1
Knockknock
A free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware.
Knockknock
A free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignKnockknock Description
KnockKnock is a free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware. It scans known locations where persistent software or malware may be installed, and provides detailed information about each item, including its hash, size, plist, and signed status. KnockKnock also integrates with VirusTotal to retrieve information about the files and allows users to submit unknown files for analysis. The tool provides a user-friendly interface to display the results, with options to filter out signed Apple and whitelisted items, and to save the findings as a JSON file. KnockKnock can also be run via the command line, allowing for programmatic deployment and execution. Overall, KnockKnock is a valuable tool for macOS users to detect and analyze persistently installed software and potential malware on their systems.
Knockknock FAQ
Common questions about Knockknock including features, pricing, alternatives, and user reviews.
Knockknock is A free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware. It is a Endpoint Security solution designed to help security teams with File Analysis, Mac Os.
Knockknock is a free Endpoint Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://objective-see.com/products/knockknock.html for download and installation instructions.
Popular alternatives to Knockknock include:
1.Do Not Disturb - Do Not Disturb is a free open-source macOS security tool that detects unauthorized physical access to laptops. (Free)
2.MIDAS - MIDAS (Mac Intrusion Detection Analysis System) - archived and no longer supported. (Free)
3.Zeek Agent - An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek. (Free)
4.chkrootkit - A tool to locally check for signs of a rootkit with various checks and tests. (Free)
5.Osquery - Open-source tool for monitoring macOS hosts with detailed system activity insights. (Free)
Compare all Knockknock alternatives at https://cybersectools.com/alternatives/knockknock
Knockknock is for security teams and organizations that need File Analysis, Mac Os. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Endpoint Security tools can be found at https://cybersectools.com/categories/endpoint-security
Have more questions? Browse our categories or search for specific tools.
