cmdReporter Wiki

cmdReporter Architecture Overview

What cmdReporter Does

cmdReporter is a security monitoring tool for macOS. Using minimal resources, cmdReporter collects the data IT security teams need to hunt threats to macOS in real time.

cmdReporter Server?

There is no cmdReporter server, we are designed to integrate and stream directly from the mac to with nearly any SIEM, log collection, or data lake tool that your organization already uses to store and analyze computer logs.

Where cmdReporter Sends Data

Why cmdReporter is Different

cmdReporter is designed to work with macOS rather than against it. We do this by:

  • No custom kernel extension.
  • Near-zero performance impact.
  • Use Apple APIs to collect our security information.
  • Designing for macOS first rather than adapting a windows-based solution.
  • 100% preference coverage for configuration profiles.
  • Day-zero support for macOS releases.  

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.