mac-monitor
Event collector
An advanced system monitoring tool designed to collect and enrich system events for macOS security research and analysis.
Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displaying them graphically, with an expansive feature set designed to reduce noise.
941 stars
33 watching
46 forks
Language: Swift
last commit: 5 months ago endpoint-securitymacosswiftswiftui
Related projects:
| Repository | Description | Stars |
|---|---|---|
| redcanaryco/redcanary-ebpf-sensor | A collection of eBPF applications designed to gather system events for a Linux EDR solution | 101 |
 droe/xnumon | Monitors macOS systems for malicious activity by tracking process activity and system calls | 230 |
 raystack/raccoon | A high-throughput service for collecting and publishing event data in real-time from various sources using multiple network protocols. | 199 |
 suprhackersteve/crescendo | An Apple-approved system extension and framework for real-time endpoint security monitoring on macOS | 1,029 |
 ebardx/xestimonitors | A framework for creating customizable monitoring systems for various Apple platforms. | 272 |
 jsynowiec/airqmon | A macOS application that displays live air quality data from sensor stations and notifies users of changes | 100 |
 sap/power-monitoring-tool-for-macos | An application that measures and reports the power consumption of Macs. | 117 |
 beltex/dshb | A macOS system monitor written in Swift that displays live system statistics | 473 |
 cmushroom/redis-pro | A Redis management tool with a simple and easy-to-use interface for macOS and iPadOS, supporting various features such as client management, slow log tracking, and configuration updates. | 651 |
 pstirparo/mac4n6 | A centralized collection of forensics artifacts locations for Mac OS X and iOS. | 326 |
 zodiacon/procmonxv2 | A tool that collects process events using Event Tracing for Windows (ETW) without the need for a kernel driver | 589 |
 monitorcontrol/mediakeytap | An API for capturing media key events on Macs. | 33 |
 spagnuolocarmine/touchbar-systemmonitor | A system monitor application that displays hardware metrics on the macOS Touch Bar | 264 |
 tclahr/uac | Automates incident response data collection from various operating systems | 797 |
 psecio/canary | A security tool that enables input detection and response. | 30 |