Unveiling Mac Security: A Comprehensive Exploration of Sandboxing and AppData TCC
Unknown
Black Hat USA 2024 · Day 1 · Briefing
This Black Hat USA presentation, delivered by John and a senior security researcher from the don.com security lab, delves into the intricate world of macOS userland security, with a specific focus on **sandboxing** and **Transparency, Consent, and Control (TCC)** mechanisms. The talk highlights the persistent challenge of achieving **Remote Code Execution (RCE)** and **Local Privilege Escalation (LPE)** on Apple's desktop operating system, even in the face of its robust security architecture. The researchers share their extensive findings, including the discovery of over 40 sandbox escape vulnerabilities since July 2023, underscoring the dynamic and evolving nature of macOS security research.