Stronghold Logo

Stronghold

0
Free
Visit Website

Stronghold is the easiest way to securely configure your Mac. Designed for macOS Sierra and High Sierra. Not yet tested on macOS Mojave, but I'm working on updating it! Usage: stronghold.py [OPTIONS] Securely configure your Mac. Developed by Aaron Lichtman -> (Github: alichtman) Options: -lockdown Set secure configuration without user interaction. -v Display version and author information and exit. -help, -h Show this message and exit. Installation Options: Install with pip $ pip install stronghold $ stronghold Download the stronghold binary from Releases tab. Configuration Options: Firewall - Turn on Firewall? This helps protect your Mac from being attacked over the internet. Turn on logging? If there IS an infection, logs are useful for determining the source. Turn on stealth mode? Your Mac will not respond to ICMP ping requests or connection attempts from closed TCP and UDP networks. General System Protection: Enable Gatekeeper? Defend against malware by enforcing code signing and verifying downloaded applications before allowing them to run. Prevent automatic software whitelisting? Both built-in and downloaded software will require user approval for whitelisting. Disable Capti

FEATURES

ALTERNATIVES

Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.

An automation platform with community support and documentation for easy development.

StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.

An AI-powered SOC automation platform that performs autonomous alert triage, investigation, and incident response while augmenting human analyst capabilities.

Python command line utility for incident response in AWS

A remediation orchestration platform that consolidates security alerts, automates triage, and streamlines the remediation process across hybrid environments.

A Security Orchestration, Automation and Response (SOAR) platform for incident response and threat hunting.

A Sysmon configuration file template with detailed explanations and tutorial-like features.