GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → santoru → Filewatcher

santoru / Filewatcher

Licence: gpl-3.0
A simple auditing utility for macOS

Programming Languages

c
50402 projects - #5 most used programming language

Labels

macosmonitoringmalwarefilesystemsecurity-auditauditing

Projects that are alternatives of or similar to Filewatcher

Fwanalyzer
a tool to analyze filesystem images for security
Stars: ✭ 382 (+63.95%)
Mutual labels:  filesystem, security-audit
Electriceye
Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Stars: ✭ 255 (+9.44%)
Mutual labels:  monitoring, security-audit
Blowhole
Docker auditing and enumeration script.
Stars: ✭ 21 (-90.99%)
Mutual labels:  auditing, security-audit
Wordpress Scanner
Wordpress Vulnerability Scanner
Stars: ✭ 137 (-41.2%)
Mutual labels:  security-audit, auditing
Lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+3821.46%)
Mutual labels:  security-audit, auditing
Otseca
Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (+78.54%)
Mutual labels:  security-audit, auditing
ad-privileged-audit
Provides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (-81.97%)
Mutual labels:  auditing, security-audit
Diamorphine
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (+211.16%)
Mutual labels:  malware, security-audit
Gscan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
Stars: ✭ 1,177 (+405.15%)
Mutual labels:  security-audit, auditing
Anteater
Anteater - CI/CD Gate Check Framework
Stars: ✭ 174 (-25.32%)
Mutual labels:  malware, security-audit
Sec Admin
分布式资产安全扫描核心管理系统(弱口令扫描,漏洞扫描)
Stars: ✭ 222 (-4.72%)
Mutual labels:  security-audit
Nginx Rtmp Monitoring
real-time monitoring statistics dashboard for nginx rtmp module
Stars: ✭ 224 (-3.86%)
Mutual labels:  monitoring
Kubestriker
A Blazing fast Security Auditing tool for Kubernetes
Stars: ✭ 213 (-8.58%)
Mutual labels:  security-audit
Chameleon
Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres and MySQL)
Stars: ✭ 230 (-1.29%)
Mutual labels:  monitoring
Netdata
Dockerfile for building netdata
Stars: ✭ 223 (-4.29%)
Mutual labels:  monitoring
Kicomav
KicomAV is an open source (GPL v2) antivirus engine designed for detecting malware and disinfecting it.
Stars: ✭ 227 (-2.58%)
Mutual labels:  malware
Moira
Realtime Alerting for Graphite
Stars: ✭ 222 (-4.72%)
Mutual labels:  monitoring
Applicationinsights Home
Application Insights main repository for documentation of overall SDK offerings for all platforms.
Stars: ✭ 221 (-5.15%)
Mutual labels:  monitoring
Detective
🔎 A distributed application health monitoring library
Stars: ✭ 221 (-5.15%)
Mutual labels:  monitoring
Pyrasite
Inject code into running Python processes
Stars: ✭ 2,586 (+1009.87%)
Mutual labels:  monitoring
View All Similar Projects ➔

filewatcher

a simple auditing utility for macOS

Filewatcher is an auditing and monitoring utility for macOS.

It can audit all events from the system auditpipe of macOS and filter them by process or by file. You can use this utility to:

  • Monitor access to a file, or a group of files.
  • Monitor activity of a process, and which resources are accessed by that process.
  • Build a small Host-Based IDS by monitoring access or modifications to specific files.
  • Do an dynamic malware analysis by monitoring what the malware is using on the filesystem.

If you want to read more about how it works, check my blog.

Installation

Just run make to compile it and then ./bin/filewatcher.

Usage: ./bin/filewatcher [OPTIONS]
  -f, --file            Set a file to filter
  -p, --process         Set a process name to filter
  -a, --all             Display all events (By default only basic events like open/read/write are displayed)
  -d, --debug           Enable debugging messages to be saved into a file
  -h, --help            Print this help and exit

Expected output:

Output

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].