Leveraging the Apple ESF for Behavioral Detections
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the evolution of malicious activity detection on macOS in this 37-minute Black Hat conference talk. Delve into the Apple Endpoint Security Framework (ESF), introduced in macOS Catalina in 2019, and its role in fueling behavioral-based detections. Compare and contrast old and new detection methods, understanding their continued relevance in today's cybersecurity landscape. Learn how to effectively utilize ESF data, both in its basic form and as a pivot point for more sophisticated detection techniques. Gain insights from presenters Jaron Bradley and Matt Benyo as they break down the practical applications of ESF in enhancing macOS security.
Syllabus
Leveraging the Apple ESF for Behavioral Detections
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube