Back to directory

WRITEUP #950

Demo: Brute-forcing a macOS user’s real name from a browser using mDNS

RCEPrivacy issueBruteforcemDNS

byKonstantin Darutkin

Program

Apple (macOS)

Published

Jul 13, 2023

Added to HackDex

Aug 8, 2023

Read Full Writeuphttps://fingerprint.com/blog/apple-macos-mdns-brute-force/

▸ RELATED WRITEUPS

Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat