pewrug
Last Updated: March 15, 2019
·
18
· Reaver

MacOS Security

Most people think that Windows is more vulnerable than Mac. Well they are right. However, Mac still has many security issues that can allow attackers to spoof .png, .pdf, .txt and other file-name extensions. After getting access to your Mac attackers can get root privileges quite easily if you are a Terminal user who uses sudo or Homebrew. It is possible to spoof pop-up windows using apple-script in order to phish user's passwords. Lots of commercial adware, ransomeware, and spyware have been popping up around the web. Also, there has been some research into embedding javascript into images. So if you are a Mac user make sure to stay vigilant.
Many thanks to the following articles:
https://null-byte.wonderhowto.com/how-to/hacking-macos-create-fake-pdf-trojan-with-applescript-part-2-disguising-script-0184706/
https://www.n00py.io/2016/10/privilege-escalation-on-os-x-without-exploits/
https://applehelpwriter.com/2018/03/21/how-homebrew-invites-users-to-get-pwned/
Commercial mac spyware:
https://macspy423ho54vap.tor2web.io/
Instead of using Empire for the trojan's payload, try eggshell:
https://github.com/neoneggplant/EggShell
Useful free tools for getting the backdoor's to connect to you over the web:
https://portmap.io/
https://ngrok.com/
https://serveo.net/