![]() ![]() We’re only trying to demonstrate our experience with the environments we’ve operated in and the solutions we’ve produced. Note: we are not claiming that we invented macros on OS X or this approach in general, that OS X is more/less secure than Windows, or any other broad-sweeping generalizations. Luckily there’s a way to craft macros for OS X Office 2011 documents that trigger system commands, meaning we can weaponize documents for EmPyre just like its Windows equivalent. Without a still working exploit/0day or compromising something like JAMF to deploy out OS X agents/commands you need some way to trigger initial access on target machines. One of the (many) challenges with operating in an OS X heavy environment is initial access. This post is part of the ‘ EmPyre Series’ with some background and an ongoing list of series posts.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |