MacOS and iOS Internals, Volume III: Security & Insecurity

In this third and final volume of the "Mac OS and *OS Internals" trilogy, Jonathan Levin takes on the security of Apple's OSes. Part I of this volume explores the mechanisms and techniques employed - Including Auditing, Authentication, the MAC Framework, Code Signing, Sandboxing, SIP, AMFI and more - most of which are documented for the first time. Part II then discusses historical vulnerabilities in MacOS 10.10 and 10.11, as well as all modern exploits - from Evasi0n (iOS6) through Yalu for iOS 10.2 (including KPP bypass) and the latest async_wake (for 11.1.2) in unprecedented detail - showing both the vulnerabilities and their exploitation methods, step by step. With no source code for most of Apple's components or jailbreaks, the approach taken is that of deep reverse engineering, with plenty of hands-on examples, illustrations and decompilation of code. The book has also been updated with an appendix detailing the changes in iOS 12 and MacOS 10.14. The book's companion website (NewOSXBook.com) is full of tools, samples and other bonus material for this book, and also offers a direct buying option.
Buy On Amazon »

MacOS and iOS Internals, Volume I: User Mode (v1.2)
MacOS and iOS Internals, Volume I: User Mode (v1.2)

In this first volume of the "Mac OS and *OS Internals" trilogy, Jonathan Levin takes on the user mode components of Apple's oper ...

Details »
Mac OS X and iOS Internals: To the Apple's Core
Mac OS X and iOS Internals: To the Apple's Core

An in-depth look into Mac OS X and iOS kernels Powering Macs, iPhones, iPads and more, OS X and iOS are becoming ubiquitous. Whe ...

Details »
iOS Hacker's Handbook
iOS Hacker's Handbook

Discover all the security risks and exploits that can threaten iOS-based mobile devices iOS is Apple's mobile operating system f ...

Details »
OS X Incident Response: Scripting and Analysis
OS X Incident Response: Scripting and Analysis

OS X Incident Response: Scripting and Analysis is written for analysts who are looking to expand their understanding of a lesse ...

Details »