Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore how adversaries leverage containerization technologies to evade macOS security defenses in this conference talk from Objective-By-The-Sea v8.0. Discover the techniques attackers use with third-party container platforms like Docker and Apple's upcoming native Linux container support in macOS 26 Tahoe to bypass standard telemetry systems including Endpoint Security Framework (ESF) and endpoint detection and response (EDR) solutions. Learn about the historical evolution of macOS containerization while gaining insights into Apple's Hypervisor and Container Frameworks. Follow along with practical attack scenarios that demonstrate containers' stealth capabilities and their potential for defense evasion. Develop comprehensive detection strategies through a defense-in-depth playbook designed for integration with SIEM and EDR platforms. Master container-aware detection methodologies and acquire practical tools for identifying, investigating, and countering containerized attacks targeting macOS environments.
