Posted on
in Presentations
Attendees will learn how to use Apple's Endpoint Security API as an event source to build behavior-based detections. This session will explore the difference between old and new ways of detecting malicious activity on Mac, how to use (often overlooked) process field information, and how to use ES events to determine when more advanced system exploitation is occurring.
Access This and Other RSAC™ Conference Presentations with Your Free RSAC Membership
Your RSAC™ Membership also includes AI-powered summaries, mind maps, and slides for Conference presentations, Group Discussions with experts, and more.
Watch Now >>
Share With Your Community