Stephanie Archibald from Cylance has written an article about the execution of multi-stage payloads on Mac OS X (up to Sierra). According to the author, “a common technique for executing multi-stage payloads is to have an initial payload that can then load executables, libraries, or bundles from memory instead of a computer’s hard disk”. You will learn what dyld is, how to locate it in memory, and how to load executables.

Load More Related Articles
Load More In How To

Leave a Reply

Your email address will not be published. Required fields are marked *