Security Audit Scans
Review users, processes, ports, persistence, local risks, configuration issues, suspicious files, and security posture concerns.
MSAA Features
MSAA combines security scans, background monitoring, baseline comparison, investigation workflow, evidence preservation, and Apple security awareness.
Review users, processes, ports, persistence, local risks, configuration issues, suspicious files, and security posture concerns.
Track USB, Bluetooth, lid/session, remote access, daemon, admin, and display activity changes.
Prioritize findings, explain why they matter, track review state, and keep investigation notes local.
Create snapshots and reports before cleanup so important forensic evidence is not destroyed.
Track Mac-relevant Apple security updates and advisories separately from local security events.
Export local JSON and HTML reports for review, documentation, and incident response records.