A binary authorization and monitoring system for macOS
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...
Tinfoil Chat - Onion-routed, endpoint secure messaging system
Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displa...
Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.
#Awesome#Awesome list of keywords and artifacts for Threat Hunting sessions
A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.
Fast and efficient osquery management
Automatically audit your Mac for basic security hygiene.
A binary and file access authorization system for macOS.
The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层驱动的开发、维护和兼容性问题,让其可以专注于业务开发
iDefender - The Infinite Potential Host Intrusion Prevention System (HIPS) & Real-time Endpoint Detection and Response for Home
Authorization extension for popular web-frameworks to protect your endpoints
Endpoint detection & Malware analysis software
Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
#Awesome#Collection of tool you need to have in your Endpoint Detection and Response arsenal
Windows Exploit Protection Settings (Ultimate) GUI
A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).