hartescout
/ reference.txt
Last active
March 4, 2023 00:15
macOS Internals, Reversing, and Analysis reference I've found essential.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## In no particular order. I'm pulling these from a bookmark folder, I'll work on labeling as I have time. Hope these help. Will be mixing in Linux reference as well. | |
| Sidenote: the macOS Internals series is amazing, although might be out of reach for some. However if having a hard time deciding (I definitely way) and in budget, In my opinion, they are worth the price. I've worked through Volume II, waiting on Volume III. | |
| As always, most of what we need in our world can be found open sourced and provided by some of the brightest, but it can be a frustrating journey finding material. | |
| https://www.intezer.com/blog/malware-analysis/elf-malware-analysis-101-linux-threats-no-longer-an-afterthought/ | |
| http://timetobleed.com/dynamic-linking-elf-vs-mach-o/ | |
| https://github.com/apple/darwin-xnu | |
| https://opensource.apple.com/source/xnu/ | |
| https://developer.apple.com/library/archive/documentation/Darwin/Conceptual/KernelProgramming/Architecture/Architecture.html |
hartescout
/ macOS-IR-Forensics.md
Created
August 3, 2021 16:24
— forked from 0xmachos/macOS-IR-Forensics.md
If someone wants to learn MacOS IR/forensics what’s the best resource for that?