Visualizing Endpoint Security Using Apple’s 2D Game Framework | JNUC 2023

Discover SpriteTree, a tool revolutionizing the visualization of macOS process IDs for better endpoint security understanding.

Dive into the intricacies of macOS process IDs and discover how they offer a glimpse into system activities. This session showcases SpriteTree, a novel tool designed to visualize data from the Apple Endpoint Security API using the SpriteKit Framework, simplifying the analysis of extensive logs and raw text. Primarily aimed at dynamic malware reversing and system internals investigation, SpriteTree not only showcases its advanced capabilities but also serves as a training aid for those new to the endpoint security world. Join the experts from Jamf's Threat Labs as they guide you through the automated visualization of process data, paving the way for a robust understanding of macOS internals and enhanced endpoint security.