OBTS v2.0: Root Canal - Sam Keeley

About the talk.. Apple released System Integrity Protectionrootless with OS X El Capitan almost four years ago.
The root account is still there and many common pieces of software open the Mac up to simple root escalations - including common macOS management tools.
How can we detect these vulnerabilities across our Mac fleets? What can root still be abused for in 2019? Slides: About the speaker... Samuel is a Security Engineer focused on user endpoints and access management at Airbnb.

Источник: rutube.ru