TweetFollow Us on Twitter

Book Review: "OS X Exploits and Defense "

Volume Number: 24 (2008)
Issue Number: 09
Column Tag: Book Review

Book Review: "OS X Exploits and Defense "

"Own it...Just Like Windows or Linux!"

by Edward Marczak


"OS X Exploits and Defense" claims that you'll "see real exploitation techniques for both OS X Tiger and Leopard." The eight chapters volley between personal reflections, basic explanations and diving into code. Unfortunately, the 321-page book spends a fair amount of this time on Mac OS 9.

Writing a book is a difficult undertaking. It has also been a particularly difficult time for authors writing books about OS X: to release a book in a reasonable time frame, much needed to written against beta versions of Leopard. Even after Mac OS X v10.5 was officially released, authors would be working with a less-than-complete operating system, and frequent updates would alter the system from beneath you. Collaboration can also be difficult. (For an example of how difficult, see Adam Engst's excellent presentation from Macworld 2008, "Collaborative Editing Tools & Techniques" at http://www.macworldencore.com/online/presentation.asp?id=257&sessionTypeIdVideo=1&trackIdVideo=4&movieVideo=US914.mp4&yearDate=2008). Increasing the number of contributors increases the difficulty of keeping communications open and in sync. This is a possible reason "OS X Exploits and Defense" feels so hodge-podge: having six authors hurts its chances of having a common voice and having a single thread that runs throughout the book. This also leads to a problem when the text refers to "I," as there's no indication as to which author wrote any given part of the material.

Not to say that there is nothing good about this book. There certainly are gems of code, and an explanation of how malware works and can gain access to an OS X system. Strangely, to frame this, a good portion of the book is spent talking about OS 9. I continually made sure I was reading a book that was published in 2008 and claimed to target Leopard.

Chapter 1 is entitled, "Macintosh OS X Boot Process and Forensic Software." The section on the boot process is covered quickly and slightly incorrectly, which is followed by a short overview of the utilities available in the BlackBag Forensic Suite. Then, without much explanation, Carbon Copy Cloner and MacDrive are covered. Chapter 2, "Past and Current Threats" covers current threats if you're running a version of OS X before Leopard.

Chapter 3 covers definitions and history. Here is where we get a lesson in malware and viruses that existed for OS 9. If you remember HyperCard with nostalgia, this chapter is a nice walk down memory lane, but otherwise overkill for the point being made. Chapter 4, "Malware and the Mac" is a good introduction to the current state of affairs with regard to known malware that can potentially affect Mac OS X (Leopard) and what Apple and third parties have done for the operating system to mitigate these problems. Chapter 5 brings us to "Mac OS X for Pen Testers." The bulk of this chapter is a straight list of tools used for security testing with descriptions of each. This is little more than the sectools list (http://sectools.org/) sanitized for Mac OS X compatibility. The remainder of the chapter presents basic material, such as a short introduction to the command shell (along with some information that could lead people to mistakenly erase their hard drive).

Chapter 6 covers wardriving and chapter 8 is a nice summary of encryption technologies available to the user of Mac OS X.

"OS X Exploits and Defense" had one shining chapter for me. In chapter 7, "Security and OS X," there is a good balance between explanation and diving into the deep end. This chapter is probably the most solid reminder that Mac OS X is not problem-free or exempt from malware, security issues or people trying to take advantage of these entry points.

The best I can say is that this book doesn't know who its audience is. If you can keep up with the code samples, you probably don't need instructions on how to compile open source software. If you need help compiling open source software using MacPorts or Fink, there's not enough guidance to keep up with the deeper material. The shame of it is, is that editors should have caught all of these issues with the writing and compilation of the book.

"OS X Exploits and Defense"

Kevin Finisterre

Larry Hernandez

David Harley

Gary Porteous

Johnny Long

Gareth Porteous

Syngress Publishing

ISBN 978-1-59749-254-6

$59.95 US


Ed Marczak is the Executive Editor for MacTech Magazine, and has been lucky enough to have ridden the computing and technology wave from early on. From teletype computing to MVS to Netware to modern OS X, his interest was piqued. He has also been fortunate enough to come into contact with some of the best minds in the business. Ed spends his non-compute time with his wife and two daughters.

 

Community Search:
MacTech Search:

Software Updates via MacUpdate

Latest Forum Discussions

See All

How to evolve Eevee in Pokemon GO
By now, almost everyone should be hip to how to evolve Pokemon in Pokemon GO (and if not, there's a guide for that). Just gather enough candy of the appropriate type, feed them all to the Pokemon, and evolution happens. It's a miracle that would... | Read more »
CSR Racing 2: Guide to all game modes
It might not seem like there are all that many ways to go fast in a straight line, but CSR Racing 2 begs to differ. [Read more] | Read more »
Bulb Boy (Games)
Bulb Boy 1.0 Device: iOS Universal Category: Games Price: $2.99, Version: 1.0 (iTunes) Description: Multi-award winning 2D point & click horror adventure about a boy with a glowing head. | Read more »
5 top free emoji keyboard apps
If we're not at peak emoji yet as a society, it feels like we definitely should be. The emoji concept has gone far beyond what anyone in Japan could have envisioned when the people there unleashed it on an unsuspecting world, but the West has... | Read more »
How to unlock more characters in Disney...
One of the big charms of Disney Emoji Blitz is seeing a wide variety of beloved Disney and Pixar characters transformed into smiling emojis. Even someone like the sneaky Randall from Monsters Inc., who probably never cracked a smile on film, is... | Read more »
Cubway (Games)
Cubway 1.0 Device: iOS Universal Category: Games Price: $1.99, Version: 1.0 (iTunes) Description: Cubway is a journey with an abstract story of lifecycle of rebirth, called Samsara. Guide the cube through the long way full of dangers... | Read more »
Colorcube (Games)
Colorcube 1.0 Device: iOS Universal Category: Games Price: $1.99, Version: 1.0 (iTunes) Description: Turn pieces and blend colours in this minimal yet visually stunning puzzler.Over 200 handcrafted and challenging levels. Features... | Read more »
Doodle God Griddlers (Games)
Doodle God Griddlers 1.0 Device: iOS Universal Category: Games Price: $4.99, Version: 1.0 (iTunes) Description: | Read more »
Crusader Kings: Chronicles (Games)
Crusader Kings: Chronicles 1.0 Device: iOS Universal Category: Games Price: $4.99, Version: 1.0 (iTunes) Description: Crusader Kings: Chronicles is an interactive text based game that puts you in the shoes of Guy de Rose as you make... | Read more »
Roads of Rome: New Generation (Games)
Roads of Rome: New Generation 1.0 Device: iOS Universal Category: Games Price: $5.99, Version: 1.0 (iTunes) Description: | Read more »

Price Scanner via MacPrices.net

Charitybuzz Set to Auction Unique Apple-1 Com...
Offering an opportunity to own the computer that sparked a revolution, on Monday, July 25, leading online charity auction platform Charitybuzz will auction what is claimed to be the world’s most... Read more
MacBook Airs on sale for up to $150 off MSRP
Amazon has 11″ and 13″ MacBook Airs on sale for up to $150 off MSRP for a limited time. Shipping is free: - 13″ 1.6GHz/128GB MacBook Air (sku MMGF2LL/A): $899.99 $100 off MSRP - 13″ 1.6GHz/256GB... Read more
Apple refurbished 13-inch Retina MacBook Pros...
Apple has Certified Refurbished 13″ Retina MacBook Pros available for up to $270 off the cost of new models. An Apple one-year warranty is included with each model, and shipping is free: - 13″ 2.7GHz... Read more
Apple refurbished 11-inch MacBook Airs availa...
Apple has Certified Refurbished 11″ MacBook Airs (the latest models), available for up to $170 off the cost of new models. An Apple one-year warranty is included with each MacBook, and shipping is... Read more
Apple iPad Pro Sales Far Outpacing Microsoft...
A report on Appleinsider notes that despite Microsoft Surface tablet PC sales growing by 9 percent year over year, revenues remained below $1 billion, and are down sequentially from the $1.1 billion... Read more
DEVONthink 2.9 Features Ultra-fast, Robust, A...
DEVONthink 2.9 allows users to keep databases synchronized using many means of transport. It transmits them between Macs on the local network or stores them in a syncable form on removable hard... Read more
12-inch WiFi Apple iPad Pros on sale for up t...
B&H Photo has 12″ WiFi iPad Pros on sale for up to $100 off MSRP, each including free shipping. B&H charges sales tax in NY only: - 12″ Space Gray 32GB WiFi iPad Pro: $749 $50 off MSRP - 12″... Read more
Apple refurbished 15-inch Retina MacBook Pros...
Apple has Certified Refurbished 2015 15″ Retina MacBook Pros available for up to $380 off the cost of new models. An Apple one-year warranty is included with each model, and shipping is free: - 15″ 2... Read more
Apple refurbished Mac minis available for up...
Apple has Certified Refurbished Mac minis available starting at $419. Apple’s one-year warranty is included with each mini, and shipping is free: - 1.4GHz Mac mini: $419 $80 off MSRP - 2.6GHz Mac... Read more
Apple Mac Sales Finally Colliding With ‘Innov...
After successfully swimming against a tide of diminishing PC sales through 2014 and 2015, it appears that Apple has finally stopped defying gravity and is running up against the unwritten “innovate... Read more

Jobs Board

*Apple* Solutions Consultant - APPLE (United...
Job Summary As an Apple Solutions Consultant, you'll be the link between our future customers and our products. You'll showcase your entrepreneurial spirit as you Read more
*Apple* Professional Learning Specialist - A...
Job Summary The Apple Professional Learning Specialist is a full-time position for one year with Apple in the Phoenix, AZ area. This position requires a high Read more
*Apple* Picker - Apple Hill Orchard (United...
Apple Hill Orchard, Co. Rte. 21,Whitehall, NY 9/7/16-10/228/16. Pick fresh market or processing apples Productivity of 60 boxes and 80 boxes processing fruit per Read more
*Apple* Solutions Consultant - APPLE (United...
Job Summary As an Apple Solutions Consultant, you'll be the link between our future customers and our products. You'll showcase your entrepreneurial spirit as you Read more
*Apple* Retail - Multiple Positions - Apple,...
Job Description:SalesSpecialist - Retail Customer Service and SalesTransform Apple Store visitors into loyal Apple customers. When customers enter the store, Read more
All contents are Copyright 1984-2011 by Xplain Corporation. All rights reserved. Theme designed by Icreon.