Just pushed a quick post on a trick that came in handy during a recent macOS red team to the blog... mdsec.co.uk/2021/01/macos-po…
3
59
140
Nice! VScode extension security model is terrible, we did some similar work recently. Also, you don't even need to "install" it, just drop the extension files into a specific folder, or stealthily add it as a dependency of an existing one (and they all have tons of dependencies).
1:40 PM · Jan 14, 2021
1
0
6

