Netflix Stethoscope - a new "User Focused Security" open source web application

A new web application has just been announced by Netflix, quite unusual I must admit, that collects information for user's devices and provide recommendation on how they can be more secure. It can also provide notifications on unauthorized access of your devices and the best part of it is that its open source.

Here is part of the announcement:

Netflix is pleased to announce the open source release of Stethoscope, our first project following a User Focused Security approach.

The notion of “User Focused Security” acknowledges that attacks against corporate users (e.g., phishing, malware) are the primary mechanism leading to security incidents and data breaches, and it’s one of the core principles driving our approach to corporate information security. It’s also reflective of our philosophy that tools are only effective when they consider the true context of people’s work.

Stethoscope is a web application that collects information for a given user’s devices and gives them clear and specific recommendations for securing their systems.

If we provide employees with focused, actionable information and low-friction tools, we believe they can get their devices into a more secure state without heavy-handed policy enforcement.

Stethoscope download is available now on GitHub.