OSMR
OffSec

Offensive Security macOS Researcher

Expert 72hr exam Pass: 100+ points $1,499

macOS internals, kernel exploitation, security research.

Official Page
IssuerOffSec
Format72hr exam
Duration72 hours total
Pass Score100+ points
Valid For3y
Overview Syllabus (6) Tools (5) Cheat Sheets (0) Labs (1)
Recommended Tools
class-dump Essential
Analysis

Extract ObjC class info from Mach-O binaries

installbrew install class-dump
usageclass-dump -H /Applications/App.app/Contents/MacOS/App -o ./headers/
macPEAS Essential
Enumeration

macOS privilege escalation enumeration

installcurl -L https://github.com/carlospolop/PEASS-ng/releases/latest/download/macpeas.sh -o macpeas.sh
usagebash macpeas.sh
osquery Essential
Enumeration

SQL-based system analysis

installbrew install osquery
usageosqueryi "SELECT * FROM users; SELECT * FROM listening_ports;"
Frida Essential
Instrumentation

Dynamic instrumentation for macOS apps

installpip3 install frida-tools
usagefrida -U -n "App" -l hook.js
Hopper Essential
Reverse Eng

macOS/iOS disassembler

installDownload hopperapp.com
usageOpen Mach-O binary for analysis
objective-see tools Essential
Security

macOS security tools (LuLu, KnockKnock, TaskExplorer)

installDownload from objective-see.org
usageRun individual tools for analysis