https://miscreants.github.io/blog.trailofbits.com/categories/sinter/Recent content in sinter on The Trail of Bits BlogHugoen-usWed, 12 Aug 2020 01:41:16 -0400https://miscreants.github.io/blog.trailofbits.com/2020/08/12/sinter-new-user-mode-security-enforcement-for-macos/Wed, 12 Aug 2020 01:41:16 -0400https://miscreants.github.io/blog.trailofbits.com/2020/08/12/sinter-new-user-mode-security-enforcement-for-macos/TL;DR: Sinter is the first available open-source endpoint protection agent written entirely in Swift, with support for Apple’s new EndpointSecurity API from first principles. Sinter demonstrates how to build a successful event-authorization security agent, and incorporates solutions to many of the challenges that all endpoint protection agents will face as they migrate from kernel-mode to […]