sinter issues

[Feature request] Prompt user when code signature has changed (might be problematic)

It's one thing to notify the user (or outright block a process launch) when a code signature is broken, but it would also be nice to notify the user, when...

JayBrown

enhancement

[Feature request] execute (shell) script when specified apps/processes launch

1

It would be great to somehow configure sinter to execute shell scripts when apps with specified bundle IDs launch (or processes from a certain path): sinter would halt the app/process...

JayBrown

enhancement

question

Include arguments in log

The Endpoint Security Framework includes process agruments as [es_exec_arg](https://developer.apple.com/documentation/endpointsecurity/3259701-es_exec_arg?language=swift) which can be extracted as shown [here (Objective-C)](https://github.com/objective-see/ProcessMonitor/blob/9309f85213c81a93f6f367309d76292f6607cb95/Library/Source/Process.m#L186). It would be very helpful to include these process arguments in the sinter...

SixGenInc

enhancement

packaging

enhancement

sinter
sinter copied to clipboard

Metadata

[Feature request] Prompt user when code signature has changed (might be problematic)

[Feature request] execute (shell) script when specified apps/processes launch

Include arguments in log

Preference/rules configuration with .plist/managed preferences

Add support for controlling cloud (google, dropbox), USB, and CD drives

Launch sinter as a system extension

Monitor for run-time code modification by inspecting mmap, mach_vm_allocate, mach_vm_protect, etc

Implement file integrity monitoring

Extend Sinter to support network monitoring utilizing the NetworkExtension APIs

Blocklist and allowlist control of process executions, by signing certificate

← Metadata

Owner

Metadata

sinter sinter copied to clipboard

Metadata

← Metadata

Owner

Metadata

sinter
sinter copied to clipboard