OffSec

Advanced macOS Control Bypasses OSMR Training

EXP-312

Advanced macOS Control Bypasses (EXP-312)

Advanced macOS Control Bypasses (EXP-312) is an advanced course that teaches the skills necessary to bypass security controls implemented by macOS, and exploit logic vulnerabilities to perform privilege escalation on macOS systems. Learners who complete the course and pass the exam earn the OffSec macOS Researcher (OSMR) certification.

Training at a glance

Level

Advanced

Duration

5 Days

Experience

4 years: macOS

Average Salary

$100,000

Labs

Yes

Level

Advanced

Duration

5 Days

Experience

4 years: macOS

Average Salary

$100,000

Labs

Yes

Training Details

Course Overview

EXP-312 (macOS Control Bypasses) is an offensive logical exploit development course for macOS, focusing on local privilege escalation and bypassing the operating system’s defenses. It’s an intermediate course that teaches the skills necessary to bypass security controls implemented by macOS, and exploit logic vulnerabilities to perform privilege escalation on macOS systems.

Obtain a strong understanding of macOS internals
Learn the basics of Mach messaging
Learn how to bypass Transparency, Content and Control (TCC) protections
Learn how to escape the Sandbox
Perform symbolic link attacks
Leverage process injection techniques
Exploit XPC for privilege escalation
Perform hooking based attacks
Write Shellcode for macOS
Bypass kernel code-signing protection

Course Materials
Active Student Forums
Access to Home Lab Setup

Course Outline

Lesson 1: macOS Control Bypasses: General Course Information
Lesson 2: Virtual Machine Setup Guide
Lesson 3: Introduction to macOS
Lesson 4: macOS Binary Analysis Tools
Lesson 5: The Art of Crafting Shellcodes
Lesson 6: Dylib Injection Egghunters
Lesson 7: The Mach Microkernel
Lesson 8: Function Hooking on macOS
Lesson 9: XPC Attacks
Lesson 10: The macOS Sandbox
Lesson 11: Bypassing Transparency, Consent, and Control (Privacy)
Lesson 12: GateKeeper Internals
Lesson 13: Bypassing GateKeeper
Lesson 14: Symlink and Hardlink Attacks
Lesson 15: Getting Kernel Code Execution
Lesson 16: Injecting Code into Electron Applications
Lesson 17: Mount(ain) of Bugs (Archived)
Lesson 18: The Art of Crafting Shellcodes (Apple Silicon Edition)
Lesson 19: Mach IPC Exploitation
Lesson 20: Chaining Exploits on macOS Ventura
Lesson 21: macOS Penetration Testing

Intended Audience

Anyone who is interested in learning about macOS exploitation
Pentesters looking to broaden their skill set to include macOS expertise
Anyone committed to the defense or security of macOS systems
Job roles like Penetration testers, Exploit developers, Security researcher, macOS defenders, and macOS application developers

Prerequisites

We strongly suggest that students taking PEN-300 have either taken PWK and passed the OSCP certification or have equivalent knowledge and skills in the following areas:

Working familiarity with Kali Linux command line
Solid ability run enumerating targets to identify vulnerabilities
Basic scripting abilities in Bash, Python and PowerShell
Identifying and exploiting vulnerabilities like SQL injection, file inclusion and local privilege escalation
Foundational understanding of Active Directory and knowledge of basic AD attacks
Familiarity with C# programming is a plus

Features

Also available in On-Demand formats below:

Offsec Learn Fundamentals

Learn Fundamentals Package – $799

1 year unlimited access to all fundamental content and OffSec curated Learning Paths
365 days of lab access
PEN-103 + 1 KLCP exam attempt
PEN-210 + 1 OSWP exam attempt
Easily upgrade at any time to a Learn One subscription.
Learn More

Offsec Learn One

Learn One Package – $2,599

1 year of access to the course of your choice
2 exam attempts during your subscription
365 days of lab access
Access to all 100-level content for 1 year
1 year of unlimited access to all fundamental content and OffSec curated Learning Paths
PEN-103 + 1 KLCP exam attempt
PEN-210 + 1 OSWP exam attempt
Proving Grounds Practice labs
Learn More

OffSec Learn Unlimited

Learn Unlimited Package – $5,799

1 year of access to unlimited course & content
Unlimited exam attempts during your subscription
365 days of lab access
1 year of unlimited access to all fundamental content and OffSec curated Learning Paths
Access to all 100-level content for 1 year
PEN-103 + unlimited KLCP exam attempts
PEN-210 + unlimited OSWP exam attempts
Proving Grounds Practice labs
3 downloads of course material
Learn More

Follow-On Courses

Advanced Windows Exploitation (EXP-401)

Upcoming Classes

PROUD OFFSEC PARTNERSHIP

We are proud to be an OffSec Learning, Government, and Channel Partner. We pride

ourselves on providing award winning boot camps and direct mentoring in our classrooms,

Online Live or at your location. The only immersive Authorized Instructor-Led OffSec

training available – join us today!

Black Hat USA Delivery Partner

Learn more about our Authorized OffSec training courses at
BLACK HAT USA 2024!

We Offer More Than Just OffSec Training

Our successful training results keep our corporate and military clients returning.
That’s because we provide everything you need to succeed. This is true for all of our courses.

Strategic Planning & Project Management

From Lean Six Sigma to Project Management Institute Project Management Professional, Agile and SCRUM, we offer the best-in-class strategic planning and project management training available. Work closely with our seasoned multi-decade project managers.

IT & Cybersecurity

ATA is the leading OffSec and Hack the Box US training provider, and a CompTIA and EC-Council award-winning training partner. We offer the best offensive and defensive cyber training to keep your team ahead of the technology skills curve.

Leadership & Management

Let us teach your team the high-level traits and micro-level tools & strategies of effective 21st-century leadership. Empower your team to play to each others’ strengths, inspire others and build a culture that values communication, authenticity, and community.

Strategic Planning & Project Management

IT & Cybersecurity

Leadership & Management

Jessica B

2024-05-13

Excellent professional team and the class was great. The instructor, J Chaney, really did a great job explaining the concepts and keeping the class engaging. I credit ATA with helping me pass the exam on the first try.

MDP

2024-05-10

Great classes for IT advancement with outstanding instructors. The staff are also awesome with aiding in enrollment and solving any issues.

Tony L

2024-04-22

ATA is a good way to take an IT course as the instructors are very knowledgeable and present topics in a way that is easy to understand. The staff is also great. In my experience they have responded and resolved any questions or issues I had in a timely manner. I would recommend ATA to anyone that is looking to get IT certifications as I have used them for CompTIA Net+ and Sec +.

AlAmin Smith (Swizzkillz)

2024-04-09

I've taken so many boot camps through them. They always deliver with the content and customer service. If I have questions, I get answers. If there is a class I have an interest in, they look into getting it added. I just completed another course and it well as usual. ATA is one of the best resources I have available to me to complete my goals in the cyber field.

chriscaliforniaa

2024-04-09

Big Thanks to Applied Technology Academy! Last year, I made a big decision to make a career change! Before, I didn’t have a roadmap. I did my research and found ATA. Since I want to pursue in Cybersecurity, I went to their Sec+ bootcamp last year to learn so much material and I would say that they’re the best! Great staff and military friendly! Thank you guys so much and shout out to Mr. J. Chaney! Definitely the best to ever do it! Great instructor! Now i am Sec+ certified!

Stephon Shaffer

2024-02-29

I've been working with ATA for awhile since I began going down the path of IT. I was able to attain Security+, Certified Ethical Hacker, and the CCNA cert through them. I want to give big shout out to Laura Campbell!! She has been amazing as far as making sure documentation is prepared, sending out upcoming classes way in advance, and executing things quick. She provides valuable resource and goes out of her way to get things done. I was going for the Fortinet NSE 4 cert, which is not a common curriculum provide on the itinerary, but she went and made it happen and ensured that it would be covered. I couldn't take the course due to other reasons, but the fact that she was able to make it happen truly solidified my heart with ATA. Thank you Laura and thank you ATA!! I look forward to enrolling into the CCNP course with you all very soon.

Nicole Watson

2023-05-17

This school is hands down the BEST IT school I have attended for SEC+. I have attended SEC+ twice at Fort Gordon and the information that is taught there was so outdated. I appreciate Applied Technology Academy so much! I actually enjoyed the instruction, it was not hard to follow, and the instructor, Mr. Chaney, was extremely knowledgeable. He was able to communicate to the lowest level from Beginner to advanced. Our class had 100% pass rate of who took the exam after the course was over. After the exam I was able to contact the instructor and Ms. Liz Pernaselci for more information. I was provided with the audio from the course to go over in the event I needed to brush up. We are also allowed to log in to any SEC+ Course afterwards without paying an additional fee. I really appreciate this school and will be attending more courses in the future!

Hey there Dontworryboutit

2023-01-13

I had 0 computer knowledge or background going into the Security + class. J made it understandable and easily digestible. The classes were thorough and the study material was exactly what was needed to help prepare for the test. Cannot recommend this enough for people trying to get into the security field.

Henoc Placide

2022-10-17

Security + course was very well taught and easily digested. Course material provided definitely prepared for course exam.

Training Categories

Training Сourses

1. Talk To An Expert

2. Select Your Date

3. Elevate Your Career

Recent Stories

Cloud Computing

Data Analyst

Data Scientist

Defensive Security

Machine Learning Engineer

Offensive Security

Network Admin

Florida Individual Training

Florida Team Training

Recent Stories

Popular Certification Training

Training Сourses

IT Certification Training

SoftSkills Training

Six Sigma

Project Management Training

Custom Solutions

Recent Stories

Strategic Planning and Project Management

IT and Cybersecurity

Sales and Operations

Recent Stories

IT Certification Training

SoftSkills Training

Six Sigma

Project Management Training

Featured Courses

Recent Stories

Become An Instructor

Look Inside ATA Mindset and Mission

Featured Courses

Recent Stories

Advanced macOS Control Bypasses OSMR Training

Advanced macOS Control Bypasses (EXP-312)

Training at a glance

Level

Duration

Experience

Average Salary

Labs

Level

Duration

Experience

Average Salary

Labs

Training Details

Offsec Learn Fundamentals

Learn Fundamentals Package – $799

Offsec Learn One

Learn One Package – $2,599

OffSec Learn Unlimited

Learn Unlimited Package – $5,799

Upcoming Classes

PROUD OFFSEC PARTNERSHIP

Black Hat USA Delivery Partner

We Offer More Than Just OffSec Training

Strategic Planning & Project Management

IT & Cybersecurity

Leadership & Management

this can be your story too

Check out our Course Catalog

Engage in our world class learning experience.

Drop us your information and we will get back to you.

What we offer

Locations

Check out our
Course Catalog