Overview
This first-of-its-kind guide to detecting stealthy Mac malware gives you the tools and techniques to counter even the most sophisticated threats targeting the Apple ecosystem. This first-of-its-kind guide to detecting stealthy Mac malware gives you the tools and techniques to counter even the most sophisticated threats targeting the Apple ecosystem. As renowned Mac security expert Patrick Wardle notes in The Art of Mac Malware, Volume 2, the substantial and growing number of Mac users, both personal and enterprise, has created a compelling incentive for malware authors to ever more frequently target macOS systems. The only effective way to counter these constantly evolving and increasingly sophisticated threats is through learning and applying robust heuristic-based detection techniques. To that end, Wardle draws upon decades of experience to guide you through the programmatic implementation of such detection techniques. By exploring how to leverage macOS's security-centric frameworks (both public and private), diving into key elements of behavioral-based detection, and highlighting relevant examples of real-life malware, Wardle teaches and underscores the efficacy of these powerful approaches. Across 14 in-depth chapters, you'll learn how to- Capture critical snapshots of system state to reveal the subtle signs of infection Enumerate and analyze running processes to uncover evidence of malware Parse the macOS's distribution and binary file formats to detect malicious anomalies Utilize code signing as an effective tool to identify malware and reduce false positives Write efficient code that harnesses the full potential of Apple's public and private APIs Leverage Apple's Endpoint Security and Network Extension frameworks to build real-time monitoring tools This comprehensive guide provides you with the knowledge to develop tools and techniques, and to neutralize threats before it's too late.
Full Product Details
Author: Patrick Wardle
Publisher: No Starch Press,US
Imprint: No Starch Press,US
Weight: 0.369kg
ISBN: 9781718503786
ISBN 10: 1718503784
Pages: 376
Publication Date: 25 February 2025
Audience:
General/trade
,
General
Format: Paperback
Publisher's Status: Active
Availability: To order
Stock availability from the supplier is unknown. We will order it for you and ship this item to you once it is received by us.
Author Information
Patrick Wardle is the founder of Objective-See, a nonprofit dedicated to creating free, open source macOS security tools and organizing the ""Objective by the Sea"" Apple security conference. Wardle is also the co-founder and CEO of DoubleYou, a cybersecurity startup focused on empowering the builders of Apple-focused security tools. Having worked at both NASA and the National Security Agency and having presented at countless security conferences, he is intimately familiar with aliens, spies, and talking nerdy.
