Maybe next year...

The audio was fine i don't see what's the issue (yes i was at dc 27)

@@alkeryn1700 the video of the presenter himself drops out sporadically, taking the audio out with it - slides don't drop out with presenter video/ audio

@@tacosauce890 Oh ok, i didn't watched the whole thing so i didn't got a drop tho many of defcon vids have that issue ^

@@alkeryn1700 sadly, yes, the majority of the talk is there, thankfully, but it still detracts from it a bit

There's always a few teaser talks released right after the conference... Expect it to be febuary/march before the rest come.

Welcome to the 20th century. Mac malware rarely involves viruses. Virtually all of the threats Mac security software detects and removes are aimed at Windows, and are dispatched in order to prevent their spread to that platform.

LOL

Weird sentiment, if the pentester refuse to use tools and environments that would make their life easier then thats their own fault

@@Jeppelelle Give Apple a call about virtualization support even if you pay them it's not for pentesting malware research is different.

@@Anon-tj7qb Why would i give Apple a call when its been possible to virtualise OS X and macOS for well over a decade now? Also, if one couldn't (everyone can) then one would still have the option to snapshot the FS or any FS container of their choosing.

@@Jeppelelle Of course its possible its a pain to support you have to modify more things to get it supported etc. There is a difference betweent supported and a hack. Not withstanding their license agreement. Its a business case is all im saying. I said its a pain, not that its impossible.

@@Anon-tj7qb What are you mumbling about? You obviously don't know what you are talking about since nothing of what you have said so far is true.

Watch me make a strawman: "Reeee are you telling us not to use libraries? Then go back to writing assembly reeeee"

The purpose is not to do it, but the implications of someone doing this and how to prevent it.

​@@davidgildegomezperez4364 If you reverse engineer a piece of software you must have access to it. After that "repurposing" that malware makes no sense if your intention is to prevent "it". The point of the demo is to show how he can reuse malware. The problem is that he makes no mention of why this would be necessary (since it's not) and he doesn't show, explain, describe or even talk of ways to counter it. It's basically a blackhat presentation. I rest my case. The information is valuable but it lacks realistic context. TLDR: Look what I can do. Keep looking. I'm done. Bye.

@@LemonChieff if you reverse engineer a piece of software you must have access to it. That's the most silly thing I have ever heard, if you have access to the source you don't need to reverse engineer anything. On top of that, all the InfoSec that is related to malware does it on a daily basis. Maybe I have misunderstood you, please clarify.

ViralTaco It’s still interesting. I don’t see an issue with it. Even though it’s not very practical