Dissecting Rotten Apples - macOS Malware Analysis

Explore macOS malware analysis in this conference talk from NULLCON Goa 2020. Delve into the architecture of the macOS "XNU" kernel and its userspace components, understanding inter-process communication and the challenges posed by Objective-C for program analysis. Examine real-world malware samples, uncovering common behavior patterns and techniques employed by macOS threats. Gain insights from Felix Seele, a Software Engineer at VMRay specializing in hypervisor-based malware analysis solutions, as he dispels the myth of Mac's immunity to malware and highlights the rising sophistication of macOS-targeted threats.