Santa
0
Free
Santa is a binary and file access authorization system for macOS. It consists of a system extension that monitors for executions, a daemon that makes execution decisions based on the contents of a local database, a GUI agent that notifies the user in case of a block decision, and a command-line utility for managing the system and synchronizing the database with a server. It is named Santa because it keeps track of binaries that are naughty or nice. Docs: The Santa docs are stored in the Docs directory and are published at https://santa.dev. The docs include deployment options, details on how parts of Santa work, and instructions for developing Santa itself. Get Help: If you have questions or otherwise need help getting started, the santa-dev group is a great place. If you believe you have a bug, feel free to report an issue, and we'll respond as soon as we can. If you believe you've found a vulnerability, please read the security policy for disclosure reporting.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
GravityZone is a unified endpoint security and analytics platform that provides risk assessment, threat prevention, and incident response capabilities.
Commercial
Microsoft Defender for Endpoint is a comprehensive endpoint security solution that provides industry-leading, multi-platform detection and response capabilities.
Commercial
A free endpoint security tool for host investigative capabilities to find signs of malicious activity through memory and file analysis.
Webroot Endpoint Protection provides advanced cloud-based protection against malicious files, scripts, exploits, and URLs to keep businesses safe from cyberattacks.
Commercial
Comprehensive business security suite with enhanced features to protect against malware, phishing, and advanced threats.
A discontinued project for Windows system administration that has been archived due to the author's dissatisfaction with the Windows operating system.
A repository providing guidance on collecting security-relevant Windows event logs using Windows Event Forwarding (WEF).
A guide to implementing Microsoft AppLocker for application whitelisting
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Commercial
Vulnerability Management
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security