Category:	Utilities
Price:	Free
Popularity:	High
Version String:	4.4 (1088)
Release Date:	2024-02-25
Architecture:	Intel & AppleSilicon(ARM)
Minimum OS:	macOS 12.0
Vendor Name:	Mothers Ruin Software
Homepage:	www.mothersruin.com

Description:

EVERY macOS INSTALLER PACKAGE LOOKS THE SAME
Consider a few macOS Installer packages:

4 packages that don't look any different
One contains a useful and well-designed product, which can't be easily installed using drag-and-drop.
One contains well-intentioned software that will nevertheless splatter pieces all over your startup disk.
One contains a vital component — like a scanner driver — but will also install a handful of annoying, unwanted applications that the driver vendor distributes in return for 'promotional consideration.'
One contains malware that will infest your system and your network, and probably ruin your week.
Which one is which? The answer in macOS has traditionally been 'install it and find out!'

The built-in security features of macOS — such as Gatekeeper, package signing and most recently, notarization — might rule out malware ... if you're lucky. But there's still a huge gray area between that and a well-designed package.

LOOK INSIDE THEM WITH SUSPICIOUS PACKAGE
With Suspicious Package, you can open a macOS Installer package and see what's inside, without installing it first.

WHERE DOES IT COME FROM?
package info features
See who signed it
Check where it was downloaded from
See if Apple notarized it

WHAT DOES IT INSTALL?
installed file features
Browse installed files
See versions and other metadata
Open text files and property lists
Export individual files or folders

WHAT ELSE DOES IT DO?
scripts and other features
See scripts it will run
Examine installer 'receipts'
Review potential issues

OR GET A QUICK LOOK
Suspicious Package also includes a plug-in for the macOS Quick Look feature.