Office Drama on macOS
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the growing threat of macro-based Office attacks on macOS in this Black Hat conference talk. Delve into the analysis of recent macro-laden documents targeting Apple's desktop OS, with a focus on macOS-specific exploit code and payloads. Learn about the OUTLINE, MACROS ANALYSIS, SANDBOX BYPASS techniques, QUARANTINED / NOTARIZATION processes, and FULL EXPLOIT CHAINS. Gain insights into DETECTION methods to protect against these emerging threats. Presented by Patrick Wardle, this 43-minute talk provides a comprehensive overview of Office drama on macOS, filling a gap in research and security community attention.
Syllabus
Intro
OUTLINE
MACROS
ANALYSIS
SANDBOX BYPASS
QUARANTINED / NOTARIZATION
FULL EXPLOIT CHAIN
DETECTION
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube