Schedule


Note:
The conference (training and talks), will be held at the Westin Maui Resort & Spa, in the Honoapi'ilani Ballroom.


Training:
Sept. 28th (Tuesday) - 29th (Wednesday)
Training: "The Art of Mac Malware Analysis"
Patrick Wardle
Room: TBD
10:00 am - 4:30 pm
As macOS grows in popularity, so does the prevalence of malware targeting this platform. In this content-packed two-day course, Mac security expert Patrick Wardle will teach the tools and techniques needed to comprehensively analyze and understand malware targeting Apple's desktop OS.

For more information and/or to sign up, see: "Methods of Mac Malware Analysis"
Note:
Training is separate from general conference attendance.

Information on signing up (and paying) for training, can be found on the main training page.


Talks:
Note:
This schedule is (currently) tentative, and as such may change.

Thursday, Sept. 30th
Registration
09:00 am - 10:00 am
Come pick up your badge ...& buy some conference swag!

We'll also be checking vaccination status, so please have your vaccine card present. For more info, see "Safety First!"

Welcome
10:00 am - 10:10 am

"Siri. Find My Ex" (Eva Galperin)
10:10 am - 10:35 am (25 minutes)
Full Abstract

"All Your Macs Are Belong To Us: The Story of CVE-2021-30657" (Cedric Owens, Jaron Bradley, Patrick Wardle)
10:40 am - 11:30 am (50 minutes)
Full Abstract

"Environmental Disaster: A LaunchServices Tale" (Ron Waisberg)
11:35 am - 12:00 pm (25 minutes)
Full Abstract

"n-1 and n-2: Should we really trust in you?" (Josh Long)
12:05 pm - 12:30 pm (25 minutes)
Full Abstract

Lunch
12:30 pm - 02:00 pm (1.5 hrs)

"Becoming a Yogi on Mac ATT&CK with OceanLotus Postures" (Cat Self, Adam Pennington)
02:00 pm - 02:50 pm (50 minutes)
Full Abstract

"Pocket Litter - A Peek Inside Your Apple Wallet" (Sarah Edwards)
02:55 pm - 03:20 pm (25 minutes)
Full Abstract

"Kernel Exploitation on Apple's M1 chip" (08tc3wbb)
03:25 pm - 03:50 pm (25 minutes)
Full Abstract

Afternoon Break
03:50 pm - 04:05 pm

"Anti-Analysis Logic of Arm Malware on macOS" (Patrick Wardle)
04:05 pm - 04:30 pm (25 minutes)
Full Abstract

"Apple's Envy: Root once, bypass TCC" (Andy Grant)
04:35 pm - 05:00 pm (25 minutes)
Full Abstract

Reception/Party
7:00 pm - 9:00 pm
Honoapi'ilani Lounge & Terrace (right outside the conference room).



Friday, Oct. 1st
Welcome ...to day #2!
10:00 am - 10:10 am

"Mount(ain) of Bugs" (Csaba Fitzl)
10:10 am - 11:00 am (50 minutes)
Full Abstract

"The Wild World of macOS Installers" (Tony Lambert)
11:05 am - 11:55 am (50 minutes)
Full Abstract

"FIDO on MacOS: How it works, Attack Vectors and Other Learnings" (Joel Rennich)
12:00 pm - 12:25 pm (25 minutes)
Full Abstract

Lunch
12:30 pm - 02:00 pm (1.5 hrs)

"iOS Reverse Engineering With Frida" (Christine Fossaceca)
02:00 pm - 02:50 pm (50 minutes)
Full Abstract

"Plug-n-Play: Using Native Code with Installer Plugins for Initial Access" (Chris Ross)
02:55 pm - 03:20 pm (25 minutes)
Full Abstract

"Mac detections by the Numbers" (Thomas Reed)
03:25 pm - 03:50 pm (25 minutes)
Full Abstract

Afternoon Break
03:50 pm - 04:05 pm

"Made In America: Analyzing US Spy Agencies' macOS Implants" (Runa Sandvik, Patrick Wardle)
04:10 pm - 05:00 pm (50 minutes)
Full Abstract

Finale (+ prizes!)
05:00 pm -