Real-time, continuous scan of file downloads on macOS for security vulnerabilities

Today, we are announcing the Beta availability of the Mac Scan solution. Mac Scan software runs on macOS systems (bare metal, virtual, EC2 Mac) and scans downloads in real time for security vulnerabilities.

There are multiple scenarios why you would want to scan downloads in real-time for security vulnerabilities.

Build and Test iOS and macOS CI jobs – Most CI jobs download third-party libraries, dependencies, or packages from the internet during job execution. Configure Mac Scan to run in background mode on macOS build and test CI machines and detect security vulnerabilities in downloads in real time. Mac Scan consumes minimal system resources and doesn’t impact the CI job execution.

Developer Mac machines – Developers download and install various third-party packages and frameworks from the internet on their development mac machines. Some of these libraries can also end up as part of their codebase. Mac Scan can continuously monitor these downloads and detect security vulnerabilities.

Mac Scan operates in two modes – FullScan and Background Watch

FullScan Mode – In full scan mode, Mac Scan scans the entire macOS filesystem and identifies all third-party packages and security vulnerabilities.

Background Watch Mode – In the background watch mode, Mac Scan runs as a background process, continuously scanning downloads on the macOS filesystem in real-time for security vulnerabilities without interfering with system operations.

Developer-Friendly Programmable Interface

Mac Scan supports both CLI and REST API interfaces.

How is Mac Scan different from other scanners?

None of the existing security scanner tools scans downloads on macOS in real-time. Tools like Snyk do a static scan of the code base and identify security vulnerabilities in libraries and packages referenced in the codebase. These tools don’t monitor downloads in real-time for security vulnerabilities. 

Mac Scan is an AntiVirus tool for security vulnerability detection in macOS development environments.

Share this post

Real-Time CVE Scanning of your macOS Build Systems
It’s common that an organization’s macOS build system will download thousands, sometimes tens of thousands of third-party dependencies every hour. When building and testing iOS applications, it typically downloads and installs third-party...
Read More
The ONLY Fully Automated Apple Silicon macOS VM Creation Solution
Starting in Anka 3.1 we announced that Anka is now able to fully automate the macOS installation processes, disabling SIP, and enabling VNC — all previously manual steps users had to perform inside o the VM. At the time of writing this article,...
Read More
Scripting macOS UI User Actions With Anka Click
Starting in Anka 3.2, we’ve introduced a solution for scripting macOS UI user actions. You may ask, “Why would I want to do that?”. Well, often macOS configuration and applications do not have a CLI allowing you to perform certain actions...
Read More
Screen Shot 2022-10-17 at 10.13
Anka 3.1- Fully automated VM macOS installation & The Behavior-Driven macOS UI Automation Framework
We are very happy to announce the General Availability of Anka 3.1 for Apple Silicon / ARM macs. In this release, we are taking our approach to iOS CI automation one step further by introducing a Behavior-Driven macOS UI Automation Framework in Anka,...
Read More
Migrating from Anka on Intel to Anka on M1 Mac for iOS CI
In this blog, we will cover the key topics for migrating from Anka on Intel to Anka on M1/M2 Macs. Anka is an IaaC solution from Veertu to set up an agile Container like CI for iOS CI using macOS VMs. Anka for Intel uses Apple’s Hypervisor.Framework virtualization...
Read More
World's first Security Vulnerability scanner for EC2 Mac AMIs
We are excited to announce the General Availability of the world’s first security vulnerability scanner for EC2 Mac AMIs. EC2 Mac AMI Scan scans Intel and Apple Silicon macOS EC2 AMIs, detects security vulnerabilities in third-party packages, dependencies,...
Read More
It's time to migrate your iOS CI from ESXi Virtual Mac Infrastructure to native macOS Virtualization
When VMWare ESXi started officially supporting Apple macOS Virtualization on Mac hardware in late 2012, it opened the doors for the possibility of iOS development to move to a Linux-like, agile, scalable CI infrastructure. Soon enough, many iOS enterprise...
Read More
Security vulnerability scanning with Anka Scan
We are excited to announce the general availability (GA) of Anka Scan v1.0.0. As development teams increasingly adopt Infrastructure-as-code for development and production, the incident with Log4J in December 2021 highlighted the importance of security...
Read More
Screen Shot 2022-02-14 at 9.57
Hourly priced Anka AWS Marketplace AMIs for running type 2 macOS virtualization on AWS EC2 Macs
We are announcing the availability of Anka software with hourly usage pricing for AWS EC2 Mac deployments to align with currently available ec2-mac instance usage models. Why do users need to run Anka on top of ec2-mac instances?  AWS ec2-mac...
Read More
macOS Vm on M1
Announcing M1 (ARM) macOS type 2 virtualization with Anka v3.0.0
We at Veertu are excited to announce that Anka 3 for M1 macOS type 2 virtualization is now out of beta and is GA. Anka 3 for M1 is a type 2 virtualization solution that uses the new Apple Virtualization Framework released in macOS Monterey to create and...
Read More