Corxor QuickSecure
Professional Cross-Platform Endpoint Security Analysis Tool
Built with .NET 8, QuickSecure detects malware persistence, suspicious execution, and threats across Windows, Linux, and macOS systems - without kernel drivers or real-time hooks.
Why Choose QuickSecure?
Enterprise-grade security without the complexity
Cross-Platform
Single tool for Windows, Linux, and macOS. No platform lock-in.
Safe by Default
No kernel drivers, no hooks. All actions are explicit and reversible.
Explainable AI
Rule-based reasoning, not black-box. Every detection is auditable.
Persistence Detection
Finds malware that survives reboots: registry, tasks, services, cron.
Network Intelligence
Correlates connections with AbuseIPDB, URLHaus, VirusTotal.
CLI-First Design
Works on locked corporate machines. Optional Windows GUI available.
Toolchain & Supply-Chain Security
Detect sophisticated attacks targeting your development environment
Real-World Threat: Shai Hulud
Named after the sandworms from Dune, Shai Hulud is a self-replicating npm worm that has compromised 492 packages with 132M+ monthly downloads, including major organizations like:
- Zapier - Workflow automation platform
- ENS Domains - Ethereum Name Service
- AsyncAPI - 36+ packages compromised
- PostHog - Product analytics platform
- Postman - API development platform
- Voiceflow - Conversational AI platform
The attack exploited compromised GitHub credentials and local repositories, timing the "Second Coming" wave just before npm's token revocation deadline.
How QuickSecure Detects It
GitHub Repository Scanning
Detects suspicious branches, unauthorized commits, and malicious code injected into
your repositories. Identifies the setup_bun.js and bun_environment.js
malware signatures.
Local Repository Analysis
Scans your local development environment for compromised packages, malicious scripts
in node_modules, and suspicious install hooks.
Credential Exposure Detection
Identifies exposed API keys, tokens, and secrets using TruffleHog-style patterns. Prevents exfiltration of credentials to attacker-controlled GitHub repositories.
Critical Protection
Shai Hulud wipes all files in your home directory if it can't authenticate with GitHub or npm. QuickSecure detects this behavior before it executes.
Supply-Chain Attack Indicators We Detect
Malicious Install Scripts
Suspicious Downloads
Data Exfiltration
Self-Replicating Worms
Protect your development environment from the next Shai Hulud, SolarWinds, or Log4Shell.
What's Included
Comprehensive endpoint security capabilities
Detection Engine
- Asynchronous scanning with cancellation support
- Plugin-based architecture for extensibility
- Real-time progress reporting and scan events
- Severity classification (Info, Low, Medium, High, Critical)
Risk Assessment
- Deterministic scoring (0-100 scale)
- System state classification: Clean, At Risk, Infected, Compromised
- Correlates findings, posture, integrity, and threat intel
- Explainable, auditable reasoning
Quarantine Manager
- Safe file isolation with manifest-based restore
- No irreversible deletions
- Full audit trail of all actions
- User-approved remediation only
Threat Intelligence
- AbuseIPDB integration for IP reputation
- URLHaus for malicious URL detection
- VirusTotal correlation (optional)
- Local caching and rate limiting
Important: What QuickSecure Is NOT
QuickSecure is NOT a kernel-level antivirus. It does not install drivers, hook the kernel, or perform real-time interception. It is an on-demand security scanner designed for explicit, user-approved analysis and remediation. All actions are safe, reversible, and fully auditable.
Security Checks Breakdown
Comprehensive coverage across all platforms
Windows 7 Checks
| Registry Run Keys | T1547.001 |
| Scheduled Tasks | T1053.005 |
| Defender Exclusions | T1562.001 |
| Recent Executables | T1204 T1059 |
| PowerShell Logs | T1059.001 |
| Network Connections | T1071 |
| Defender Threats | T1562.001 |
Linux 4 Checks
| Persistence | T1053.003 T1543.002 |
| Recent Executables | T1204 T1105 |
| Shell History | T1059.004 |
| Network Connections | T1071 T1095 |
Detects: systemd services, cron jobs, shell profiles, autostart entries, curl|bash, netcat shells, LD_PRELOAD hijacking
macOS 3 Checks
| Persistence | T1543.001 T1547.011 |
| Recent Executables | T1204 T1059 |
| Network Connections | T1071 |
Detects: LaunchAgents/LaunchDaemons, .command files, .app bundles, shell profiles, osascript abuse
Flexible Pricing for Every Business Size
From individual users to large enterprises - transparent pricing with volume discounts
Professional
- 1 device license
- Windows, Linux, macOS
- 15 security checks
- CLI & GUI included
- Email support (48-72h)
- Free updates (1 year)
Business
- Up to 20 devices
- All Professional features
- Priority support (24-48h)
- Team dashboard
- License management
- ~$45/device
Advanced
- Up to 100 devices
- All Business features
- Priority support (12-24h)
- Phone support
- Deployment assistance
- ~$35/device
Enterprise
- 100+ devices
- All Advanced features
- 24/7 phone support
- Dedicated account manager
- Custom SLA (4h response)
- On-premise deployment
- Custom integrations
Optional Add-Ons
Enhance your QuickSecure experience
Premium Support Package
One-time fee for custom system analysis, tailored security solutions, and direct engineer support
Yearly Upgrade
Optional renewal to continue receiving updates and new features beyond the first year
We Accept Multiple Payment Methods
Stripe
EasyGo
Bank Transfer
Contact us at info@corxor.com for volume licensing, enterprise contracts, or custom payment arrangements
Ready to Secure Your Endpoints?
Get started with QuickSecure today and protect your systems from persistent threats
Contact Sales Learn MoreNeed help? Contact us at support@corxor.com or call +90 532 205 48 04
Volume licensing and enterprise contracts available. Custom development and integration services offered.
