Control your Mac with an iPhone app – An analysis of HippoRemote

January 4, 2017
ExploitOSXResearchVulnerability
0 Comment

              Applications that are in use on Macs often times are under less scrutiny for security compared to their Windows alternatives.  When researching popular apps in use on OS X I found an app on the iPhone called HippoRemote.  It appears to be quite popular, with a combined 7,558…

Read More

Using email for persistence on OS X

October 28, 2016
OSXpersistencePost ExploitationResearch
0 Comment

In this post we will cover how we can use Mail.app on OS X to persist.  I was inspired by similar tools which are designed to work with Microsoft Outlook.  I first stumbled upon this article from MWR InfoSecurity, and then this blog post from Silent Break Security.  While rules in Mail.app will not replicate…

Read More

Privilege escalation on OS X – without exploits

October 16, 2016
OSXPost Exploitation
0 Comment

This blog post is about ways to escalate privilege on OS X without the usage of exploits.  While exploits are always nice to have, there are other ways in which you can gain root privileges on your target.  By using misconfigurations with a little bit of social engineering you can get your victim to escalate…

Read More