Overview
Explore advanced techniques for detecting malware on macOS through network-level monitoring in this 49-minute conference talk from RSA Conference. Delve into open-source methods for building both basic network state enumerators and sophisticated network monitors to uncover unauthorized network access, a powerful heuristic for identifying advanced malware. Learn how to leverage macOS's networking frameworks to enhance your cybersecurity defenses and stay ahead of evolving threats. Presented by Patrick Wardle, CEO/Co-Founder of DoubleYou, this session addresses the gap in network-level detection approaches for macOS, providing valuable insights for security professionals and researchers looking to strengthen their malware detection capabilities.
Syllabus
Leveraging MacOS's Networking Frameworks to Heuristically Detect Malware
Taught by
RSA Conference