MacOS Threat Hunting Training


Join us for The Mitten Mac Threat Hunting Training. The only course dedicated to teaching how to threat hunt macOS data at the endpoint level!
Whether you’re new to threat hunting or an experienced threat hunter, this three day course will bring an in-depth and hands on experience to those looking to deep dive into using macOS internals to their advantage for threat hunting. Learn how to use the less commonly used artifacts to hunt down malicious activity in your environment.
This course uses simulated attack data collected with the Apple Endpoint Security API and teaches attendees how to connect the dots to determine what took place on the system.
Topics are discussed in presentation form and then applied via hands on labs. Among the different topics explored are
- Exploring the process tree and understanding process creation
- Understanding the complications of XPC
- Tracing the steps of real malware samples and determining the scope of the attack
- Hunting using the lesser explored pid values
- Hunting using macOS and Unix specific technologies
- …And much more





Location :
- Objective by the Sea Conference 8.0
- Hotel:
- Training Location:
- October 12th-14th 2025
- $1900 USD
- Conference ticket must be purchased separately!
- A Mac. No Virtual Machine required.
- You have a laptop capable of searching keywords with-in large amounts of text data (Learn how to use grep!)
- You understand the general concept of how computers work and what a process is
- General understanding of one of the following topics
- threat hunting
- forensics
- incident response
- computer science
- Full refund (minus transaction fees) if cancelled before 9/1/25
- Half refund after 9/1/25 (minus transaction fees)
- Note: Payments are handled through Stripe and reimbursements may not include the transactions fees that Stripe may charge
Further Questions:
- jaron@themittenmac.com