Hardening Your Macintoshos x security, auditing, hardening, pen-testing, privacy & more...
updated 11.10.05
Hardening Your Macintosh
os x security, auditing, hardening, pen-testing, privacy & more...
updated 11.10.05
Thomas Hardly : hardmac at gmail dot com
pgp key id: 0xB61833C4 fingerprint: 0F02 99D5 1D23 E445 22C9 9C90 8F24 FDBA B618 33C4
contents :security & hardening - security guides & tutorials - security web sites - system intergrity - hardening - forensics -
network - network tools - firewalls - network intrusion detection systems - vpn's -
general - programming - privacy - secure deletion - anti-forensics - os x servers & labs - other cool os x sites -
auditing - advisories & vulnerabilities - auditing / permissions / passwords / network / router / wireless -
pen-testing & exploits - penetration testing - exploits - rootkits - MAC spoofing - packet generation & injection - ppc shellcode - mac hacking sites -
[ raw code: code - exploits - papers - shellcode - tools - txt ]
what's new :
11.10.05 -
Sony's DRM Rootkit infects Mac's also - Anyone who has a copy of the three mentioned files: "Start.app", PhoenixNub1.kext and PhoenixNub12.kext files send me a copy so I can dissect them.
11.08.05 -
Multiple local vulnerabilties in Mac OS X <= 10.4.3 - Ilja van Sprundel SureSec Security - Fixed in the Mac OS X 10.4.3 Update
11.05.05 -
I'm looking for a solution so when a user in the Finder chooses 'Empty Trash' it instead uses 'Secure Empty Trash' by default? I would preferably not like to replace my rm binary with srm or an alias/pointer to srm... Suggestions or solutions, please email me: hardmac at gmail dot com
GpsDrive vulnerability (packetstorm) by KF - Nice vuln report and yup i hear you on "k-otick blows!", we know why!
ClamAV antivirus multiple vulnerabilities - Fixed version released.
Spymac Web OS Blogs and Notes Cross Site Scripting Vulnerabilities and exploit.
More and more Quick Time Vulnerabilities by Piotr Bania that were reported to Apple in April! - Fixed finally.
Mac OS X 10.4.3 Update - Several vulnerabilities fixed and many other updates.
dSniff Control 0.3.1 - Update - dSniff Control is a front end for the open source command line utility suite.
Skype for Mac OS X Vulnerability - A remotely exploitable flaw exists in the parser of packets.
10.24.05 -
Little Snitch 1.2.1 Update - Little Snitch protects itself against forced termination (kill) now. Disallow GUI scripting (access for assistive devices) for Little Snitch.
Metasploit Framework 2.5 Update - Arkeia Backup Client Type 77 Overflow (Mac OS X)
10.23.05 -
VERITAS NetBackup Format Strings OSX/ppc Remote Exploit - KF & john @ digitalmunition.com
10.16.05 -
Damn PGP 9.02 is finicky and judging by the all too many complaints on the PGP Support forums and MacUpdate Reviews, I guess it doesn't surprise me. Well I think I have one thing solved thanks to Michael Alderete's fine blog post: PGP Desktop manual proxy configuration for Mac OS X. I think it might be time to go check out the GPGMail plugin again.
dSniff Control 0.3.0 - Officially released - dSniff Control is a front end for the open source command line utility suite.
10.15.05 -
VeriSnitch build 3 released - VeriSnitch is a daemon that will monitor the LittleSnitch daemon and warns the user, via the GUI, if it is not running as well as log to the console.
SnitchCTL build 9 released
10.12.05 -
Anyone interested in a Mac OS X Wargame? The good folks over at pull the plug are looking for donations for a Mac Mini to host OS X wargames. If you have a couple dollars to spare, why not throw some their way.
10.08.05 -
Mac Security: Identifying Changes to the File System by Peter Hickman - Interesting article but yes there has been several rootkits and yes you can install them remotely!
SnitchCTL - A CLI front-end to LittleSnitch showing some of the insecurities of LS
10.05.05 -
Handbook for bloggers and cyber-dissidents by Reporters Without Borders
Using Tor from Firefox/1.1 (Deerpark) - Stop Firefox from leaking DNS requests
Practical Privacy and Anonymity For Hackers Simple Nomad - PPT format
10.03.05 -
Another Mac getting cracked if you can call it that. lisa / lisa, well what do you expect, oops. The haq.sytes.net (81.180.100.51) box is still up, it looks like someone's compromised box on a cable connection in Romania. sex.zip is pretty boring and still there if you feel like grabbing a copy. Ebay spam, blah!
10.02.05 -
SpoofMAC 1.0 Released by Matis Schotte - Airport Extreme MAC spoofing
dSniff_Control - Currently in beta mode with no official support
9.28.05 -
Mac OS X Viruses: Put Up or Shut Up - Wil Shipley and his $500 OS X virus reward
iChatSniff by FSB Software - iChatSniff is a cocoa program that opens pcap-formatted packet dumps and reads in the iChat audio sessions, then plays them back.
Mac OS X - malloc() local privilege escalation vulnerability found Ilja van Sprundel of Suresec Security. Fixed in Apple Security Update 2005-008
9.23.05 -
Anonymous Anonymity - Request For Comments
MacKrack v1.5.1 Released by FSB Software
Tiger: Differences Between Stock and Apple OpenSSH
Google Secure Access on Mac OS X Google's WiFi VPN
9.16.05 -
A movie about Trusted Computing
Apple Releases new Java and Java Security Updates.
Palm Installer 4.2.1c Installer is a misbehaving beast
Acoustic Snooping on Typed Information - Keyboard Acoustic Emanations Revisited - paper & Acoustic cryptanalysis
9.11.05 -
Random password widgets may not be random Mac OS X Hints - Beware of snake oil in the OS X world. There are numerous encryption/security applications on the market with very dubious security value.
md5deep is a cross-platform set of programs to compute MD5, SHA-1, SHA-256 Tiger, or Whirlpool message digests on an arbitrary number of files.
Eavesdrop 0.5a1 by Eric Baur - A network sniffer with nifty GUI and some cool features.
9.10.05 -
Corsaire has released an updated guide: Securing Mac OS X 10.4 Tiger - by Stephen de Vries
CIS Benchmark for Mac OS X v1.02 Released
WepLab - Analyzing WEP encryption security on wireless networks
KisMac adds Airport Extreme Passive Mode Support - Download KisMac r75 - Mick Rocks! ps. thanx apple
MacScan 2.0 beta Released at long last. Now lets see if it really works...
Apple OSX dsidentity privilege abuse vulnerability found by Kevin Finisterre and Neil Archibald additional info
Adobe Version Cue VCNative Privilege Escalation vulnerability found by vade79
Exploit 1 & 2
8.27.05 -
PowerPC Assembly Programming on the Mac Mini By Pramode C.E.
What Is ClamXav (and do Mac users really need antivirus?) by Fran¨ois Joseph de Kermadec
8.20.05 -
Tor security advisory: DH handshake flaw - Upgrade to at least Tor 0.1.0.14 or 0.1.1.5-alpha.
Yet another Acrobat and Adobe Reader plug-in buffer overflow - Updates available
8.19.05 -
Security Update 2005-007 v1.1 for Mac OS X 10.4.2 Released
Apple patch fiasco invites trouble
Phrack #63 Released:
OSX heap exploitation techniques by Nemo
PowerPC Cracking on OSX with GDB by curious
8.18.05 -
Security Update 2005-007 Released - 43 vulnerabilites fixed.
Spoofing the MAC address on Airport Extreme cards (static method) - Updated for Tiger
AIRPATCH by drunkeniguana - Perl script to patch your Airport driver to spoof MAC address
7.14.05 -
Network Forensics Evasion: How to Exit the Matrix 0.9.1 by Ace Evader - An detailed look at staying anonymous on the Internet.
https://n4ez7vf37i2yvz5g.onion/howtos/ExitTheMatrix <-- you must use tor to access this. - local Mirror tarball
7.13.05 -
OS X 10.4.2 Update released - fixing two vulnerabilities.
Apple Darwin Streaming Server Web Admin Remote Denial of Service - Fixed with the release of Darwin Streaming Server 5.5.1
7.07.05 -
ClamXav 1.0g A GUI for clamav.
7.06.05 -
Adobe Reader 7.0.2 update fixes security issues.
Real Player Update fixes security issues.
previous - whats new...
blog archives - hardmac.blog-city.com
