desktop-control

The provided content is macOS documentation for a high-privilege UI automation driver that can enumerate windows (including background/off-space and security/modal contexts), inject keystrokes/hotkeys into targeted apps via Accessibility, and optionally capture the screen via ScreenCaptureKit—each gated by TCC. The fragment contains no direct malware indicators (no exfiltration/persistence/obfuscated payloads shown), but the described capabilities are inherently spyware-adjacent and represent a significant security risk if misused or if upstream implementation adds network transmission or covert storage of captured content.