Investigating unpatched CVEs with osquery and SOFA This week, Mac Admins Open Source released a new tool called SOFA. SOFA is a machine readable feed of macOS and iOS update data - including CVEs. Of course, my mind...

Zero Trust is not Zero Effort: Planning your Zero Trust strategy at MacSysAdmin 2023 This week, I travelled to beautiful Gothenburg to speak at MacSysAdmin. Thank you to Patrik and the rest of the team for being such great hosts, and to all my friends, new and...

The risks of relying on Generative AI when writing scripts This morning I saw a major MDM vendor advertising an upcoming feature that will write scripts to manage your macOS devices for you using generative AI - sounds like the end of...

Gone Phishing: Airbnb's Journey to phishing resistant MFA at MacAD.UK 2023 Last week, I gave my first conference talk in over three years - and it was about what took up most of my 2022 - deploying phishing resistant MFA. Thank you to the organizers...

What's nagging you? Getting to the bottom of Managed Login Items macOS 13 Ventura introduced Managed Login Items - a way to keep users informed about what LaunchAgents and LaunchDeamons are running on their devices and easily disable...

The Accomplishment Spreadsheet This time of year can be particularly stressful thanks to two words: performance reviews. It’s not that we’ve not done great work, it’s often that we either struggle with...

A pragmatic approach to endpoint security at MacSysAdmin A few months back an email popped into my inbox from Patrik Jerneheim asking me if I would like to record a talk for this year’s MacSysAdmin - it took me all of three seconds...