Advanced MacOS Control Bypasses EXP 312 Course Training Certification
OffSec’s Advanced macOS Control Bypasses (EXP-312) course offers a thorough grasp of macOS security and internal workings. You will acquire hands-on experience discovering and exploiting logic-based vulnerabilities in the operating system, as well as learning how to circumvent security safeguards and escalate privileges in order to achieve root access on macOS computers. Completing the online training course and passing the related test gives you the OffSec macOS Researcher (OSMR) certification. This certification verifies your knowledge of macOS security and proves your ability to analyse and exploit complex vulnerabilities, positioning you as a highly sought-after specialist in the industry.
Who is it for?
The EXP-312 course is suitable for experienced penetration testers and security professionals with a strong foundation in macOS security who want to learn advanced exploitation methods and acquire a recognised macOS security certification (the OSMR certification).Exam Details
The OffSec macOS Researcher (OSMR) test is a rigorous 48-hour proctored assessment that replicates a real-world macOS environment. You will be responsible for discovering and exploiting vulnerabilities in macOS systems and apps, escalating privileges, and eventually getting root access.Benefits of the course
- Introduction to macOS Internals
- Debugging, Tracing & Hopper
- Shellcoding in macOS
- Dylib Injection
- Mach and Mach Injection
- Hooking
- XPC Exploitation
- Sandbox Escape
- Attacking Privacy (TCC)
- Symlink Attacks
Related Reading
Pricing note: The listed course price is for the course and certification package. Personalised instructor-led training and one-on-one mentorship are charged separately — contact our team for a customised training and mentorship quote.
Curriculum
- 10 Sections
- 10 Lessons
- 60 Hours
Expand all sectionsCollapse all sections
- Introduction to macOS Internals1
- Debugging, Tracing & Hopper1
- Shellcoding in macOS1
- Dylib Injection1
- Mach and Mach Injection1
- Hooking1
- XPC Exploitation1
- Sandbox Escape1
- Attacking Privacy (TCC)1
- Symlink Attacks1
Lessons:
