User Tools

Site Tools


other:topic-suggestions

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
other:topic-suggestions [2018/09/03 17:25]
127.0.0.1 external edit
other:topic-suggestions [2020/02/10 18:07] (current)
mikey [OS Specific Research] [macOS] [iOS] Create sections
Line 33: Line 33:
   * Set up and evaluate something like Pi-Hole, or something like that   * Set up and evaluate something like Pi-Hole, or something like that
   * Evaluate a tool you use personally eg Little Flocker or Little Snitch on Mac   * Evaluate a tool you use personally eg Little Flocker or Little Snitch on Mac
 +
 +===== OS Specific Research =====
 +
 +==== macOS ====
 +  * Find and document Living off the Land Binaries (LOLBINS) ​
 +  * Evaluate post exploit frameworks (Apfell, macshell/ macshellswift)
 +    * How you would prevent/ detect them?
 +  * Write your own post exploit framework (do it in swift for bonus points and future proofing)
 +  * Offensive Swift: How can you use/abuse swift to do bad stuff (You can execute Swift in a REPL and use it as a scripting language)
 +  * Offensive JavaScript for Automation (JXA) what bad shit can you do with JXA how would you detect it? 
 +  * Offensive Apple Script (osascript) what bad shit can you do and how would you detect it?
 +  * Really investigate macOS hardening
 +    * What can we do at the kernel level? (''​kern.securelevel''​)
 +      * [[http://​newosxbook.com/​files/​moxii3/​AppendixA.pdf | macOS and *OS Internals Vol3 Appendix A]] 
 +    *  MDM profile?
 +  * Review Patrick Wardles [[https://​objective-see.com/​blog/​blog_0x53.html | "The Mac Malware of 2019"​]]
 +    * Extract common TTPs
 +      * How do they work?
 +      * How can we detect/ prevent them? 
 +  * [Forensics] Extend APOLLO by Sarah Edwards with more Mac feature ​
 +  * Analyse installers (''​.pkg''​)s and find vulns
 +    * [[https://​github.com/​0xmachos/​macos-scripts/​commit/​73403ff990164226ebe62c65977531e72af3e9bb#​diff-3892527f3db79426cba00903ece969ab | hint]]
 +  * Write a tool to automate macOS malware analysis
 +    * [[https://​github.com/​xtiankisutsa/​MARA_Framework | MARA]] for mach-o?  ​
 +  * Write malware analysis tool based on the end point security framework
 +    * [[https://​posts.specterops.io/​detection-engineering-using-apples-endpoint-security-framework-affdbcb18b02 | hint]]
 +    * [[https://​www.jamf.com/​blog/​apples-new-endpoint-security-framework/​ | hint ]]
 +
 +
 +==== iOS ====
 +  * How can you lock down iOS with MDM? (Micro MDM)
 +  * Can you better monitor iOS with MDM? 
 +  * What logs can you get and how can you monitor these for exploitation? ​
 +  * [Forensics] Play with APOLLO by Sarah Edwards evaluate it see if you can extend it? 
 +  * Jailbreak an iPhone and play with frida 
  
 These projects are perfect to do for your personal projects in 2nd and 3rd year, as well as talks at society. If you need help, ask! These projects are perfect to do for your personal projects in 2nd and 3rd year, as well as talks at society. If you need help, ask!
other/topic-suggestions.txt ยท Last modified: 2020/02/10 18:07 by mikey