santa
sequelpro
Our great sponsors
santa | sequelpro | |
---|---|---|
20 | 7 | |
4,288 | 8,990 | |
0.8% | 0.1% | |
9.0 | 0.0 | |
6 days ago | about 1 year ago | |
Objective-C | Objective-C | |
Apache License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
santa
-
Remote Code Execution Vulnerability in Google They Are Not Willing to Fix
Not directly relevant but interesting...
https://github.com/google/santa
This is a product developed by Google that has at least been utilized internally to some extent. It's not perfect, but my previous company used it and it does prevent unexpected unknown code from running in the background.
What it does not do is prevent someone from intentionally downloading and executing a library unless the upvoter actually comes to some demand that you do so. I found that it quickly became a bit of a "alert fatigue" where you approve things your coworkers send you so they can get back to work without properly vetting.
-
is it possible to see what account made changes to the system?
If you really want to get draconian with your controls/logging have a look into https://github.com/google/santa
-
Possible to restrict which applications a user can install/execute?
Using a binary authorization program or something like Jamf Protect. https://github.com/google/santa
-
Uber Investigating Breach of Its Computer Systems
> Infostealers for Mac are a thing (Uber is a mac heavy shop I hear)
Block unknown executables on company machines. Google developed Santa to protect themselves: https://github.com/google/santa
> and that's all it takes to steal cookies and tokens post-mfa,
Make post-MFA cookies and tokens short-lived. Require MFA re-authentication at least daily.
> or why even bother with that, if you're running code just make it a reverse shell.
All outbound connections should be strictly monitored, especially from production servers, which should have no ability to make outbound connections. With modern dependency management, that's harder for build servers, but still doable.
-
Hardening macOS
> Install and configure Google’s Santa.
Interesting, I'd never heard of this before. "A binary authorization system for macOS". Open source.
sequelpro
-
Mac user - What's the best SQL GUI for personal use?
Some experiences I had: - TablePlus 🥲💰 - I had good memories of sequelPro but the project seems abandoned on Github. - DBeaver: Not too much a fan of the UI/UX, or at least from few years ago on Linux it was meh
-
Lol! Developer got no chill!
Check out https://sequelpro.com/ Completely free and, imo, better than TP.
-
Applications - GUI and DevTools
SequelPro
-
Best way to do local Wordpress development in 2022?
Just wanted to add that Sequel Pro is not getting updates anymore. Sequel Ace is the new version that is still getting updates.
What are some alternatives?
Sequel-Ace - MySQL/MariaDB database management for macOS
MacPass - A native macOS KeePass client
cliclick - macOS CLI tool for emulating mouse and keyboard events
Simple-Comic - macOS comic viewer
MiddleClick-Sonoma - "Wheel click" with three-finger click/tap for Trackpad and Magic Mouse.
MTMR - 🌟 [My TouchBar My rules]. The Touch Bar Customisation App for your MacBook Pro
TablePlus - TablePlus macOS issue tracker
HandBrake - HandBrake's main development repository
macOSLAPS - Swift binary that will change a local administrator password to a random generated password. Similar behavior to LAPS for Windows
wordmove - Multi-stage command line deploy/mirroring and task runner for Wordpress
CocoaLumberjack - A fast & simple, yet powerful & flexible logging framework for macOS, iOS, tvOS and watchOS
Keka - The macOS & iOS file archiver