面向IT、安全和基础架构团队的开源平台。(Linux、macOS、Chrome、Windows、云、数据中心)
A binary authorization and monitoring system for macOS
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...
Tinfoil Chat - Onion-routed, endpoint secure messaging system
Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displa...
Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.
#Awesome#Awesome list of keywords and artifacts for Threat Hunting sessions
A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.
Fast and efficient osquery management
Automatically audit your Mac for basic security hygiene.
The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层驱动的开发、维护和兼容性问题,让其可以专注于业务开发
A binary and file access authorization system for macOS.
Authorization extension for popular web-frameworks to protect your endpoints
Endpoint detection & Malware analysis software
Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
#Awesome#Collection of tool you need to have in your Endpoint Detection and Response arsenal
Windows Exploit Protection Settings (Ultimate) GUI