Security & Privacy

The forthcoming Black Hat security conference, to be held from July 25-30 in Las Vegas, features two interesting presentations from Mac security researcher Dino Dai Zovi.

First, he will discuss “Advanced Mac OS X Rootkits”:

This presentation will cover a variety of rootkit techniques for both user-space and kernel-space rootkits using unique and poorly understood or documented Mac OS X and Mach features.

And he will then give a talk about using the Metasploit hacking tool with Mac OS X:

While Metasploit has had a number of Mac exploits for several years, the exploit payloads available have done little more than give a remote shell. These payloads are significantly simpler than the DLL-injection based payloads for Windows-based targets like the Meterpreter and VNC Inject payloads. This talk will cover the development and use of the fancier Metasploit Mac payloads developed by Dino Dai Zovi (the presenter) and Charlie Miller, including bundle injection, iSight photo capture, and Macterpreter.

We’ll be looking forward to hearing more about these presentations, and we’ll post about them if any new and novel information is made public.