Hackers of India

Drawing parallels between iOS and macOS Pentesting with DVMA

By Vaibhav Lakhani on 01 Mar 2025 @ Nullcon
πŸ’» Source Code πŸ”— Link
We need help to complete this entry! Missing: presentation, Video
I can help!
#macos #ios #application-pentesting #secure-coding #security-testing #dynamic-analysis
Focus Areas: πŸ” Application Security , βš™οΈ DevSecOps , πŸ’» Endpoint Security , 🦠 Malware Analysis , πŸ“± Mobile Security
This talk covers following tools where the speaker has contributed or authored
DVMA

Abstract

This presentation will explore the unique challenges of securing macOS thick client applications, while drawing on valuable insights from the iOS penetration testing space.

Covering the methodologies and tools relevant to iOS and macOS platforms, focusing on the specific vulnerabilities that macOS applications might encounter. Attendees can expect to learn about:

β€’ macOS secure coding best practices β€’ Effective reverse engineering techniques β€’ Automation tools specifically designed for the macOS environment

To support the above objectives, I’ll be sharing a macOS intentionally vulnerable thick client application. The aim is to equip beginners, seasoned pentesters and developers with practical insights that can boost their macOS Thick Client application testing skills.

This talk will provide useful takeaways for anyone looking to enhance their understanding of macOS application security.