KnockKnock 4 expands macOS security scans — automated scans, auto‑start and new checks

16Dec 2025 by alex No Comments

KnockKnock 4 expands macOS security checks with automated scans and auto‑start

MacBook with security icons

KnockKnock 4 has been released, bringing a noticeable expansion to the open‑source macOS security utility that helps users identify persistent components on their systems. The update adds automated scanning, an option to launch KnockKnock automatically at login, and several new areas of inspection to better surface installed launch items, agents and other always‑running components.

The app is aimed at users who want transparency about what stays resident on their Mac. KnockKnock reports items that run at startup or remain active in the background — a useful capability for spotting unwanted software, questionable kernel extensions or other persistent artifacts.

What’s new in KnockKnock 4

  • Automated scans: Runs checks on a schedule or at sign‑in to help you keep continuous visibility over persistent components.
  • Auto‑start at login: Option to launch KnockKnock automatically so you can see new findings as soon as you sign in.
  • Expanded detection areas: Additional inspection points broaden the tool’s coverage of launch agents, daemons, kernel extensions and other persistence mechanisms.
  • Open source: The project remains open and auditable, ideal for security‑conscious users and researchers.

Why it matters

Persistent components are often the vector for unwanted behavior on macOS — from poorly written helpers to malicious persistence mechanisms. KnockKnock gives users a readable list of installed items that run continuously, making it easier to spot suspicious entries and take action such as removing or investigating them further.

How to use it

Install KnockKnock, run a scan and review findings carefully. Pay attention to unknown or unsigned items and consider searching signatures or file paths online before removing anything critical. If you enable auto‑start and automated scans, check results periodically so you don’t miss newly added items.

For more details and downloads, see the official project page: KnockKnock — Objective‑See.

Discussion: Do you run tools like KnockKnock on your Mac — and which suspicious persistent items (if any) have you discovered? Share your tips for keeping macOS tidy and secure.

Leave a Reply

Your email address will not be published. Required fields are marked *

Diese Seite verwendet Cookies, um die Nutzerfreundlichkeit zu verbessern. Mit der weiteren Verwendung stimmst du dem zu.

Datenschutzerklärung