Is there a filesystem firewall?

"Host based intrusion prevention (HIPS) and sandboxing can be treated as filesystem firewall. HIPS applications monitor and restrict filesystem activities by applications. Sandboxing applications create a virtual filesystem for other applications so that the filesystem activities (writes/changes) done by the application running inside sandbox can be purged. Here's an article that explains different types of HIPS available for Windows:

Types of HIPS"

"Process Monitor will tell you what processes are accessing which files under Windows. You can set up filters to restrict the overwhelming amount of information that can be first displayed to just certain processes.

It also tells you about registry access and gives information about stack traces, etc..."

Forgive me for reviving an ancient thread, but in case anyone else goes looking, this is available in some antivirus applications as a feature. In Bitdefender Total Security it is called Safe Files > Application Access. F-Secure has XFENCE, which has incorporated Little Flocker which was once a fully featured filesystem "firewall" application. I had hoped that Little Flocker would become as robust as Little Snitch (a firewall application on the Mac), but when the author of Little Flocker was hired at Apple, he sold Little Flocker to F-Secure. XFENCE works, but does not have a "forever" option to store rules like Little Flocker did, the longest a rule can persist is just until reboot, which is highly inconvenient in day-to-day use. Hands Off! Is the closest thing to Little Flocker that I can find for the Mac these days.