YoVDO

A Case Study of MacOS Supply Chain Compromise

Offered By: Security BSides San Francisco via YouTube

Tags

Security BSides Courses Cybersecurity Courses Telemetry Courses Malware Detection Courses

Course Description

Overview

Explore a comprehensive case study on MacOS supply chain compromises in this 32-minute conference talk from BSidesSF 2018. Discover free and open-source MacOS tooling used for network defense, and learn how to leverage these tools to build context around generated data for identifying new, unknown threats and malware independently. Gain insights into proactive threat detection techniques, including the use of OSQuery, Santa, Audit, Proton, and telemetry enrichment. Walk through the process of identifying potential supply chain compromises before they become widespread, empowering you to enhance your organization's cybersecurity posture.

Syllabus

Introduction
Agenda
Outline
OS Query
Santa
Audit
Proton
Telemetry
Enrichment
Key takeaways


Taught by

Security BSides San Francisco

Related Courses

Early Detection through Deception
YouTube
Hack for Show, Report for Dough - Brian King
YouTube
Blue Teamin on a Budget of Zero - Kyle Bubp
YouTube
Windows Event Logs - Zero to Hero
YouTube
Weaponizing Splunk - Using Blue Team Tools for Evil
YouTube