MacOS is a popular operating system across Startups and Fortune 500 companies.
Few commercial tools exist that provide proper event visibility in MacOS.
Often, these tools are expensive and some lack important monitoring features.
However, open source offers a great selection of tools that can be deployed to
kick start a MacOS Threat Hunting Program. In this talk, I will simplify threat
hunting, select a few open source tools, and guide the audience on a
methodology to hunt for threats in MacOS.
Plug started his journey in computer security back in 1996 when he discovered a 2600 magazine that eventually lead him to his first LA2600 meeting in 1998. From that point...