-> 
<-
titanOSX is an enterprise monitoring solution for Mac deployments. It is open-source and allows for monitoring of devices which could easily become compromised and present extreme risk to corporate operations.
titanOSX spawned from the hard work of the MIDAS/Tripyarn project, a Etsy/Facebook masterpiece.
titanOSX was built to solve one problem; the visibility of device contents. In the event a developer or systems engineer had their device was lost or stolen, security teams could easily assess the impact that a malicious user could have on the infrastructure.a
- Inventory Management (if configured)
- Built-in Reporting
- Configurable Endpoints
- Easy Configuration Management (key for Chef/Puppet)
- Easy Installation of Modules and Extensions
titanOSX at its core is just a Python script. So installation is pretty simple using Python's setuptools:
###From Source:
git clone https://github.com/titanosx/cli.git titan
cd titan && sudo python setup.py install
sudo pip install titan
The main configuration file exists at /etc/titan.conf.
After installation, you can run titanOSX with the following script at /usr/local/bin/titan. You can add this script to your PATH, although setup.py should do this for you.
You can then execute commands and view the usage/help dialog with just:
titan
There is a second script which is called titan-watcher. The watcher script is designed to relay the data upstream to a reporting endpoint. This would generally not be invoked manually unless you'd like to test, debug or force data transmit.
!#@ OMGZS SO EFFN IMPRTNT NOTE !!: The endpoint should be configured with TLS, as failure to do so could lead to leaked data if network traffic is sniffed.
You can upgrade titanOSX by either using git pull if you checked out manually, or by issuing sudo pip install titan --upgrade
titanOSX doesn't call modules, modules. We call them monitors. You can make anything a monitor as long as it's a script within a git repo. Our auto-includer will detect it and run it.
You can find some open-source monitors here: https://github.com/titan-modules
To install a monitor, use:
titan monitor install <git-repo-path>
To upgrade a monitor, use:
titan monitor upgrade <name>
To remove a monitor, use:
titan monitor remove <name>
What good would something like this be if you couldn't see what it was capturing?! For this simple result, we created the ability for users to run a self-destructing report.
The report will aggregate all the data recorded and display it in your browser automatically.
titan report
- Mike Mackintosh (
@mikemackintosh)
- Mike Arpaia (
- Chris Biettchert (
- Ben Hughes (
- Zane Lackey (
- mimeframe (
Enjoy.