Crowdstrike BLOG
  • Featured
    • CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      Oct 06, 2025
    • CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      Oct 01, 2025
    • How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      Sep 30, 2025
    • CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      Sep 29, 2025
  • Recent
    • CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      Oct 06, 2025
    • CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      Oct 01, 2025
    • How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      Sep 30, 2025
    • CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      Sep 29, 2025
  • Video
    • Video Highlights the 4 Key Steps to Successful Incident Response
      Video Highlights the 4 Key Steps to Successful Incident Response
      Dec 02, 2019
    • Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VIDEO]
      Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VIDEO]
      Feb 21, 2019
    • Analyzing Targeted Intrusions Through the ATT&CK Framework Lens [VIDEO]
      Analyzing Targeted Intrusions Through the ATT&CK Framework Lens [VIDEO]
      Jan 22, 2019
    • Qatar’s Commercial Bank Chooses CrowdStrike Falcon®: A Partnership Based on Trust [VIDEO]
      Qatar’s Commercial Bank Chooses CrowdStrike Falcon®: A Partnership Based on Trust [VIDEO]
      Aug 20, 2018
  • Category
    • Cloud & Application Security
      Cloud & Application Security
      How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      How Falcon ASPM Secures GenAI Applications and Lessons from Dogfooding
      09/30/25
      CrowdStrike Named a Frost Radar™ Leader in Cloud Workload Protection Platforms
      CrowdStrike Named a Frost Radar™ Leader in Cloud Workload Protection Platforms
      09/25/25
      Protect AI Development with Falcon Cloud Security
      Protect AI Development with Falcon Cloud Security
      09/22/25
      Preventing Container Escape Attempts with Falcon Cloud Security's Enhanced Runtime Capabilities
      Preventing Container Escape Attempts with Falcon Cloud Security's Enhanced Runtime Capabilities
      07/22/25
    • Threat Hunting & Intel
      Threat Hunting & Intel
      CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882)
      10/06/25
      Announcing Threat AI: Security’s First Agentic Threat Intelligence System
      Announcing Threat AI: Security’s First Agentic Threat Intelligence System
      09/17/25
      MURKY PANDA: A Trusted-Relationship Threat in the Cloud
      MURKY PANDA: A Trusted-Relationship Threat in the Cloud
      08/21/25
      CrowdStrike Tailors Adversary Intelligence to Customer Environments
      CrowdStrike Tailors Adversary Intelligence to Customer Environments
      08/05/25
    • Endpoint Security & XDR
      Endpoint Security & XDR
      Falcon for IT Redefines Vulnerability Management with Risk-based Patching
      Falcon for IT Redefines Vulnerability Management with Risk-based Patching
      09/17/25
      Falcon Complete Hub Turns MDR Visibility into Action
      Falcon Complete Hub Turns MDR Visibility into Action
      09/11/25
      CrowdStrike Named a Leader in The Forrester Wave™: Managed Detection and Response Services in Europe, Q3 2025
      CrowdStrike Named a Leader in The Forrester Wave™: Managed Detection and Response Services in Europe, Q3 2025
      09/04/25
      CrowdStrike Signal Transforms AI-Powered Threat Detection
      CrowdStrike Signal Transforms AI-Powered Threat Detection
      08/06/25
    • Engineering & Tech
      Engineering & Tech
      EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware
      EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware
      09/03/25
      Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
      Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
      08/20/25
      CrowdStrike’s Approach to Better Machine Learning Evaluation Using Strategic Data Splitting
      CrowdStrike’s Approach to Better Machine Learning Evaluation Using Strategic Data Splitting
      08/11/25
      CrowdStrike Researchers Develop Custom XGBoost Objective to Improve ML Model Release Stability
      CrowdStrike Researchers Develop Custom XGBoost Objective to Improve ML Model Release Stability
      03/20/25
    • Executive Viewpoint
      Executive Viewpoint
      The Dawn of the Agentic SOC: Reimagining Cybersecurity for the AI Era
      The Dawn of the Agentic SOC: Reimagining Cybersecurity for the AI Era
      09/26/25
      CrowdStrike Falcon Platform Evolves to Lead the Agentic Security Era
      CrowdStrike Falcon Platform Evolves to Lead the Agentic Security Era
      09/16/25
      CrowdStrike to Acquire Pangea to Secure Enterprise AI Use and Development
      CrowdStrike to Acquire Pangea to Secure Enterprise AI Use and Development
      09/15/25
      CrowdStrike to Acquire Onum to Transform How Data Powers the Agentic SOC
      CrowdStrike to Acquire Onum to Transform How Data Powers the Agentic SOC
      08/27/25
    • From The Front Lines
      From The Front Lines
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Worldwide Incident Response Services
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Worldwide Incident Response Services
      08/27/25
      CrowdStrike Launches New AI Security Services to Strengthen AI Security and SOC Readiness
      CrowdStrike Launches New AI Security Services to Strengthen AI Security and SOC Readiness
      08/06/25
      CrowdStrike Detects and Blocks Initial SharePoint Zero-Day Exploitation
      CrowdStrike Detects and Blocks Initial SharePoint Zero-Day Exploitation
      07/21/25
      Prescription for Protection: Healthcare Industry Observations from CrowdStrike Investigations
      Prescription for Protection: Healthcare Industry Observations from CrowdStrike Investigations
      07/01/25
    • Next-Gen Identity Security
      Next-Gen Identity Security
      CrowdStrike Advances Next-Gen Identity Security with Three Key Innovations
      CrowdStrike Advances Next-Gen Identity Security with Three Key Innovations
      09/18/25
      Falcon Next-Gen Identity Security Unifies Protection Across All Identities and Domains
      Falcon Next-Gen Identity Security Unifies Protection Across All Identities and Domains
      08/14/25
      CrowdStrike Named the Only Leader in GigaOm Radar for SaaS Security Posture Management
      CrowdStrike Named the Only Leader in GigaOm Radar for SaaS Security Posture Management
      08/12/25
      Inside Mondelēz’s Identity Security Strategy with CrowdStrike
      Inside Mondelēz’s Identity Security Strategy with CrowdStrike
      07/30/25
    • Next-Gen SIEM & Log Management
      Next-Gen SIEM & Log Management
      CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      CrowdStrike Boosts SOC Detection Content with Correlation Rule Template Discovery Dashboard
      09/29/25
      Defending Against SCATTERED SPIDER with Falcon Next-Gen SIEM
      Defending Against SCATTERED SPIDER with Falcon Next-Gen SIEM
      08/14/25
      CrowdStrike Named a Leader in the 2025 GigaOm SIEM Radar Report
      CrowdStrike Named a Leader in the 2025 GigaOm SIEM Radar Report
      07/16/25
      How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks
      How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks
      06/05/25
    • Public Sector
      Public Sector
      CrowdStrike Achieves FedRAMP® High Authorization
      CrowdStrike Achieves FedRAMP® High Authorization
      03/19/25
      NHS Matures Healthcare Cybersecurity with NCSC’s CAF Assurance Model
      NHS Matures Healthcare Cybersecurity with NCSC’s CAF Assurance Model
      03/13/25
      Zero Trust Strengthens Data Protection to Achieve National Cyber Strategy Goals
      Zero Trust Strengthens Data Protection to Achieve National Cyber Strategy Goals
      01/15/25
      CrowdStrike Statement on Bloomberg’s October 25, 2024 Story
      CrowdStrike Statement on Bloomberg’s October 25, 2024 Story
      10/25/24
    • Exposure Management
      Exposure Management
      September 2025 Patch Tuesday: Two Publicly Disclosed Zero-Days and Eight Critical Vulnerabilities Among 84 CVEs
      September 2025 Patch Tuesday: Two Publicly Disclosed Zero-Days and Eight Critical Vulnerabilities Among 84 CVEs
      09/09/25
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Exposure Management
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Exposure Management
      08/25/25
      August 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 13 Critical Vulnerabilities Among 107 CVEs
      August 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 13 Critical Vulnerabilities Among 107 CVEs
      08/12/25
      CrowdStrike Named a Strong Performer in Forrester Wave for Unified Vulnerability Management
      CrowdStrike Named a Strong Performer in Forrester Wave for Unified Vulnerability Management
      07/21/25
    • Small Business
      Small Business
      SMB Security Survey Reveals High Awareness, Lagging Protection
      SMB Security Survey Reveals High Awareness, Lagging Protection
      05/05/25
      One Year of Falcon Go: Transforming Cybersecurity for Small Businesses
      One Year of Falcon Go: Transforming Cybersecurity for Small Businesses
      12/03/24
      CrowdStrike Strengthens SMB Security with Seamless Mobile Protection
      CrowdStrike Strengthens SMB Security with Seamless Mobile Protection
      11/21/24
      Small Business, Big Defense: Four Pillars of an Effective Cybersecurity Awareness Program
      Small Business, Big Defense: Four Pillars of an Effective Cybersecurity Awareness Program
      10/14/24
    • AI & Machine Learning
      AI & Machine Learning
      CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      CrowdStrike’s Fall 2025 Release Defines the Agentic SOC and Secures the AI Era
      10/01/25
      CrowdStrike Collaborates with AI Leaders to Secure AI Across the Enterprise
      CrowdStrike Collaborates with AI Leaders to Secure AI Across the Enterprise
      09/17/25
      Secure AI at Machine Speed: Defending the Growing Attack Surface
      Secure AI at Machine Speed: Defending the Growing Attack Surface
      09/02/25
      How CrowdStrike Secures AI Agents Across SaaS Environments
      How CrowdStrike Secures AI Agents Across SaaS Environments
      08/05/25
    • Data Protection
      Data Protection
      CrowdStrike Stops GenAI Data Leaks with Unified Data Protection
      CrowdStrike Stops GenAI Data Leaks with Unified Data Protection
      09/18/25
      Q&A: How Mastronardi Produce Secures Innovation with CrowdStrike
      Q&A: How Mastronardi Produce Secures Innovation with CrowdStrike
      02/14/25
      5 Key Data Protection Challenges and How to Overcome Them
      5 Key Data Protection Challenges and How to Overcome Them
      12/11/24
      Five Reasons Why Legacy Data Loss Prevention Tools Fail to Deliver
      Five Reasons Why Legacy Data Loss Prevention Tools Fail to Deliver
      10/23/23
  • Start Free Trial
  • Featured
  • Recent
  • Video
  • Category
  • Start Free Trial

Jaron_Bradley

Hunting Badness on OS X with CrowdStrike's Falcon Real-Time Forensic Capabilities

Hunting Badness on OS X with CrowdStrike's Falcon Real-Time Forensic Capabilities

May 28, 2014

Jaron_Bradley Endpoint Security & XDR

In this blog post, we’ll take a look at an example of a typical targeted attack with OS X malware as well as discover how to hunt for it in CrowdStrike’s Falcon Endpoint Activity Monitoring (EAM) appl[…]

    Categories
    • AI & Machine Learning
      39
    • Cloud & Application Security
      135
    • Data Protection
      17
    • Endpoint Security & XDR
      323
    • Engineering & Tech
      84
    • Executive Viewpoint
      176
    • Exposure Management
      104
    • From The Front Lines
      197
    • Next-Gen Identity Security
      58
    • Next-Gen SIEM & Log Management
      104
    • Public Sector
      40
    • Small Business
      11
    • Threat Hunting & Intel
      202
    CONNECT WITH US
    background pattern
    FEATURED ARTICLES
    October 01, 2024
    CrowdStrike Named a Leader in 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
    September 25, 2024
    Recognizing the Resilience of the CrowdStrike Community
    September 25, 2024
    CrowdStrike Drives Cybersecurity Forward with New Innovations Spanning AI, Cloud, Next-Gen SIEM and Identity Protection
    September 18, 2024
    SUBSCRIBE

    Sign up now to receive the latest notifications and updates from CrowdStrike.

    Created with Sketch.
    See CrowdStrike Falcon® in Action

    Detect, prevent, and respond to attacks— even malware-free intrusions—at any stage, with next-generation endpoint protection.

    See Demo
    logo
    • Copyright © 2025 CrowdStrike
    • Privacy
    • Request Info
    • Blog
    • Contact Us
    • 1.888.512.8906
    • Accessibility