MacOs Workshop - Hunt for Red Apples: Ocean Lotus Edition Part1
plug, Ben Bornholm, Tilottama Sanyal, Cat Self, Dan Borges
The Hunt for Red Apples workshop guides participants through emulation walkthroughs, hunting playbooks, & hunting exercises around an Ocean Lotus intrusion, an established threat actor targeting macOS. The workshop is broken into sections using both the attack lifecycle & Mitre ATT&CK knowledge base.
For each phase in the attack live cycle participants learn about one particular tactic, relevant macOS data sources, how to build a hunting plan, practice hunting, & how the red team emulated the tactic using open source intelligence.
This workshop is a resource on how to threat hunt, emulate, & use open source threat intelligence on a specific threat actor.