pie" - Sarah Edwards

OBTS v1.0: "From Apple Seeds to Apple Pie" - Sarah Edwards

OBTS v1.0: "Leveraging Apple's Game Engine for Advanced Threat Detection" - Malm/Stein

OBTS v1.0: "Leveraging Apple's Game Engine for Advanced Threat Detection" - Malm/Stein

OBTS v1.0: "When Macs Come Under ATT&CK" - Richie Cyrus

OBTS v1.0: "When Macs Come Under ATT&CK" - Richie Cyrus