#HITB2022SIN One-Click To Completely Takeover A MacOS Device - Mickey Jin

preview_player
Показать описание
Since Apple released its own powerful M-series chips, Mac products have become more and more popular for ordinary users, and hence more and more attractive for hackers. Both zero-click and one-click attacking are eligible for a generous bug bounty.

However, it is not easy to do that. Because there are many significant security features to protect your Mac from attacking, such as GateKeeper, System Integrity Protection (aka SIP), TCC (Transparency, Consent, and Control), and so on.

In this talk, I will share a chain of vulnerabilities (CVE-2022-22616, CVE-2022-22639, CVE-2022-22617, and more …) to bypass all above security features and make the one-click exploit chain successfully work on both Apple Silicon and Intel Mac devices. I will talk about how I found these vulnerabilities, the root cause, and how I exploited them. Of course there will be an awesome demo for the whole exploit chain: from one-click to complete take over.

===

  1. Hack In The Box Security Conference
  2. hitb
  3. hitbsecconf
  4. hackinthebox
Рекомендации по теме
#HITB2022SIN One-Click To 0:51:37

#HITB2022SIN One-Click To Completely Takeover A MacOS Device - Mickey Jin

#HITB2022SIN TRAINING - 0:02:33

#HITB2022SIN TRAINING - IC Reverse Engineering & Code Extraction

Process Injection: Breaking 0:36:36

Process Injection: Breaking All macOS Security Layers With a Single Vulnerability

#HITB2022SIN E'rybody Gettin' 0:53:38

#HITB2022SIN E'rybody Gettin' TIPC: Demystifying Remote Linux Kernel Exploitation - Sam Pa...

#HITB2022SIN Breaking Web3: 0:57:07

#HITB2022SIN Breaking Web3: Exploitation Techniques For Cryptocurrency Hacking - David Pethes

#HITB2022SIN #COMMSEC Building 0:35:17

#HITB2022SIN #COMMSEC Building An Army Of Bots By Hijacking a Twitter Handle - R. Sasi & V. Si...

Windows on apple 0:07:18

Windows on apple M1/M2 Macs: For Windows Hacking and malware analysis

OffensiveCon19 - Tyler 0:46:35

OffensiveCon19 - Tyler Bohan - OSX XPC Revisited - 3rd Party Application Flaws

OBTS v4.0: 'Apple's 0:23:51

OBTS v4.0: 'Apple's Envy: Root once, bypass TCC' - Andy Grant

MacOS X GateKeeper 0:00:36

MacOS X GateKeeper Bypass

#HITB2022SIN #COMMSEC Getting 0:33:14

#HITB2022SIN #COMMSEC Getting Clear Text Passwords From An IdP & More - Gal Diskin

Javan Rasokat - 0:31:50

Javan Rasokat - A race against time - How to exploit race conditions in web apps - Ekoparty 2022

macOS Vulnerabilities Hiding 0:35:37

macOS Vulnerabilities Hiding in Plain Sight

Nullcon Berlin 2023 0:47:39

Nullcon Berlin 2023 | The Achilles Heel Of The macOS Gatekeeper by Jonathan Bar Or

Warning Issued For 0:00:41

Warning Issued For iPhone Users As iMessage 0-Click Attack Revealed #iphone #samsung #shorts

INFRA HACKBOARD EXPLOIT 0:05:56

INFRA HACKBOARD EXPLOIT - ONE CLICK HACKING

macOS local security 0:50:49

macOS local security escaping the sandbox and bypassing TCC

Dive Into Apple 0:39:02

Dive Into Apple IO80211Family Vol. 2

#HITB2021SIN D2T1 - 0:37:49

#HITB2021SIN D2T1 - Summer Of Fuzz: MacOS - Jeremy Brown

#HITB2023AMS D2T2 - 0:27:33

#HITB2023AMS D2T2 - Privilege Escalation Using DOP In MacOS - Y. Lee, J. Choi, J. Lee & S. Song

#HITBGSEC COMMSEC: Exploiting 0:55:07

#HITBGSEC COMMSEC: Exploiting Zoom On MacOS - Michael Gianarakis and Sean Yeoh

HITB2021SIN D1T2 - 0:42:01

HITB2021SIN D1T2 - IDA2Obj: Static Binary Instrumentation On Steroids - Mickey Jin

#HITB2018AMS D1T1 - 0:44:32

#HITB2018AMS D1T1 - How to Analyze and Find Bugs in MacOS and iOS Kernel Drivers - X. Bai & M. Z...

macOS Security Features 0:47:46

macOS Security Features Bypasses by Example | Jonathan Bar Or (JBO) | Nullcon Webinars 2022