OffSec - EXP312

EXP-312: Advanced macOS Control Bypasses(線上課程及認證考試方案)

EXP-312: Advanced macOS Control Bypasses
  • 時數:0小時
  • 費用:NT$ 57,570
  • 點數:不適用企業點數

選擇查詢分區開課時間

地點 班號 日期 時間 預約

目前查無開課時段

詳細開課時間請洽詢業務
新竹、台中、高雄如有上課需求,請參考台北開課日期,洽當地服務人員依需求加開遠距開課日期

聯絡恆逸

教材

原廠電子教材

課程目標

Advanced macOS Control Bypasses (EXP-312) is our first macOS security course. It’s an offensive logical exploit development course for macOS, focusing on local privilege escalation and bypassing the operating system’s defenses. EXP-312 is an advanced course that teaches the skills necessary to bypass security controls implemented by macOS, and exploit logic vulnerabilities to perform privilege escalation on macOS systems. Learners who complete the course and pass the exam earn the OffSec macOS Researcher (OSMR) certification.

線上課程方案介紹 (恆逸金銀卡會員另有優惠)

● Course & Cert Exam Bundle:NT57,570/一次性(含90天Lab與1次考試)

● Learn One: NT90,490/一年(含365天Lab與2次考試)

● Learn Unlimited:NT200,000/(含365天Lab與無限次考試)

適合對象

  1. Anyone who is interested in learning about macOS exploitation
  2. Pentesters looking to broaden their skill set to include macOS expertise
  3. Anyone committed to the defense or security of macOS systems
  4. Job roles like Penetration testers, Exploit developers, Security researcher, macOS defenders, and macOS application developers

預備知識

  1. C programming knowledge
  2. Normal user experience with macOS
  3. Basic familiarity with 64-bit assembly and debugging
  4. Understanding of basic exploitation concepts

課程內容

  1. Course Summary
  2. Organization of Content
  3. macOS Control Bypasses: General Course Information
  4. Virtual Machine Setup Guide
  5. Introduction to macOS
  6. macOS Binary Analysis Tools
  7. The Art of Crafting Shellcodes
  8. Dylib Injection
  9. The Mach Microkernel
  10. Function Hooking on macOS
  11. XPC Attacks
  12. The macOS Sandbox
  13. Bypassing Transparency, Consent, and Control (Privacy)
  14. GateKeeper Internals
  15. Bypassing GateKeeper
  16. Symlink and Hardlink Attacks
  17. Getting Kernel Code Execution
  18. Injecting Code into Electron Applications
  19. Mount(ain) of Bugs (Archived)
  20. The Art of Crafting Shellcodes (Apple Silicon Edition)
  21. Mach IPC Exploitation
  22. Chaining Exploits on macOS Ventura
  23. macOS Penetration Testing

學會技能

  1. Obtain a strong understanding of macOS Internals
  2. Learn how to bypass security controls implemented by macOS
  3. Exploit logic vulnerabilities to perform privilege escalation on macOS systems

備註事項

報名請上OffSec全系列線上課程平台

推薦課程