Coursera Plus Annual is 40% Off — Ends June 29.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Mirror Mirror - Restoring Reflective Code Loading on macOS

Objective-See Foundation via YouTube

Start learning Write review
Boot.dev Ad

The Most Addictive Python and SQL Courses

Learn More → Coursera Ad

AI, Data Science & Cloud Certificates from Google, IBM & Meta

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
A technical conference talk explores the evolution and restoration of reflective code loading capabilities on macOS systems. Dive into traditional methods of reflective code loading, examining real-world malware examples that attempted to leverage these techniques. Learn how Apple's modifications to loader APIs impacted this functionality by enforcing file-based loading, and discover a straightforward approach that utilizes Apple's own loader to restore reflective loading capabilities through macOS 15. Gain insights into the security implications of these techniques and explore defensive strategies for detection and mitigation. Presented by Patrick Wardle, founder of the Objective-See Foundation and renowned macOS security expert with experience at NASA and NSA, this 29-minute presentation provides valuable knowledge for security professionals and developers interested in macOS system internals and security architecture.

Syllabus

#OBTS v7.0: "Mirror Mirror: Restoring Reflective Code Loading on macOS" - Patrick Wardle

Taught by

Objective-See Foundation

Reviews

Start your review of Mirror Mirror - Restoring Reflective Code Loading on macOS

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.