Brandon Dalton
@partyd0lphin.bsky.social
📤 90
📥 69
📝 13
Senior Security Researcher at CrowdStrike
https://swiftly-detecting.notion.site
pinned post!
Extremely excited to be giving a talk titled "Mac, Wheres My Bootstrap" tomorrow at
#OBTS
with
@theevilbit.bsky.social
! Join us live on YouTube or in-person at 2:40pm HST / 7:40pm EST. We'll be dropping a tool you can walk away with :)
12 months ago
0
9
4
Sadly no new ES events for macOS 26. There are a few nice event property updates and additions to the process structure though :)
6 months ago
0
4
1
#WWDC25
🥳
6 months ago
1
2
0
Wanted to re-share some work from Dec 2023 looking at ES internals w/Frida. I documented in-detail two variations here to pull event subscriptions w/this method. If you have a go -- let me know! 🧵
7 months ago
1
0
0
I'm going to WWDC this year!! A childhood dream is coming true! 🎉#WWDC25
8 months ago
1
9
2
Wow, time flies! Mac Monitor turns two next month 🥳 What began as a passion project of mine has been adopted more widely than I could have imagined. A huge thank you to all those who supported the project along the way! What are some of your favorite use cases? What do you want to see be added? 🏃♂️
8 months ago
0
3
1
The other day I was updating one of my favorite Core Data projects…. 😉 and came across this blog that would have saved me a lot of time.
alexj.org/11/core-data...
You can’t prefix a property with “new*” because of allocation nuances between ARC and the Core Data stack!
loading . . .
How a Core Data Attribute's Name Can Lead to Crashes
https://alexj.org/11/core-data-attribute-naming/
8 months ago
0
0
0
Today Red Canary dropped their 2025 threat detection report! Loved the Mac section
redcanary.com/threat-detec...
loading . . .
Mac Malware | Red Canary Threat Detection Report
Mac malware, specifically macOS stealers, ran rampant throughout 2024, until Apple remediated Gatekeeper bypassing from macOS Sequoia.
https://redcanary.com/threat-detection-report/trends/mac-malware/
9 months ago
0
2
0
reposted by
Brandon Dalton
Tony Lambert
9 months ago
A fun yearly endeavor for me is contributing to the Red Canary Threat Detection Report, and the 2025 edition is out today! distilled into one report! Get your free copy of our 2025 Threat Detection Report now. ⬇️
#ThreatReport
#SecOps
#ThreatIntel
redcanary.com/threat-detec...
loading . . .
Welcome to the Red Canary Threat Detection Report
Our Threat Detection Report takes a close look at the top techniques, threats, and trends to help security teams focus on what matters most.
https://redcanary.com/threat-detection-report/
0
3
1
The team found some new XCSSET behaviors to further infect additional Xcode projects / maintain persistence!
www.microsoft.com/en-us/securi...
loading . . .
New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects | Microsoft Security Blog
Microsoft Threat Intelligence has uncovered a new variant of XCSSET, a sophisticated modular macOS malware that infects Xcode projects, in the wild. Its first known variant since 2022, this latest XCS...
https://www.microsoft.com/en-us/security/blog/2025/03/11/new-xcsset-malware-adds-new-obfuscation-persistence-techniques-to-infect-xcode-projects/
9 months ago
0
3
3
reposted by
Brandon Dalton
golby
12 months ago
Today we released a new version of the macOS Security Compliance Project (mSCP). All the published Apple Intelligence controls for macOS/iOS/iPadOS included. Also, DISA STIG v1r1 for macOS Sequoia and BSI indigo for iOS/iPadOS 18.
#mscp
#macOS
#ios
#compliance
loading . . .
Release Sequoia Guidance Revision 1.1 · usnistgov/macos_security
Included in this release are updated guidance documents (HTML, PDF, XLS, SCAP) for the NIST SP 800-53r5 Low, Moderate, and High, NIST 800-171r3, DISA STIG, CNSSI-1253 Low, Moderate, and High, CMMC ...
https://github.com/usnistgov/macos_security/releases/tag/sequoia_rev1.1
0
3
2
reposted by
Brandon Dalton
Csaba Fitzl
12 months ago
📣I’m happy to announce that I’m planning to write a brand new “macOS Vulnerability Research” training. 🥳 Considering the amount of work the writing requires it will be available late 2025 or early 2026. It will be Live class only, and likely only once or twice a year.
0
20
5
Shout-out to the incredible Huntress crew for the special T-shirt 🏝️ and a killer
#OBTS
presentation by
@stuartjash.bsky.social
and
@re.wtf
!
12 months ago
0
7
1
Extremely excited to be giving a talk titled "Mac, Wheres My Bootstrap" tomorrow at
#OBTS
with
@theevilbit.bsky.social
! Join us live on YouTube or in-person at 2:40pm HST / 7:40pm EST. We'll be dropping a tool you can walk away with :)
12 months ago
0
9
4
reposted by
Brandon Dalton
Phil Stokes ⫍🐠⫎
about 1 year ago
All the recordings from
#r2con2024
. 🤩 🙌
radare.org/con/2024/
loading . . .
https://radare.org/con/2024/
0
11
7
you reached the end!!
feeds!
log in
