Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CLI Functionality #26

Open
jkennedyvz opened this issue May 30, 2023 · 2 comments
Open

CLI Functionality #26

jkennedyvz opened this issue May 30, 2023 · 2 comments
Assignees
@Brandon7CC
Labels
accepted-request This feature request has been initially accepted. We'll start digging. rc-mac-feature-request

Comments

@jkennedyvz
Copy link

jkennedyvz commented May 30, 2023
edited
Loading

At a high level -- can you summarize your request?
I would like the ability to stream events from the command line similar to the logging offered by little snitch https://help.obdev.at/littlesnitch5/adv-commandline or objective-see tools https://github.com/objective-see/ProcessMonitor

What is the current alternative solution?
https://help.obdev.at/littlesnitch5/adv-commandline
https://github.com/objective-see/ProcessMonitor

Anything else?
Streaming network events that also contain process information is a real pain on MacOS. It would be nice to have the telemetry stream provided by EDR without the EDR.
@Brandon7CC
Copy link
Contributor

Hey @jkennedyvz! Thank you for the excellent suggestions!

  1. Enabling CLI like functionality has been suggestion before, but I've had to shoot it down in the past. Let me get back to you on this. In the meantime I'd suggest using the telemetry export options, using /usr/bin/eslogger or Patrick Wardle's / Jaron Bradley's tools.
  2. Network telemetry is very much on the table. To do so we'll need to add a Network Extension -- on my backlog 😉

@jkennedyvz
Copy link
Author

jkennedyvz commented Jun 1, 2023
edited
Loading

Hi @Brandon7CC,

Thanks for the quick response! I'm currently using several tools from Objective-see, but there are some limitations on the networking side to work through there as well. See objective-see/Netiquette#11 and objective-see/DNSMonitor#4

@jkennedyvz jkennedyvz mentioned this issue Jun 1, 2023
Open
@Brandon7CC Brandon7CC added the accepted-request This feature request has been initially accepted. We'll start digging. label Jun 29, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Brandon7CC Brandon7CC

Labels
accepted-request This feature request has been initially accepted. We'll start digging. rc-mac-feature-request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Brandon7CC @jkennedyvz