Explore advanced techniques for detecting malware on macOS through network-level monitoring in this 49-minute conference talk from RSA Conference. Delve into open-source methods for building both basic network state enumerators and sophisticated network monitors to uncover unauthorized network access, a powerful heuristic for identifying advanced malware. Learn how to leverage macOS's networking frameworks to enhance your cybersecurity defenses and stay ahead of evolving threats. Presented by Patrick Wardle, CEO/Co-Founder of DoubleYou, this session addresses the gap in network-level detection approaches for macOS, providing valuable insights for security professionals and researchers looking to strengthen their malware detection capabilities.