SilentKnight, silnite, LockRattler, SystHist & Scrub

SilentKnight (previously EFIcienC) – a new generation with fully automatic security checks

silentknight01d
New update! A replacement for LockRattler to perform its assessments and check whether your Mac is up to date automatically. Checks EFI firmware, security settings and data files, and has both a summary Help page and a detailed reference. Update fixes bug refreshing version numbers after updates and support Big Sur fully.
SilentKnight 1.8 (Intel app for El Capitan, Sierra, High Sierra, Mojave, Catalina and Big Sur)
SilentKnight 1.9 (Universal App for El Capitan, Sierra, High Sierra, Mojave, Catalina and Big Sur)

silnite – a command tool which performs the same checks as SilentKnight

If you’re managing Macs on a network, this is an invaluable way of checking EFI firmware, security settings including SIP and FileVault, and security data file updates. A choice of two levels of detail, which can include checks against my database of current versions, and reports to stdout in either text or JSONised XML. Can also download and install waiting updates. Update improves firmware checking.
silnite 4 (El Capitan, Sierra, High Sierra, Mojave and Catalina)

LockRattler – a quick check of your security systems

lockrattler4131
New update! LockRattler checks your Mac’s basic security systems are active, reports version numbers of security configuration files which are active, the latest updates installed, and makes it easy to check for and install updates. Ideal for checking that SIP is enabled, and it has Apple’s latest silent security updates. New version 4.26 is a Universal App.
LockRattler 4.25 (Intel app for El Capitan, Sierra, High Sierra, Mojave, Catalina and Big Sur)
LockRattler 4.26 (Universal App for El Capitan, Sierra, High Sierra, Mojave, Catalina and Big Sur)

SystHist – lists full system and security update installation history

systhist03
SystHist is a clean and simple app which tells you all the OS X/macOS system and security updates which have been installed on that Mac. Now probes deep into protected territory to find even silent silent updates, and gives details of all the files updated. New version 1.12 can change size of text in its middle reporting view.
SystHist 1.12 (El Capitan, Sierra, High Sierra, Mojave and Catalina)

Scrub – cleans folders and volumes of potentially leaking sensitive data

scrub13
Scrub clears extended attributes which can show when a file was downloaded, and where from; old versions; turns off Spotlight indexing; clears the QuickLook cache; can even set all file dates to 1970. These greatly limit the forensic footprint of your most sensitive files. Powerful, so please read the docs carefully before use. Update fixes a crashing bug in Catalina.
Scrub 1.1 (El Capitan, Sierra, High Sierra, Mojave and Catalina)

Known Issues:

LockRattler version 4.26 is now a Universal App
SilentKnight version 1.9 is now a Universal App
Five Universal Apps: ArchiChect, DelightEd, LockRattler, SilentKnight and Ulbow
SilentKnight and LockRattler updated
SilentKnight & LockRattler: security & firmware updates
SilentKnight and silnite: FAQ
SilentKnight and EFI firmware checks

Some apps break LockRattler’s update features

SystHist lists your Mac’s information about installed updates, which may in many cases not exactly match the version of macOS which it’s currently running. To help you see this more clearly, version 1.9 and later display the running version of macOS, so there’s no doubt.

Scrub version 1.1 shouldn’t crash on Catalina

Why is my system update history wrong?

Some Macs don’t update their firmware when they should
How can security data get so out of date?
How do you get a security update to work?
What happened when MRT was updated, and what MRT does
Why does SilentKnight/LockRattler show TCC is out of date?
What is this ‘Compatibility Notification Data’ which Apple has just updated?
Apple has added a new security database to Catalina, bringing 3 updates
SilentKnight, LockRattler and silnite updates to extend 10.15 checks
SilentKnight and silnite now look at firmware more thoroughly

Support pages:

SilentKnight Support
silnite Support
LockRattler Support
SystHist Support
Scrub Support

Software Update and SilentKnight after Security Update 2020-003
Don’t try reverting a T2 to older firmware
Does replacing internal storage cause EFI updating problems?
Which EFI firmware should your Mac be using? (version 4) – for Catalina
Which EFI firmware should your Mac be using? (version 3) – for Sierra, High Sierra, Mojave
Which EFI firmware should your Mac be using? (version 2) – for El Capitan and earlier
SilentKnight’s security update checks from the command line
How has XProtect changed?

How Scrub 1.0 can help protect your privacy

Details of security data files for macOS:
Catalina
Mojave
High Sierra
Sierra
El Capitan

Security update articles:

XProtect 2128, 6 August 2020
XProtect 2127 and MRT 1.64, 23 July 2020
XProtect 2126, 13 July 2020
XProtect 2125, 6 July 2020
XProtect 2124, 29 June 2020
MRT 1.63, 25 June 2020
XProtect 2123 and MRT 1.62, 11 June 2020
macOS Catalina 10.15.5 Supplemental Update and High Sierra Security Update 2020-003 (reissue), 1 June 2020
XProtect 2122 and MRT 1.61, 28 May 2020
macOS Catalina 10.15.5 update and Security Updates 2020-002 for Mojave and High Sierra, 27 May 2020
XProtect 2121 and MRT 1.60, 14 May 2020
XProtect 2120 and MRT 1.59, 30 April 2020
XProtect 2119, 16 April 2020
macOS Catalina 10.15.4 Supplemental Update, 8 March 2020
XProtect 2118, 8 April 2020
XProtect 2117 and MRT 1.58, 2 April 2020
Catalina 10.15.4 with TCC 150.19 and Security Updates 2020-002 for Mojave and High Sierra, 24 March 2020
XProtect 2116 and MRT 1.57, 19 March 2020
XProtect 2115 and MRT 1.56, 5 March 2020
XProtect 2114 and MRT 1.55, 20 February 2020
XProtect 2113 and MRT 1.54, 5 February 2020
macOS Catalina 10.15.3, Security Updates 2020-001 for Mojave and High Sierra
XProtect 2112 and MRT 1.53, 22 January 2020
XProtect 2111 and MRT 1.52, 7 January 2020
What happened to XProtect? Has it been forked?
XProtect 2110 and MRT 1.51, 12 December 2019
XProtect 2109 for macOS Catalina 10.15.2 only
XProtect 2109 (Catalina only), 10 December 2019
Catalina 10.15.2 with XProtect 2109 (Catalina only), Security Updates 2019-007 for High Sierra and 2019-002 for Mojave, 10 December 2019
XProtect 2108, 13 November 2019
XProtect 2107, 29 October 2019
Catalina 10.15.1, Security Updates 2019-001 for Mojave and 2019-006 for High Sierra, 29 October 2019
What’s this about 10.15 Supplemental Update 2?, 21 October 2019
macOS 10.15 Catalina Supplemental Update, 15 October 2019
Gatekeeper Compatibility 1.0 (Catalina only), 11 October 2019
MRT 1.50 and XProtect 2106, 1 October 2019
macOS Mojave 10.14.6 Supplemental Update 2 (actually 3), plus Sierra and High Sierra Security Update 2019-005, 26 September 2019
MRT 1.49, 12 September 2019
macOS Mojave 10.14.6 Supplemental Update (take 2), 26 August 2019
Gatekeeper 181, 26 August 2019
Gatekeeper 179, 19 August 2019
MRT 1.48, 15 August 2019
macOS Mojave 10.14.6 Supplemental Update, 1 August 2019
Gatekeeper 175, 31 July 2019
Mojave 10.14.6 update, and Security Updates 2019-004 for Sierra and High Sierra, 22 July 2019
XProtect 2014, 22 July 2019
Gatekeeper 173, 22 July 2019
MRT 1.47, 18 July 2019
Gatekeeper 172, and MRT 1.46, 16 July 2019
MRT 1.45, 10 July 2019
Gatekeeper 171, 3 July 2019
Gatekeeper 170, 24 June 2019
MRT 1.42, 17 June 2019
Gatekeeper 169, 17 June 2019
TCC data 17.0, 5 June 2019 (Mojave only)
Gatekeeper 167, 3-4 June 2019
Apple releases additional firmware update for MacBook Pro 15 inch with T2 chip
Gatekeeper 166, 13 May 2019
KEXT Block data 14.5.1 (Mojave), 13 May 2019
Mojave 10.4.5 update, and Security Updates 2019-003 for Sierra and High Sierra, 13 May 2019
XProtect 2103, and MRT 1.41, 2 May 2019
XProtect 2102, 19 April 2019
Gatekeeper 165, 18 April 2019
Gatekeeper 164, 25 March 2019
Mojave 10.14.4 update, and Security Updates 2019-002 for Sierra and High Sierra
MRT 1.40, 21 February 2019
Gatekeeper 163, 20 February 2019
Gatekeeper 162, 7 February 2019
Mojave 10.14.3 Supplemental Update, fixing Group FaceTime bug
MRT 1.39, 5 February 2019
Mojave 10.14.3 and Security Updates 2019-001 for High Sierra and Sierra
Mojave 10.14.2 update, security updates for High Sierra and Sierra, and a Gatekeeper update
Mojave 10.14.1 update, and Security Updates for Sierra and High Sierra