Jaron Bradley
@jbradley89
Followers
3K
Following
702
Statuses
481
MacOS Intrusion Analyst, APT Smiter , Haole. Author of OS X Incident Response Scripting and Analysis Owner of https://t.co/oApHpiRaQ0
Hilo, HI
Joined March 2014
RT @patrickwardle: Santa delivered my brand new book: “The Art of Mac Malware Vol II: Detecting Malicious Software” 🍎🛡️🐛👨🏻💻📚🥰 Three years…
0
95
0
@_fluffy_banana_ Not yet! I’m currently on chapter 7 but haven’t really determined how many chapters there would be. I’m hopeful for the next 8 months or so to be releasing but no promises
0
0
3
@Cyb3rMonk Good feedback! Thanks! The title at the moment is a placeholder. Haven’t landed on an official one yet it I will keep your notes here in mind
0
0
1
@XNUniverse Appreciate that kory! I've saw some of your documentation on linkedIn ;) solid stuff.
1
0
2
Join me at 3:00ish pm HST to see some fun machO research. Lots of amazing talks before and after too!
Today is the day! #OBTS 🤩 Join us live:
0
2
23
@thomrstrom We shared the hashes. a12ad8d16da974e2c1e9cfe6011082baab2089a3 Let me know if you don't have a VT/other account and I'm sure we can find a different way to get it to you.
1
0
0
RT @08Tc3wBB: My bug CVE-2024-44131 got patched on iOS 18.0. It’s an iOS TCC bypass bug that lets third-party apps access data stored on iC…
0
41
0
The FBI recently sent a warning out regarding DPRK activity against the crypto industry. Today, we documented attacks we've seen on macOS. Attacks start with social engineering and deliver a piece of malware that we call ThiefBucket. #malware
3
46
130
Honored to speak on the makers track at #FTSCon with some of these great presenters
We have another speaker to announce in our #FTSCon lineup: Jaron Bradley (@jbradley89) will present “Grafting Trees on macOS” in the MAKER Track! For event details, see the #FTSCon event page: You can also register here: #dfir
0
3
16
Some awesome Gatekeeper vulnerability research from @malwarezoo that lead to the discovery of vulnerabilities in other products. Check it out on our blog when you get time.
Our latest research details a Gatekeeper bug we reported to Apple that affects Launch Services. While exploring this issue, we also found ways to bypass Gatekeeper using the “The Unarchiver”, a popular archiving application on macOS. Check out our blog:
0
0
14
TrueTree 0.8 is out. Its primary difference is that when displaying the tree , it will attempt to use other pids only if the parent process of that given process id is launchd. You also now have the ability to display only the process name with --nopath
0
9
27
Join as at the Objective by the Sea conference where I'll be talking about how our team has been working on some new and intuitive ways of analyzing and categorizing macOS malware using data science and 3D visualization! Also, it's Hawaii
#OBTS v7 talks have been announced: 🤗 With over 20 talks (from many of the world's top researchers), covering macOS/iOS bugs & exploits, malware, internals, tools, and much more, this is a can't miss event! Which talks are you most excited about?
2
8
38
@L0Psec Interesting stuff and very well broke down! We were just looking at some stealer samples recently that have taken a similar approach on the anti-debug side.
1
0
1
Come join my RSA talk tomorrow on dynamic malware analysis using a tool titled SpriteTree!
Stop by our @RSAConference booth tomorrow at 8:30am PT to catch @jbradley89's session: Dynamic Analysis of MacOS Malware Using SpriteTree. This talk will focus on a community tool titled SpriteTree. Details here:
0
8
28