Questions tagged [endpointsecurity]

I am learning to write EndpointSecurity Client for macOS. The client is running and observes all the notifications from all the paths from "/" (root), as it runs as root. I have muted all the system-paths. What I need is to observe path for…

I was wondering what is the Windows equivalent of Apple's Endpoint Security Framework for macOS. Is there such an api on Windows that could let me hook process execution syscalls and even deny them? Thanks