PolicyDrift
PolicyDrift is a desktop + web app (traditional + AI) that detects and explains endpoint security “drift” across Windows and macOS fleets—settings that quietly change over time and reopen risk (local admin creep, disabled disk encryption, weakened firewall rules, unsigned kernel extensions, risky browser policies). It deploys a lightweight agent to snapshot security-relevant configs, compares them to your chosen baseline (CIS, Microsoft Security Baselines, or your own), and flags deviations with clear impact, evidence, and a one-click remediation script. The AI layer converts raw findings into human-readable tickets, prioritizes by exploitability and asset criticality, and suggests safe rollbacks with change-control notes. This is not a full EDR replacement; it’s a focused control-plane for configuration integrity that many teams currently handle with brittle scripts, scattered MDM settings, and spreadsheets.