All Posts

Lessons Learned: Integrating AWS MAC Instance in the Splunk Attack Range

Lessons Learned: Integrating AWS MAC Instance in the Splunk Attack Range note this blog was written by Teoderick and myself 🥷🕵️‍♂️ In November 2020, when AWS announced the general availability of macOS instances in AWS EC2 Cloud, the Splunk Threat Research Team took this opportunity to test and implement the instance as an additional endpoint in the Splunk Attack Range.