BSIDES MELBOURNE
  • Home
  • About
    • Privacy Policy
  • Sponsorship
  • Archives
  • Code of Conduct

A brief guide to outflanking TCC

Presenter: Nadeem Salim​
Track: A
Time: Sunday 10:05am
Duration: 30 mins
Location: Main Room

Picture
Abstract
TCC (Transparency, Consent, and Control) is a mechanism in macOS to limit and control application access to a user's privacy features. This talk will discuss design flaws within the system and demonstrate techniques to access privacy features during offensive operations. An open-source tool developed by the speaker to aid in enumeration during operations will be presented. The talk will also provide various defences and detection mechanisms organisations can consider implementing in their environment.​

Speaker Bio:
Nadeem Salim is currently a Principal Security Engineer within SEEK's offensive security team. Previously he lead the technical practise of a large security consultancy in Melbourne. He has over 15 years of experience in the industry focused on offensive security and performing security assessments. Nadeem specialises in adversary simulations, mobile and MacOS security. He has presented at several conferences including CRESTCon, WAHCKon and AusCERT.
© Copyright BSides Melbourne 2023. All rights reserved.
  • Home
  • About
    • Privacy Policy
  • Sponsorship
  • Archives
  • Code of Conduct