René's URL Explorer Experiment


Title: GitHub - malwareengineering/macOS-Security-and-Privacy-Guide: A practical guide to securing macOS. · GitHub

Open Graph Title: GitHub - malwareengineering/macOS-Security-and-Privacy-Guide: A practical guide to securing macOS.

X Title: GitHub - malwareengineering/macOS-Security-and-Privacy-Guide: A practical guide to securing macOS.

Description: A practical guide to securing macOS. Contribute to malwareengineering/macOS-Security-and-Privacy-Guide development by creating an account on GitHub.

Open Graph Description: A practical guide to securing macOS. Contribute to malwareengineering/macOS-Security-and-Privacy-Guide development by creating an account on GitHub.

X Description: A practical guide to securing macOS. Contribute to malwareengineering/macOS-Security-and-Privacy-Guide development by creating an account on GitHub.

Opengraph URL: https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide

X: @github

direct link

Domain: github.com

route-pattern/:user_id/:repository
route-controllerfiles
route-actiondisambiguate
fetch-noncev2:9507aaca-8df1-13f5-5d26-85cbb5f41fad
current-catalog-service-hashf3abb0cc802f3d7b95fc8762b94bdcb13bf39634c40c357301c4aa1d67a256fb
request-idE678:A4600:20C5C9:2C2CD3:6A5CB732
html-safe-nonce6d86e4c88ebbfa002210bb6c5a5e39a299b01b88114982df5cb8f2d5fa86fb9c
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFNjc4OkE0NjAwOjIwQzVDOToyQzJDRDM6NkE1Q0I3MzIiLCJ2aXNpdG9yX2lkIjoiMTc2NzQ0Mzc5MDcyMDQ0ODMwNiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac9965fbd88479e4f5b221bcca87cdc71ff306d4d7f49e26429fdc6065fe01f6ed
hovercard-subject-tagrepository:149157283
github-keyboard-shortcutsrepository,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location//
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
twitter:imagehttps://opengraph.githubassets.com/5f2ed341e48721274c2b24d2207355a7c35958518b9d31d54a9cf2b73e802ce9/malwareengineering/macOS-Security-and-Privacy-Guide
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/5f2ed341e48721274c2b24d2207355a7c35958518b9d31d54a9cf2b73e802ce9/malwareengineering/macOS-Security-and-Privacy-Guide
og:image:altA practical guide to securing macOS. Contribute to malwareengineering/macOS-Security-and-Privacy-Guide development by creating an account on GitHub.
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
hostnamegithub.com
expected-hostnamegithub.com
None5290d7e14309ad1e76106a9c4237bd1041517e83ea182c8ab756752cb0c6940b
turbo-cache-controlno-cache
go-importgithub.com/malwareengineering/macOS-Security-and-Privacy-Guide git https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide.git
octolytics-dimension-user_id8433873
octolytics-dimension-user_loginmalwareengineering
octolytics-dimension-repository_id149157283
octolytics-dimension-repository_nwomalwareengineering/macOS-Security-and-Privacy-Guide
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id41654081
octolytics-dimension-repository_parent_nwodrduh/macOS-Security-and-Privacy-Guide
octolytics-dimension-repository_network_root_id41654081
octolytics-dimension-repository_network_root_nwodrduh/macOS-Security-and-Privacy-Guide
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release9c975978430e9ad293956f2bbdaf153b1bd84a99
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#start-of-content
https://github.com/
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub Copilot appDirect agents from issue to mergehttps://github.com/features/ai/github-app
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
View all resourceshttps://github.com/resources
GitHub SponsorsFund open source developershttps://github.com/open-source/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/open-source/accelerator
GitHub Starshttps://stars.github.com
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/enterprise/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide
Sign up https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E&source=header-repo&source_repo=malwareengineering%2FmacOS-Security-and-Privacy-Guide
Reloadhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Reloadhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Reloadhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Please reload this pagehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
malwareengineering https://github.com/malwareengineering
macOS-Security-and-Privacy-Guidehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
drduh/macOS-Security-and-Privacy-Guidehttps://github.com/drduh/macOS-Security-and-Privacy-Guide
Notifications https://github.com/login?return_to=%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide
Fork 0 https://github.com/login?return_to=%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide
Star 0 https://github.com/login?return_to=%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide
Code https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Pull requests 0 https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/pulls
Actions https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/actions
Projects https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/projects
Security and quality 0 https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/security
Insights https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/pulse
Code https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Pull requests https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/pulls
Actions https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/actions
Projects https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/projects
Security and quality https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/security
Insights https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/pulse
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Brancheshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/branches
Tagshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/tags
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/branches
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/tags
480 Commitshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/commits/master/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/commits/master/
14F27_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/14F27_launchd.csv
14F27_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/14F27_launchd.csv
15B42_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/15B42_launchd.csv
15B42_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/15B42_launchd.csv
16A323_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/16A323_launchd.csv
16A323_launchd.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/16A323_launchd.csv
CNAMEhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/CNAME
CNAMEhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/CNAME
InstallESD_Hashes.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/InstallESD_Hashes.csv
InstallESD_Hashes.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/InstallESD_Hashes.csv
LICENSEhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/LICENSE
LICENSEhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/LICENSE
README-cn.mdhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/README-cn.md
README-cn.mdhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/README-cn.md
README.mdhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/README.md
README.mdhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/README.md
_config.ymlhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/_config.yml
_config.ymlhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/_config.yml
comments.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/comments.csv
comments.csvhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/comments.csv
read_launch_plists.pyhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/read_launch_plists.py
read_launch_plists.pyhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/blob/master/read_launch_plists.py
READMEhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
MIT licensehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
open an issuehttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues
简体中文https://github.com/xitu/macOS-Security-and-Privacy-Guide/blob/master/README-cn.md
Basicshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#basics
Preparing and installing macOShttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#preparing-and-installing-macos
Verifying installation integrityhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#verifying-installation-integrity
Creating a bootable USB installerhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-a-bootable-usb-installer
Creating an install imagehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-an-install-image
Manual wayhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#manual-way
Target disk modehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#target-disk-mode
Creating a recovery partitionhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-a-recovery-partition
Virtualizationhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#virtualization
First boothttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#first-boot
System activationhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-activation
Admin and standard user accountshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#admin-and-standard-user-accounts
Caveatshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#caveats
Setuphttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#setup
Full disk encryptionhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#full-disk-encryption
Firmwarehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firmware
Firewallhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firewall
Application layer firewallhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#application-layer-firewall
Third party firewallshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#third-party-firewalls
Kernel level packet filteringhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#kernel-level-packet-filtering
Serviceshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#services
Spotlight Suggestionshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#spotlight-suggestions
Homebrewhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#homebrew
DNShttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dns
Hosts filehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#hosts-file
DNSCrypthttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dnscrypt
Dnsmasqhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dnsmasq
Test DNSSEC validationhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#test-dnssec-validation
Captive portalhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#captive-portal
Certificate authoritieshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#certificate-authorities
OpenSSLhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#openssl
Curlhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#curl
Webhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#web
Privoxyhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#privoxy
Browserhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#browser
Google Chromehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#google-chrome
Firefoxhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firefox
Safarihttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#safari
Other Web browsershttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#other-web-browsers
Web browsers and privacyhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#web-browsers-and-privacy
Pluginshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#plugins
PGP/GPGhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#pgpgpg
OTRhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#otr
Torhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#tor
VPNhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#vpn
Viruses and malwarehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#viruses-and-malware
System Integrity Protectionhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-integrity-protection
Gatekeeper and XProtecthttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#gatekeeper-and-xprotect
Metadata and artifactshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#metadata-and-artifacts
Passwordshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#passwords
Backuphttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#backup
Wi-Fihttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#wi-fi
SSHhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#ssh
Physical accesshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#physical-access
System monitoringhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-monitoring
OpenBSM audithttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#openbsm-audit
DTracehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dtrace
Executionhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#execution
Networkhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#network
Binary Whitelistinghttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#binary-whitelisting
Miscellaneoushttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#miscellaneous
Related softwarehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#related-software
Additional resourceshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#additional-resources
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#basics
threat modelhttps://www.owasp.org/index.php/Application_Threat_Modeling
three letter agencyhttps://theintercept.com/document/2015/03/10/strawhorse-attacking-macos-ios-software-development-kit/
OpenBSDhttps://www.openbsd.org/
apthttps://en.wikipedia.org/wiki/Advanced_persistent_threat
Recognize threatshttps://www.usenix.org/system/files/1401_08-12_mickens.pdf
Apple security-announcehttps://lists.apple.com/mailman/listinfo/security-announce
regular backupshttps://www.amazon.com/o/ASIN/0596102461/backupcentral
freehttps://www.gnu.org/philosophy/free-sw.en.html
which macOS is nothttps://superuser.com/questions/19492/is-mac-os-x-open-source
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#preparing-and-installing-macos
Recovery Modehttps://support.apple.com/en-us/HT201314
https://cloud.githubusercontent.com/assets/12475110/20312189/8987c958-ab20-11e6-90fa-7fd7c8c1169e.png
App Storehttps://itunes.apple.com/us/app/macos-high-sierra/id1246284741
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#verifying-installation-integrity
code signedhttps://developer.apple.com/library/mac/documentation/Security/Conceptual/CodeSigningGuide/Procedures/Procedures.html#//apple_ref/doc/uid/TP40005929-CH4-SW6
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-a-bootable-usb-installer
Create a bootable installer for macOShttps://support.apple.com/en-us/HT201372
does not appear to workhttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/120
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-an-install-image
restoredhttps://en.wikipedia.org/wiki/Apple_Software_Restore
MagerValp/AutoDMGhttps://github.com/MagerValp/AutoDMG
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#manual-way
verifyhttps://support.apple.com/en-us/HT201259
InstallESD_Hashes.csvhttps://github.com/drduh/macOS-Security-and-Privacy-Guide/blob/master/InstallESD_Hashes.csv
HT204319https://support.apple.com/en-us/HT204319
Target Disk Modehttps://support.apple.com/en-us/HT201462
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#target-disk-mode
securely erasehttps://www.backblaze.com/blog/securely-erase-mac-ssd/
https://cloud.githubusercontent.com/assets/12475110/14804078/f27293c8-0b2d-11e6-8e1f-0fb0ac2f1a4d.png
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#creating-a-recovery-partition
AutoDMGhttps://github.com/MagerValp/AutoDMG
MagerValp/Create-Recovery-Partition-Installerhttps://github.com/MagerValp/Create-Recovery-Partition-Installer
RecoveryHDUpdate.dmghttps://support.apple.com/downloads/DL1464/en_US/RecoveryHDUpdate.dmg
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#virtualization
VMware Fusionhttps://www.vmware.com/products/fusion.html
Recovery Modehttps://support.apple.com/en-us/HT201314
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#first-boot
late 2016 MacBookshttps://www.ifixit.com/Device/MacBook_Pro_15%22_Late_2016_Touch_Bar
require online OS activationhttps://onemoreadmin.wordpress.com/2016/11/27/the-untouchables-apples-new-os-activation-for-touch-bar-macbook-pros/
clear NVRAMhttps://support.apple.com/en-us/HT204063
strong passwordhttps://www.explainxkcd.com/wiki/index.php/936:_Password_Strength
computer's name and local hostnamehttps://support.apple.com/kb/PH18720
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-activation
iOS, The Future Of macOS, Freedom, Security And Privacy In An Increasingly Hostile Global Environmenthttps://gist.github.com/iosecure/357e724811fe04167332ef54e736670d
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#admin-and-standard-user-accounts
weaknesses that can be exploitedhttps://bogner.sh/2014/03/another-mac-os-x-sudo-password-bypass/
unlocked by defaulthttps://csrc.nist.gov/publications/drafts/800-179/sp800_179_draft.pdf
Applehttps://help.apple.com/machelp/mac/10.12/index.html#/mh11389
othershttps://csrc.nist.gov/publications/drafts/800-179/sp800_179_draft.pdf
recommendationshttps://support.apple.com/HT203998
removed from FileVaulthttps://apple.stackexchange.com/a/94373
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#caveats
issue #167https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/167
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#setup
issue #179https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/179
this posthttps://superuser.com/a/395738
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#full-disk-encryption
FileVaulthttps://en.wikipedia.org/wiki/FileVault
not always preventshttps://blog.frizk.net/2016/12/filevault-password-retrieval.html
efficiently in hardwarehttps://web.archive.org/web/20180720195105/https://software.intel.com/sites/default/files/m/d/4/1/d/8/AES_WP_Rev_03_Final_2010_01_26.pdf
more securehttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/230
enthttp://www.fourmilab.ch/random/
Entropy and Random Number Generatorshttps://calomel.org/entropy_random_number_generators.html
Fun with encryption and randomnesshttps://rsmith.home.xs4all.nl/howto/fun-with-encryption-and-randomness.html
OneRNGhttp://onerng.info/
Infiltrate the Vault: Security Analysis and Decryption of Lion Full Disk Encryptionhttps://eprint.iacr.org/2012/374.pdf
presentationhttp://www.cl.cam.ac.uk/~osc22/docs/slides_fv2_ifip_2013.pdf
IEEE Std 1619-2007 “The XTS-AES Tweakable Block Cipher”http://libeccio.di.unisa.it/Crypto14/Lab/p1619.pdf
issue #124https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/124
Best Practices for Deploying FileVault 2https://training.apple.com/pdf/WP_FileVault2.pdf
Lest We Remember: Cold Boot Attacks on Encryption Keyshttps://www.usenix.org/legacy/event/sec08/tech/full_papers/halderman/halderman.pdf
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firmware
can be helpful if your laptop is lost or stolenhttps://www.ftc.gov/news-events/blogs/techftc/2015/08/virtues-strong-enduser-device-controls
pcileechhttps://github.com/ufrisk/pcileech
SPI programmerhttps://reverse.put.as/2016/06/25/apple-efi-firmware-passwords-and-the-scbo-myth/
Bus Piratehttp://ho.ax/posts/2012/06/unbricking-a-macbook/
Recovery Modehttps://support.apple.com/en-au/HT201314
https://cloud.githubusercontent.com/assets/12475110/17075918/0f851c0c-50e7-11e6-904d-0b56cf0080c1.png
Dediprog SF600http://www.dediprog.com/pd/spi-flash-solution/sf600
HT204455https://support.apple.com/en-au/HT204455
LongSoft/UEFIToolhttps://github.com/LongSoft/UEFITool
chipsec/chipsechttps://github.com/chipsec/chipsec
this blog posthttp://michaellynn.github.io/2018/07/27/booting-secure/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firewall
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#application-layer-firewall
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#third-party-firewalls
Little Snitchhttps://www.obdev.at/products/littlesnitch/index.html
Hands Offhttps://www.oneperiodic.com/products/handsoff/
Radio Silencehttps://radiosilenceapp.com/
Security Growlerhttps://pirate.github.io/security-growler/
https://cloud.githubusercontent.com/assets/12475110/10596588/c0eed3c0-76b3-11e5-95b8-9ce7d51b3d82.png
kernel extensionhttps://developer.apple.com/library/mac/documentation/Darwin/Conceptual/KernelProgramming/Extend/Extend.html
OS vulnerabilitieshttps://www.blackhat.com/docs/us-15/materials/us-15-Wardle-Writing-Bad-A-Malware-For-OS-X.pdf
deletes itselfhttps://www.cnet.com/how-to/how-to-remove-the-flashback-malware-from-os-x/
Network Kernel Extensions Programming Guidehttps://developer.apple.com/library/mac/documentation/Darwin/Conceptual/NKEConceptual/socket_nke/socket_nke.html#//apple_ref/doc/uid/TP40001858-CH228-SW1
Shut up snitch! – reverse engineering and exploiting a critical Little Snitch vulnerabilityhttps://reverse.put.as/2016/07/22/shut-up-snitch-reverse-engineering-and-exploiting-a-critical-little-snitch-vulnerability/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#kernel-level-packet-filtering
IceFloorhttp://www.hanynet.com/icefloor/
Murushttps://www.murusfirewall.com/
NAThttps://www.grc.com/nat/nat.htm
Merit RADbhttp://www.radb.net/
Facebookhttps://ipinfo.io/AS32934
fix-macosx/net-monitorhttps://github.com/fix-macosx/net-monitor
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#services
System Integrity Protectionhttps://github.com/drduh/macOS-Security-and-Privacy-Guide#system-integrity-protection
fix-macosx/yosemite-phone-homehttps://github.com/fix-macosx/yosemite-phone-home
l1k/osxparanoiahttps://github.com/l1k/osxparanoia
karek314/macOS-home-call-drophttps://github.com/karek314/macOS-home-call-drop
launchd.infohttp://launchd.info/
Apple's Daemons and Services Programming Guidehttps://developer.apple.com/library/mac/documentation/MacOSX/Conceptual/BPSystemStartup/Chapters/CreatingLaunchdJobs.html
Technical Note TN2083https://developer.apple.com/library/mac/technotes/tn2083/_index.html
KnockKnockhttps://github.com/synack/knockknock
single user modehttps://support.apple.com/en-us/HT201573
Consolehttps://en.wikipedia.org/wiki/List_of_macOS_components#Console
Activity Monitorhttps://support.apple.com/en-us/HT201464
cirrusj.github.io/Yosemite-Stop-Launchhttps://cirrusj.github.io/Yosemite-Stop-Launch/
Provisioning OS X and Disabling Unnecessary Serviceshttps://vilimpoc.org/blog/2014/01/15/provisioning-os-x-and-disabling-unnecessary-services/
Mac OSX Startuphttp://www.malicious-streams.com/article/Mac_OSX_Startup.pdf
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#spotlight-suggestions
fix-macosx.comhttps://fix-macosx.com/
issue 164https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/164
https://web.archive.org/web/20180412124005/https://fix10.isleaked.com/https://web.archive.org/web/20180412124005/https://fix10.isleaked.com/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#homebrew
Homebrewhttps://brew.sh/
Apple’s great GPL purgehttp://meta.ath0.com/2012/02/05/apples-great-gpl-purge/
install Homebrewhttps://github.com/Homebrew/brew/blob/master/docs/Installation.md#installation
fairly securehttps://github.com/Homebrew/homebrew/issues/18036
Homebrew's Anonymous Aggregate User Behaviour Analyticshttps://github.com/Homebrew/brew/blob/master/docs/Analytics.md
additional security optionshttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/138
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dns
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#hosts-file
hosts filehttps://en.wikipedia.org/wiki/Hosts_(file)
2ndalpha/gasmaskhttps://github.com/2ndalpha/gasmask
herehttps://someonewhocares.org/hosts/ipv6/
someonewhocares.orghttps://someonewhocares.org/hosts/zero/hosts
l1k/osxparanoia/blob/master/hostshttps://github.com/l1k/osxparanoia/blob/master/hosts
StevenBlack/hostshttps://github.com/StevenBlack/hosts
FreeBSD Configuration Fileshttps://www.freebsd.org/doc/handbook/configtuning-configfiles.html
dnsmasqhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dnsmasq
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dnscrypt
dnscrypthttps://dnscrypt.info
alterstep/dnscrypt-osxclienthttps://github.com/alterstep/dnscrypt-osxclient
dnscrypt-proxy version 2https://github.com/jedisct1/dnscrypt-proxy
DNSCrypt Menuhttps://github.com/JayBrown/DNSCrypt-Menu
dnscrypt-proxy-switcherhttps://github.com/jedisct1/bitbar-dnscrypt-proxy-switcher
https://cloud.githubusercontent.com/assets/12475110/19222914/8e6f853e-8e31-11e6-8dd6-27c33cbfaea5.png
dnscrypt serverhttps://github.com/Cofyc/dnscrypt-wrapper
drduh/Debian-Privacy-Server-Guide#dnscrypthttps://github.com/drduh/Debian-Privacy-Server-Guide#dnscrypt
public servershttps://github.com/jedisct1/dnscrypt-proxy/blob/master/dnscrypt-resolvers.csv
Sample configuration file for dnscrypt-proxyhttps://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/master/dnscrypt-proxy.conf
What is a DNS leakhttps://dnsleaktest.com/what-is-a-dns-leak.html
mDNSResponder manual pagehttps://developer.apple.com/library/mac/documentation/Darwin/Reference/ManPages/man8/mDNSResponder.8.html
ipv6-test.comhttp://ipv6-test.com/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dnsmasq
dnsmasqhttp://www.thekelleys.org.uk/dnsmasq/doc.html
not providedhttp://bcn.boulder.co.us/~neal/ietf/verisign-abuse.html
by your ISPhttp://hackercodex.com/guide/how-to-stop-isp-dns-server-hijacking/
Google DNShttps://developers.google.com/speed/public-dns/
OpenDNShttps://www.opendns.com/home-internet-security/
DNSSEChttps://en.wikipedia.org/wiki/Domain_Name_System_Security_Extensions
from IANA websitehttps://www.iana.org/dnssec/files
dnssec.net websitehttp://www.dnssec.net
recommended settingshttps://github.com/drduh/config/blob/master/dnsmasq.conf
privileged porthttps://unix.stackexchange.com/questions/16564/why-are-the-first-1024-ports-restricted-to-the-root-user-only
issue #24https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/24
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#test-dnssec-validation
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#captive-portal
Apple's secret "wispr" requesthttps://web.archive.org/web/20171008071031/http://blog.erratasec.com/2010/09/apples-secret-wispr-request.html
How to disable the captive portal window in Mac OS Lionhttps://web.archive.org/web/20130407200745/http://www.divertednetworks.net/apple-captiveportal.html
An undocumented change to Captive Network Assistant settings in OS X 10.10 Yosemitehttps://web.archive.org/web/20170622064304/https://grpugh.wordpress.com/2014/10/29/an-undocumented-change-to-captive-network-assistant-settings-in-os-x-10-10-yosemite/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#certificate-authorities
over 200https://support.apple.com/en-us/HT202858
Certification Authority Trust Trackerhttps://github.com/kirei/catt
Analysis of the HTTPS certificate ecosystemhttps://conferences.sigcomm.org/imc/2013/papers/imc257-durumericAemb.pdf
You Won’t Be Needing These Any More: On Removing Unused Certificates From Trust Storeshttps://www.ifca.ai/fc14/papers/fc14_submission_100.pdf
https://cloud.githubusercontent.com/assets/12475110/19222972/6b7aabac-8e32-11e6-8efe-5d3219575a98.png
man in the middlehttps://en.wikipedia.org/wiki/Man-in-the-middle_attack
possiblehttps://en.wikipedia.org/wiki/DigiNotar#Issuance_of_fraudulent_certificates
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#openssl
not currenthttps://apple.stackexchange.com/questions/200582/why-is-apple-using-an-older-version-of-openssl
morehttps://stackoverflow.com/questions/27502215/difference-between-openssl-09-8z-and-1-0-1
Secure Transporthttps://developer.apple.com/documentation/security/secure_transport
Cryptographic Services Guidehttps://developer.apple.com/library/mac/documentation/Security/Conceptual/cryptoservices/GeneralPurposeCrypto/GeneralPurposeCrypto.html
surprise youhttps://hynek.me/articles/apple-openssl-verification-surprises/
issue #39https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/39
Comparison of TLS implementationshttps://en.wikipedia.org/wiki/Comparison_of_TLS_implementations
How's My SSLhttps://www.howsmyssl.com/
Qualys SSL Labs Toolshttps://www.ssllabs.com/projects/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#curl
Secure Transporthttps://developer.apple.com/library/mac/documentation/Security/Reference/secureTransportRef/
optionshttps://curl.haxx.se/docs/manpage.html
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#web
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#privoxy
Privoxyhttps://www.privoxy.org/
silvester.org.ukhttps://silvester.org.uk/privoxy/OSX/
Sourceforgehttps://sourceforge.net/projects/ijbswa/files/Macintosh%20%28OS%20X%29/
more securehttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/65
http://p.p/http://p.p/
redirecting blocked requestshttps://www.privoxy.org/user-manual/actions-file.html#SET-IMAGE-BLOCKER
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#browser
SOPhttps://en.wikipedia.org/wiki/Same-origin_policy
Chromehttps://courses.csail.mit.edu/6.857/2016/files/24.pdf
Google Chromehttps://www.google.com/chrome/browser/desktop/
Firefoxhttps://www.mozilla.org/en-US/firefox/new/
Safarihttps://www.apple.com/safari/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#google-chrome
Google Chromehttps://www.google.com/chrome/browser/desktop/
Chromium projecthttps://www.chromium.org/Home
followinghttps://fossbytes.com/difference-google-chrome-vs-chromium-browser/
PDF viewerhttp://0xdabbad00.com/2013/01/13/most-secure-pdf-viewer-chrome-pdf-viewer/
separate profileshttps://www.chromium.org/user-experience/multi-profiles
sandboxinghttps://www.chromium.org/developers/design-documents/sandbox
frequent updateshttps://googlechromereleases.blogspot.com/
impressive credentialshttps://www.chromium.org/Home/chromium-security/brag-sheet
bountyhttps://www.google.com/about/appsecurity/chrome-rewards/
Project Zerohttps://googleprojectzero.blogspot.com
5 dollar lifetime feehttps://developer.chrome.com/webstore/publish#pay-the-developer-signup-fee
node.jshttps://nodejs.org/en/
Chrome's V8https://developers.google.com/v8/
Electronhttps://electron.atom.io/
uMatrixhttps://github.com/gorhill/uMatrix
uBlock Originhttps://github.com/gorhill/uBlock
Privacy Badgerhttps://www.eff.org/privacybadger
HTTPSEverywherehttps://www.eff.org/https-everywhere
CertPatrolhttp://patrol.psyced.org/
Incognitohttps://support.google.com/chrome/answer/7440301
Chromium Securityhttps://www.chromium.org/Home/chromium-security
Chromium Privacyhttps://www.chromium.org/Home/chromium-privacy
DNS prefetchinghttps://www.chromium.org/developers/design-documents/dns-prefetching
DNS Prefetching and Its Privacy Implicationshttps://www.usenix.org/legacy/event/leet10/tech/full_papers/Krishnan.pdf
informationhttps://www.google.com/policies/privacy/#infocollect
usehttps://www.google.com/policies/privacy/#infouse
Google serviceshttps://www.google.com/services/#?modal_active=none
account settingshttps://myaccount.google.com/privacy?pli=1
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#firefox
Firefoxhttps://www.mozilla.org/en-US/firefox/new/
Quantumhttps://wiki.mozilla.org/Quantum
Photonhttps://wiki.mozilla.org/Firefox/Photon/Updates
Rusthttps://www.rust-lang.org/en-US/
bountyhttps://www.mozilla.org/en-US/security/bug-bounty/
#2https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/2
#90https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/90
TheCreeper/PrivacyFoxhttps://github.com/TheCreeper/PrivacyFox
pyllyukko/user.jshttps://github.com/pyllyukko/user.js
ghacksuserjs/ghacks-user.jshttps://github.com/ghacksuserjs/ghacks-user.js/
NoScripthttps://noscript.net/
tracking protectionhttps://developer.mozilla.org/en-US/Firefox/Privacy/Tracking_Protection
Containershttps://testpilot.firefox.com/experiments/containers
Web Extension SDKhttps://developer.mozilla.org/en-US/Add-ons/Legacy_add_ons
paperhttps://www.exploit-db.com/docs/24541.pdf
Web Extension Apihttps://developer.mozilla.org/en-US/Add-ons/WebExtensions
issuehttps://bugzilla.mozilla.org/show_bug.cgi?id=1393493
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#safari
Safarihttps://www.apple.com/safari/
WebKithttps://en.wikipedia.org/wiki/WebKit
Blinkhttps://www.chromium.org/blink
Content blockershttps://webkit.org/blog/3476/content-blockers-first-look/
Intelligent Tracking Preventionhttps://webkit.org/blog/7675/intelligent-tracking-prevention/
bounty programhttps://developer.apple.com/bug-reporting/
presentationhttps://www.blackhat.com/docs/us-16/materials/us-16-Krstic.pdf
BlackHathttps://www.blackhat.com/us-16/briefings.html#behind-the-scenes-of-ios-security
developer subscriptionhttps://developer.apple.com/support/compare-memberships/
encryptedhttps://support.apple.com/en-gb/HT202303
Safari Technology Previewhttps://developer.apple.com/safari/technology-preview/
dgraham/Ka-Blockhttps://github.com/dgraham/Ka-Block
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#other-web-browsers
closed sourcehttp://yro.slashdot.org/comments.pl?sid=4176879&cid=44774943
poorly maintainedhttps://plus.google.com/+JustinSchuh/posts/69qw9wZVH8z
have bugshttps://code.google.com/p/google-security-research/issues/detail?id=679
The Private Life of Chromium Browsershttps://web.archive.org/web/20180517132144/http://thesimplecomputer.info/the-private-life-of-chromium-browsers
Bravehttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/94
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#web-browsers-and-privacy
Navigatorhttps://developer.mozilla.org/en-US/docs/Web/API/Navigator
HowTo: Privacy & Security Conscious Browsinghttps://gist.github.com/atcuno/3425484ac5cce5298932
browserleaks.comhttps://www.browserleaks.com/
EFF Panopticlickhttps://panopticlick.eff.org/
WebRTChttps://en.wikipedia.org/wiki/WebRTC#Concerns
uBlock Originhttps://github.com/gorhill/uBlock/wiki/Prevent-WebRTC-from-leaking-local-IP-address
rentamob/WebRTC-Leak-Preventhttps://github.com/rentamob/WebRTC-Leak-Prevent
system hackhttps://github.com/JayBrown/Disable-and-toggle-WebRTC-in-macOS-Safari
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#plugins
HTML5https://help.netflix.com/en/node/23742
security riskshttps://news.ycombinator.com/item?id=9901480
Hacking Team Flash Zero-Dayhttps://blog.trendmicro.com/trendlabs-security-intelligence/hacking-team-flash-zero-day-integrated-into-exploit-kits/
Java Trojan BackDoor.Flashbackhttps://en.wikipedia.org/wiki/Trojan_BackDoor.Flashback
Acrobat Reader: Security Vulnerabilitieshttps://www.cvedetails.com/vulnerability-list/vendor_id-53/product_id-497/Adobe-Acrobat-Reader.html
Angling for Silverlight Exploitshttps://blogs.cisco.com/security/angling-for-silverlight-exploits
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#pgpgpg
symmetricallyhttps://en.wikipedia.org/wiki/Symmetric-key_algorithm
asymmetricallyhttps://en.wikipedia.org/wiki/Public-key_cryptography
GPG Suitehttps://gpgtools.org/
drduh/config/gpg.confhttps://github.com/drduh/config/blob/master/gpg.conf
drduh/YubiKey-Guidehttps://github.com/drduh/YubiKey-Guide
onlinehttps://alexcabal.com/creating-the-perfect-gpg-keypair/
guideshttps://security.stackexchange.com/questions/31594/what-is-a-good-general-purpose-gnupg-key-setup
practicehttps://help.riseup.net/en/security/message-security/openpgp/best-practices
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#otr
XMPPhttps://xmpp.org/about
Adiumhttps://adium.im/
disable logginghttps://trac.adium.im/ticket/15722
profanityhttp://www.profanity.im/
Tor Messengerhttps://blog.torproject.org/blog/tor-messenger-beta-chat-over-tor-easily
Ricochethttps://ricochet.im/
security audithttps://ricochet.im/files/ricochet-ncc-audit-2016-01.pdf
Off-the-Record Communication, or, Why Not To Use PGPhttps://otr.cypherpunks.ca/otr-wpes.pdf
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#tor
offical Tor Project Web sitehttps://www.torproject.org/projects/torbrowser.html
How to verify signatures for packageshttps://www.torproject.org/docs/verifying-signatures.html
exit nodehttps://en.wikipedia.org/wiki/Tor_(anonymity_network)#Exit_node_eavesdropping
Tor Protocol Specificationhttps://gitweb.torproject.org/torspec.git/tree/tor-spec.txt
Tor/TLSHistoryhttps://trac.torproject.org/projects/tor/wiki/org/projects/Tor/TLSHistory
pluggable transporthttps://www.torproject.org/docs/pluggable-transports.html
Yawning/obfs4proxyhttps://github.com/Yawning/obfs4
SRI-CSL/stegotorushttps://github.com/SRI-CSL/stegotorus
Tor relayhttps://www.torproject.org/docs/tor-relay-debian.html
bridgehttps://www.torproject.org/docs/bridges.html.en#RunningABridge
VirtualBoxhttps://www.virtualbox.org/wiki/Downloads
VMwarehttps://www.vmware.com/products/fusion
GNU/Linuxhttp://www.brianlinkletter.com/installing-debian-linux-in-a-virtualbox-virtual-machine/
BSDhttps://www.openbsd.org/faq/faq4.html
anonymityhttps://www.privateinternetaccess.com/blog/2013/10/how-does-privacy-differ-from-anonymity-and-why-are-both-important/
correlationhttps://blog.torproject.org/category/tags/traffic-correlation
Seeking Anonymity in an Internet Panopticonhttp://bford.info/pub/net/panopticon-cacm.pdf
Traffic Correlation on Tor by Realistic Adversarieshttp://www.ohmygodel.com/publications/usersrouted-ccs13.pdf
Invisible Internet Project (I2P)https://geti2p.net/en/about/intro
Tor comparisonhttps://geti2p.net/en/comparison/tor
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#vpn
connection metadatahttps://security.stackexchange.com/questions/142833/does-https-encrypt-metadata#142855
drduh/Debian-Privacy-Server-Guidehttps://github.com/drduh/Debian-Privacy-Server-Guide
PPTPhttps://en.wikipedia.org/wiki/Point-to-Point_Tunneling_Protocol#Security
OpenVPNhttps://en.wikipedia.org/wiki/OpenVPN
scy/8122924https://gist.github.com/scy/8122924
sarfata/voodooprivacyhttps://github.com/sarfata/voodooprivacy
hwdsl2/setup-ipsec-vpnhttps://github.com/hwdsl2/setup-ipsec-vpn
hwdsl2/docker-ipsec-vpn-serverhttps://github.com/hwdsl2/docker-ipsec-vpn-server
issue #114https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/114
technical overviewhttps://blog.timac.org/2018/0717-macos-vpn-architecture/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#viruses-and-malware
ever-increasinghttps://www.documentcloud.org/documents/2459197-bit9-carbon-black-threat-research-report-2015.html
Java bundling Ask Toolbarhttps://www.zdnet.com/article/oracle-extends-its-adware-bundling-to-include-java-for-macs/
Mac.BackDoor.iWormhttps://docs.google.com/document/d/1YOfXRUQJgMjJSLBSoLiUaSZfiaS_vU3aG4Bvjmz6Dxs/edit?pli=1
Malwarebytes Anti-Malware for Machttps://www.malwarebytes.com/antimalware/mac/
Methods of malware persistence on Mac OS Xhttps://www.virusbtn.com/pdf/conference/vb2014/VB2014-Wardle.pdf
Malware Persistence on OS X Yosemitehttps://www.rsaconference.com/events/us15/agenda/sessions/1591/malware-persistence-on-os-x-yosemite
Knock Knockhttps://github.com/synack/knockknock
Block Blockhttps://objective-see.com/products/blockblock.html
Ostiariushttps://objective-see.com/products/ostiarius.html
issue #90https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/90
maclaunch.shhttps://github.com/hazcod/maclaunch
Sophail: Applied attacks against Antivirushttps://lock.cmpxchg8b.com/sophailv2.pdf
Analysis and Exploitation of an ESET Vulnerabilityhttps://googleprojectzero.blogspot.ro/2015/06/analysis-and-exploitation-of-eset.html
a trivial Avast RCEhttps://code.google.com/p/google-security-research/issues/detail?id=546
Popular Security Software Came Under Relentless NSA and GCHQ Attackshttps://theintercept.com/2015/06/22/nsa-gchq-targeted-kaspersky/
How Israel Caught Russian Hackers Scouring the World for U.S. Secretshttps://www.nytimes.com/2017/10/10/technology/kaspersky-lab-israel-russia-hacking.html
AVG: "Web TuneUP" extension multiple critical vulnerabilitieshttps://code.google.com/p/google-security-research/issues/detail?id=675
issue #44https://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/44
whitepaperhttps://www.cylance.com/content/dam/cylance/pdfs/data_sheets/CylancePROTECT.pdf
Cyberforcehttps://cybrforce.com
Malware Managedhttps://www.malwaremanaged.com
examplehttps://arstechnica.com/security/2015/08/0-day-bug-in-fully-patched-os-x-comes-under-active-exploit-to-hijack-macs/
The Safe Machttp://www.thesafemac.com/
Malwarebytes Bloghttps://blog.malwarebytes.com/
VirusTotalhttps://www.virustotal.com/#/home/upload
Hacking Teamhttps://www.schneier.com/blog/archives/2015/07/hacking_team_is.html
root installation for MacOShttps://github.com/hackedteam/vector-macos-root
Support driver for Mac Agenthttps://github.com/hackedteam/driver-macos
RCS Agent for Machttps://github.com/hackedteam/core-macos
A Brief Analysis of an RCS Implant Installerhttps://objective-see.com/blog/blog_0x0D.html
reverse.put.ashttps://reverse.put.as/2016/02/29/the-italian-morons-are-back-what-are-they-up-to-this-time/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-integrity-protection
System Integrity Protectionhttps://support.apple.com/en-us/HT204899
can be disabledhttps://derflounder.wordpress.com/2015/10/01/system-integrity-protection-adding-another-layer-to-apples-security-model/
What's New in OS X 10.11https://developer.apple.com/library/prerelease/mac/releasenotes/MacOSX/WhatsNewInOSX/Articles/MacOSX10_11.html
What is the “rootless” feature in El Capitan, really?https://apple.stackexchange.com/questions/193368/what-is-the-rootless-feature-in-el-capitan-really
SIP disabledhttps://appleinsider.com/articles/16/11/17/system-integrity-protection-disabled-by-default-on-some-touch-bar-macbook-pros
enable SIPhttps://developer.apple.com/library/content/documentation/Security/Conceptual/System_Integrity_Protection_Guide/ConfiguringSystemIntegrityProtection/ConfiguringSystemIntegrityProtection.html
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#gatekeeper-and-xprotect
Mac Malware Guide : How does Mac OS X protect me?http://www.thesafemac.com/mmg-builtin/
Gatekeeper, XProtect and the Quarantine attributehttps://ilostmynotes.blogspot.com/2012/06/gatekeeper-xprotect-and-quarantine.html
herehttps://www.zoharbabin.com/hey-mac-i-dont-appreciate-you-spying-on-me-hidden-downloads-log-in-os-x/
clear the filehttps://superuser.com/questions/90008/how-to-clear-the-contents-of-a-file-from-the-command-line
make it immutablehttp://hints.macworld.com/article.php?story=20031017061722471
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#metadata-and-artifacts
HFS+ extended attributeshttps://en.wikipedia.org/wiki/Extended_file_attributes#OS_X
'quicklook' cache may leak encrypted datahttps://objective-see.com/blog/blog_0x30.html
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#passwords
/dev/urandomhttps://github.com/jedisct1/libsodium/issues/594
anders/pwgenhttps://github.com/anders/pwgen
PBKDF2 derived keyhttps://en.wikipedia.org/wiki/PBKDF2
Breaking into the OS X keychainhttp://juusosalonen.com/post/30923743427/breaking-into-the-os-x-keychain
does not encrypthttps://github.com/drduh/macOS-Security-and-Privacy-Guide/issues/118
drduh/Pursehttps://github.com/drduh/Purse
drduh/pwd.shhttps://github.com/drduh/pwd.sh
two factor authenticationhttps://en.wikipedia.org/wiki/Two-factor_authentication
Yubikeyhttps://www.yubico.com/products/yubikey-hardware/yubikey-neo/
drduh/YubiKey-Guidehttps://github.com/drduh/YubiKey-Guide
trmm.net/Yubikeyhttps://trmm.net/Yubikey
Yubicohttps://www.yubico.com/wp-content/uploads/2016/02/Yubico_YubiKeyMacOSXLogin_en.pdf
U2F Zerohttps://www.u2fzero.com/
set it uphttps://microamps.gibsjose.com/u2f-authentication-on-os-x/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#backup
YubiKeyhttps://github.com/drduh/YubiKey-Guide
SpiderOakhttps://spideroak.com/
Arqhttps://www.arqbackup.com/
Espionagehttps://www.espionageapp.com/
restichttps://restic.github.io/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#wi-fi
Signals from the Crowd: Uncovering Social Relationships through Smartphone Probeshttps://conferences.sigcomm.org/imc/2013/papers/imc148-barberaSP106.pdf
Wi-Fi told me everything about youhttp://confiance-numerique.clermont-universite.fr/Slides/M-Cunche-2014.pdf
spoof the MAC addresshttps://en.wikipedia.org/wiki/MAC_spoofing
feross/SpoofMAChttps://github.com/feross/SpoofMAC
not securehttp://www.howtogeek.com/167783/htg-explains-the-difference-between-wep-wpa-and-wpa2-wireless-encryption-and-why-it-matters/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#ssh
set uphttp://nerderati.com/2011/03/17/simplify-your-life-with-an-ssh-config-file/
hashinghttp://nms.csail.mit.edu/projects/ssh/
optionshttps://www.freebsd.org/cgi/man.cgi?query=ssh_config&sektion=5
macOS Sierra permanently remembers SSH key passphrases by defaulthttps://openradar.appspot.com/28394826
encrypted tunnelhttp://blog.trackets.com/2014/05/17/ssh-tunnel-local-and-remote-port-forwarding-explained-with-examples.html
SOCKS proxyhttps://www.mikeash.com/ssh_socks.html
hardeninghttps://stribika.github.io/2015/01/04/secure-secure-shell.html
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#physical-access
Thunderstrikehttps://trmm.net/Thunderstrike
usbkillhttps://github.com/hephaest0s/usbkill
privacy filterhttps://www.amazon.com/s/ref=nb_sb_noss_2?url=node%3D15782001&field-keywords=macbook
Nail polishhttps://trmm.net/Glitter
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#system-monitoring
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#openbsm-audit
ilostmynotes.blogspot.comhttps://ilostmynotes.blogspot.com/2013/10/openbsm-auditd-on-os-x-these-are-logs.html
derflounder.wordpress.comhttps://derflounder.wordpress.com/2012/01/30/openbsm-auditing-on-mac-os-x/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#dtrace
System Integrity Protectionhttps://github.com/drduh/macOS-Security-and-Privacy-Guide#system-integrity-protection
interfereshttps://internals.exposed/blog/dtrace-vs-sip.html
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#execution
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#network
Wiresharkhttps://www.wireshark.org/
BonzaiThePenguin/Loadinghttps://github.com/BonzaiThePenguin/Loading
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#binary-whitelisting
google/santahttps://github.com/google/santa/
Kernel Authorization APIhttps://developer.apple.com/library/content/technotes/tn2127/_index.html
Releaseshttps://github.com/google/santa/releases
https://cloud.githubusercontent.com/assets/12475110/21062284/14ddde88-be1e-11e6-8e9b-32f8a44c0cf6.png
Zentralhttps://github.com/zentralopensource/zentral
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#miscellaneous
Diagnostics & Usage Datahttps://github.com/fix-macosx/fix-macosx/wiki/Diagnostics-&-Usage-Data
VLC media playerhttps://www.videolan.org/vlc/index.html
Transmissionhttps://www.transmissionbt.com/download/
malware may still find its way inhttp://researchcenter.paloaltonetworks.com/2016/03/new-os-x-ransomware-keranger-infected-transmission-bittorrent-client-installer/
Which is the best blocklist for Transmissionhttps://giuliomac.wordpress.com/2014/02/19/best-blocklist-for-transmission/
johntyree/3331662https://gist.github.com/johntyree/3331662
dutihttp://duti.org/
Protecting Yourself From Sparklegatehttps://www.taoeffect.com/blog/2016/02/apologies-sky-kinda-falling-protecting-yourself-from-sparklegate/
tty_tickets flaghttps://derflounder.wordpress.com/2016/09/21/tty_tickets-option-now-on-by-default-for-macos-sierras-sudo-tool/
Secure Keyboard Entryhttps://security.stackexchange.com/questions/47749/how-secure-is-secure-keyboard-entry-in-mac-os-xs-terminal
YubiKeyhttps://mig5.net/content/secure-keyboard-entry-os-x-blocks-interaction-yubikeys
TextExpanderhttps://smilesoftware.com/textexpander/secureinput
multicast advertisementshttps://www.trustwave.com/Resources/SpiderLabs-Blog/mDNS---Telling-the-world-about-you-(and-your-device)/
Disable Handoffhttps://apple.stackexchange.com/questions/151481/why-is-my-macbook-visibile-on-bluetooth-after-yosemite-install
sandboxinghttps://developer.apple.com/legacy/library/documentation/Darwin/Reference/ManPages/man1/sandbox-exec.1.html
fG! Sandbox Guidehttps://reverse.put.as/wp-content/uploads/2011/09/Apple-Sandbox-Guide-v0.1.pdf
s7ephen/OSX-Sandbox--Seatbelt--Profileshttps://github.com/s7ephen/OSX-Sandbox--Seatbelt--Profiles
2006http://osxbook.com/book/bonus/chapter10/tpm/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#related-software
strongholdhttps://github.com/alichtman/stronghold
Santahttps://github.com/google/santa
kristovatlas/osx-config-checkhttps://github.com/kristovatlas/osx-config-check
Lockdownhttps://objective-see.com/products/lockdown.html
Dylib Hijack Scannerhttps://objective-see.com/products/dhs.html
F-Secure XFENCEhttps://campaigns.f-secure.com/xfence/
Little Flockerhttps://github.com/drduh/macOS-Security-and-Privacy-Guide/pull/237
facebook/osqueryhttps://github.com/facebook/osquery
google/grrhttps://github.com/google/grr
yelp/osxcollectorhttps://github.com/yelp/osxcollector
jipegit/OSXAuditorhttps://github.com/jipegit/OSXAuditor
libyal/libfvdehttps://github.com/libyal/libfvde
CISOfy/lynishttps://github.com/CISOfy/lynis
Zentralhttps://github.com/zentralopensource/zentral
The Eclectic Light Company - Downloadshttps://eclecticlight.co/downloads/
https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#additional-resources
MacOS Hardening Guide - Appendix of *OS Internals: Volume III - Security & Insecurity Internalshttp://newosxbook.com/files/moxii3/AppendixA.pdf
Mac Developer Library: Secure Coding Guidehttps://developer.apple.com/library/mac/documentation/Security/Conceptual/SecureCodingGuide/Introduction.html
OS X Core Technologies Overview White Paperhttps://www.apple.com/osx/all-features/pdf/osx_elcapitan_core_technologies_overview.pdf
Reverse Engineering Mac OS X bloghttps://reverse.put.as/
Reverse Engineering Resourceshttp://samdmarshall.com/re.html
Patrick Wardle's Objective-See bloghttps://objective-see.com/blog.html
Managing Macs at Google Scale (LISA '13)https://www.usenix.org/conference/lisa13/managing-macs-google-scale
OS X Hardening: Securing a Large Global Mac Fleet (LISA '13)https://www.usenix.org/conference/lisa13/os-x-hardening-securing-large-global-mac-fleet
DoD Security Technical Implementation Guides for Mac OShttp://iase.disa.mil/stigs/os/mac/Pages/mac-os.aspx
The EFI boot processhttp://web.archive.org/web/20160508052211/http://homepage.ntlworld.com/jonathan.deboynepollard/FGA/efi-boot-process.html
The Intel Mac boot processhttp://refit.sourceforge.net/info/boot_process.html
Userland Persistence on Mac OS Xhttps://archive.org/details/joshpitts_shmoocon2015
Developing Mac OSX kernel rootkitshttp://phrack.org/issues/66/16.html#article
IOKit kernel code execution exploithttps://code.google.com/p/google-security-research/issues/detail?id=135
Hidden backdoor API to root privileges in Apple OS Xhttps://truesecdev.wordpress.com/2015/04/09/hidden-backdoor-api-to-root-privileges-in-apple-os-x/
IPv6 Hardening Guide for OS Xhttp://www.insinuator.net/2015/02/ipv6-hardening-guide-for-os-x/
Harden the World: Mac OSX 10.11 El Capitanhttp://docs.hardentheworld.org/OS/OSX_10.11_El_Capitan/
Hacker News discussionhttps://news.ycombinator.com/item?id=10148077
Hacker News discussion 2https://news.ycombinator.com/item?id=13023823
Apple Open Sourcehttps://opensource.apple.com/
OS X 10.10 Yosemite: The Ars Technica Reviewhttps://arstechnica.com/apple/2014/10/os-x-10-10/
CIS Apple OSX 10.10 Benchmarkhttps://benchmarks.cisecurity.org/tools2/osx/CIS_Apple_OSX_10.10_Benchmark_v1.1.0.pdf
How to Switch to the Machttps://taoofmac.com/space/HOWTO/Switch
Security Configuration For Mac OS X Version 10.6 Snow Leopardhttps://www.apple.com/support/security/guides/docs/SnowLeopard_Security_Config_v10.6.pdf
EFF Surveillance Self-Defense Guidehttps://ssd.eff.org/
MacAdmins on Slackhttps://macadmins.herokuapp.com/
iCloud security and privacy overviewhttps://support.apple.com/kb/HT4865
Demystifying the DMG File Formathttp://newosxbook.com/DMG.html
There's a lot of vulnerable OS X applications out there (Sparkle Framework RCE)https://vulnsec.com/2016/osx-apps-vulnerabilities/
iSeeYou: Disabling the MacBook Webcam Indicator LEDhttps://jscholarship.library.jhu.edu/handle/1774.2/36569
Mac OS X Forensics - Technical Reporthttps://www.ma.rhul.ac.uk/static/techrep/2015/RHUL-MA-2015-8.pdf
Mac Forensics: Mac OS X and the HFS+ File Systemhttps://cet4861.pbworks.com/w/file/fetch/71245694/mac.forensics.craiger-burke.IFIP.06.pdf
Extracting FileVault 2 Keys with Volatilityhttps://tribalchicken.com.au/security/extracting-filevault-2-keys-with-volatility/
Auditing and Exploiting Apple IPChttps://googleprojectzero.blogspot.com/2015/09/revisiting-apple-ipc-1-distributed_28.html
Mac OS X and iOS Internals: To the Apple's Core by Jonathan Levinhttps://www.amazon.com/Mac-OS-iOS-Internals-Apples/dp/1118057651
Demystifying the i-Device NVMe NAND (New storage used by Apple)http://ramtin-amin.fr/#nvmepcie
The macOS Phishing Easy Button: AppleScript Dangershttps://duo.com/blog/the-macos-phishing-easy-button-applescript-dangers
Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Deviceshttps://googleprojectzero.blogspot.com/2017/09/over-air-vol-2-pt-1-exploiting-wi-fi.html
The Great DOM Fuzz-off of 2017https://googleprojectzero.blogspot.be/2017/09/the-great-dom-fuzz-off-of-2017.html
Remote code execution, git, and OS Xhttps://rachelbythebay.com/w/2016/04/17/unprotected/
OSX.Pirrit Mac Adware Part III: The DaVinci Codehttps://www.cybereason.com/blog/targetingedge-mac-os-x-pirrit-malware-adware-still-active
How to make macOS Spotlight fuck the fuck off and do your biddinghttps://m4.rkw.io/blog/how-to-make-macos-spotlight-fuck-the-fuck-off-and-do-your-bidding.html
Fuzzing the macOS WindowServer for Exploitable Vulnerabilitieshttp://blog.ret2.io/2018/07/25/pwn2own-2018-safari-sandbox/
Readme https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#readme-ov-file
MIT license https://github.com/malwareengineering/macOS-Security-and-Privacy-Guide#MIT-1-ov-file
Please reload this pagehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Activityhttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/activity
Custom propertieshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/custom-properties
0 forkshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/forks
Report repository https://github.com/contact/report-content?content_url=https%3A%2F%2Fgithub.com%2Fmalwareengineering%2FmacOS-Security-and-Privacy-Guide&report=malwareengineering+%28user%29
Releaseshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/releases
Packages 0https://github.com/orgs/malwareengineering/packages?repo_name=macOS-Security-and-Privacy-Guide
Please reload this pagehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
Contributorshttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide/graphs/contributors
Please reload this pagehttps://github.com/malwareengineering/macOS-Security-and-Privacy-Guide
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width


URLs of crawlers that visited me.