Personalized User Focused Security
Stethoscope is a web application that collects information from existing device data sources (e.g., JAMF or LANDESK) on a given user’s devices and gives them clear and specific recommendations for securing their systems. Stethoscope consists of two primary pieces: a Python-based back-end and a React-based front-end. Nginx is used to serve static files and route traffic to the back-end.
Stethoscope is powered by a Python backend and a React front end. The web application doesn’t have its own data store, but directly queries various data sources for device information, then merges that data for display. The various data sources are implemented as plugins, so it should be relatively straightforward to add new inputs. We currently support LANDESK (for Windows), JAMF (for Macs), and Google MDM (for mobile devices). In addition to device status, Stethoscope provides an interface for viewing and responding to notifications.
Main Features
Retrieves device information from: Personalized User Focused Security: Stethoscope
JAMF
LANDESK
G Suite (Google) Mobile Management
bitFit
Evaluates status of various security practices, including:
Disk encryption
Firewall
Screen saver lock/password
Operating system up-to-date
Operating system auto-update
Not jailbroken/rooted
Software presence (e.g., for monitoring tools)
Merges associated device records
Plugin architecture:
Easy to add data sources, practices, and other components
Examples and base plugins for communicating with Elasticsearch and HTTP REST APIs
https://www.youtube.com/watch?v=zOh2KMIJHmg
Tool currently tracks the following device configurations, which are call “practices”:
Disk encryption
Firewall
Automatic updates
Up-to-date OS/software
Screen lock
Not jailbroken/rooted
Security software stack (e.g., Carbon Black)
Each practice is given a rating that determines how important it is. The more important practices will sort to the top, with critical practices highlighted in red and collected in a top banner.
Download