Pages: [1]   Go Down
  Print  
Author Topic: You Can’t See Me: A Mac OS X Rootkit Uses the Tricks You Haven’t Known Yet  (Read 239 times)
HCK
Global Moderator
Hero Member
*****
Posts: 79425



« on: September 26, 2023, 04:05:22 pm »

You Can’t See Me: A Mac OS X Rootkit Uses the Tricks You Haven’t Known Yet

During
their presentation at Black Hat Asia 2014, researchers from Team T5 Sung-ting
Tsai and Ming-chieh Pan demonstrate some tricks for advanced process hiding in
Mac OS X. In essence, this is activity powered by a rootkit, such as Rubilyn, which
can make an arbitrary process not visible in the standard way. TT and Nanika
also highlight methods for direct kernel task access and gaining root
permission.
Source: You Can’t See Me: A Mac OS X Rootkit Uses the Tricks You Haven’t Known Yet
Logged
Pages: [1]   Go Up
  Print  
 
Jump to: