SharpAppLocker
SharpAppLocker provides a C# adaptation of the Get-AppLockerPolicy cmdlet for managing application control policies.
Kunai is a Linux-based system monitoring tool that provides real-time monitoring and threat hunting capabilities. It collects and correlates system events, allowing for advanced threat detection and incident response. Kunai is designed to work seamlessly with Linux namespaces and container technologies, providing visibility into containerized environments. Kunai's kernel components are written in eBPF and run as probes, collecting relevant information for security monitoring. The collected data is then passed to a userland program for re-ordering, enriching, and correlating events. Kunai is built using Rust and the Aya library, and is available as a standalone binary that includes both the eBPF probes and the userland program. Kunai provides a range of features, including event sorting, on-host correlation, and event enrichment. It also supports Linux namespaces and container technologies, allowing for monitoring of containerized environments. Kunai is designed to be highly customizable, with a focus on ease of use and scalability. Kunai is available under an open-source license and is compatible with a wide range of Linux distributions.
SharpAppLocker provides a C# adaptation of the Get-AppLockerPolicy cmdlet for managing application control policies.
FortiEDR is an automated endpoint security solution that integrates with the Fortinet Security Fabric and third-party solutions to reduce MTTR and provide real-time breach detection and response.
Santa is a binary and file access authorization system for macOS.
Toolkit for building custom minimal, immutable Linux distributions with secure defaults.
A static analysis framework for extracting key characteristics from various file formats
Webroot Endpoint Protection provides advanced cloud-based protection against malicious files, scripts, exploits, and URLs to keep businesses safe from cyberattacks.