OffSec EXP-312 Advanced macOS Control Bypasses
 
Course Overview:
EXP-312: Advanced macOS Control Bypasses is OffSec's premier macOS security course for advanced learners. This course focuses on offensive logical exploit development for macOS, emphasizing local privilege escalation and the techniques required to bypass the operating system’s defenses. Upon completing the course and passing the exam, learners earn the prestigious OffSec macOS Researcher (OSMR) certification.
 
Course Benefits:
Deep Understanding of macOS Internals: Gain a thorough comprehension of the underlying workings of macOS.
Bypass macOS Security Controls: Learn how to circumvent security mechanisms implemented by macOS.
Exploit Logic Vulnerabilities: Develop skills to exploit logic vulnerabilities to achieve privilege escalation on macOS systems.
 
Exam Details:
Certification: OffSec macOS Researcher (OSMR)
Exam Duration: 48 hours
Format: Proctored
 
Who Should Take This Course?
Individuals interested in learning about macOS exploitation
Penetration testers looking to enhance their skill set with macOS expertise
Professionals committed to the defense and security of macOS systems
Roles such as penetration testers, exploit developers, security researchers, macOS defenders, and macOS application developers
 
Prerequisites:
Knowledge of C programming
Regular user experience with macOS
Basic familiarity with 64-bit assembly and debugging
Understanding of basic exploitation concepts
 
Course Syllabus:
The course covers the following topics in-depth:
Introduction to macOS Internals: Learn about macOS's core components and architecture.
Debugging and Tracing: Master tools like Hopper for effective debugging and tracing.
Shellcoding in macOS: Create and execute shellcode on macOS.
Dylib Injection: Understand and perform dynamic library injection.
Mach and Mach Injection: Exploit Mach objects and perform Mach injection.
Hooking: Learn how to intercept and modify macOS functions.
XPC Exploitation: Exploit XPC services for privilege escalation.
Sandbox Escape: Techniques to break out of macOS sandbox restrictions.
Attacking Privacy (TCC): Exploit and bypass the Transparency, Consent, and Control (TCC) framework.
Symlink Attacks: Perform attacks using symbolic links.
Kernel Code Execution: Gain insights into executing code in the macOS kernel.
macOS Pentesting: Apply various techniques in real-world macOS penetration testing scenarios.
 
Why Choose EXP-312?
EXP-312 offers a unique opportunity to delve into the advanced aspects of macOS security. It provides practical and hands-on experience with the latest techniques in exploit development and security control bypasses. By completing this course, you will be well-prepared to handle advanced macOS security challenges and earn the highly regarded OSMR certification, demonstrating your expertise in macOS security to employers and peers.
 
Take your macOS security skills to the next level with EXP-312: Advanced macOS Control Bypasses and become an elite macOS security expert.