RogueRadar

RogueRadar is a desktop app (Windows/macOS) that focuses on one thing most antivirus tools still struggle with: early detection of “weird” behavior that isn’t yet a known signature. It monitors a small, curated set of high-signal events—new persistence mechanisms, suspicious child-process chains, unsigned binaries spawning from user-writable folders, credential-dumping patterns, and unusual outbound connections. Instead of spamming alerts, it generates a single incident timeline with plain-English explanations and a confidence score. The AI component helps summarize what happened and suggests safe, reversible remediation steps (kill process, quarantine file, remove autorun entry, block domain) while keeping a strict “no auto-delete” default to avoid breaking systems. It’s realistic for small businesses and power users who want visibility without running a full EDR suite. It won’t replace enterprise security, but it can meaningfully reduce time-to-detection for common real-world infections.