Explore a comprehensive 48-minute Black Hat conference talk that delves into the intricacies of macOS Mobile Device Management (MDM) and its potential vulnerabilities. Walk through the various stages of bootstrapping, examining involved binaries, IPC flows on the device, and evaluating network security of key client/server communications. Witness a live demonstration showcasing how a nation-state actor could exploit vulnerabilities, potentially compromising a brand new Mac out of the box upon its first WiFi connection. Gain valuable insights from speakers Jesse Endahl and Max Bélanger as they uncover the inner workings of macOS MDM and its potential security risks.
A Deep Dive into macOS MDM - and How it Can Be Compromised
Overview
Syllabus
A Deep Dive into macOS MDM (and How it can be Compromised)
Taught by
Black Hat
Related Courses
-
Windows Agentless C2 - Abusing the MDM Client Stack
-
Practical Attacks Against MDM Solutions
-
A Practical Attack Against MDM Solutions
-
Come to the Dark Side, We Have Apples - Turning macOS Management Evil
-
Process Injection - Breaking All macOS Security Layers With a Single Vulnerability
-
Windows Agentless C2 - Abusing the MDM Client Stack
