A brief guide to outflanking TCC |
Abstract
TCC (Transparency, Consent, and Control) is a mechanism in macOS to limit and control application access to a user's privacy features. This talk will discuss design flaws within the system and demonstrate techniques to access privacy features during offensive operations. An open-source tool developed by the speaker to aid in enumeration during operations will be presented. The talk will also provide various defences and detection mechanisms organisations can consider implementing in their environment. Speaker Bio: Nadeem Salim is currently a Principal Security Engineer within SEEK's offensive security team. Previously he lead the technical practise of a large security consultancy in Melbourne. He has over 15 years of experience in the industry focused on offensive security and performing security assessments. Nadeem specialises in adversary simulations, mobile and MacOS security. He has presented at several conferences including CRESTCon, WAHCKon and AusCERT. |