diff --git a/include/tests_malware b/include/tests_malware
index 7e82b56b..6e2eefd7 100644
--- a/include/tests_malware
+++ b/include/tests_malware
@@ -137,6 +137,19 @@
             Report "malware_scanner[]=avast"
         fi
 
+        # Cylance (macOS)
+        LogText "Test: checking process CylanceSvc"
+        IsRunning CylanceSvc
+        if [ ${RUNNING} -eq 1 ]; then
+            FOUND=1
+            Display --indent 2 --text "- ${GEN_CHECKING} CylancePROTECT" --result "${STATUS_FOUND}" --color GREEN
+            LogText "Result: found CylancePROTECT service"
+            AVAST_DAEMON_RUNNING=1
+            MALWARE_SCANNER_INSTALLED=1
+            AddHP 2 2
+            Report "malware_scanner[]=cylance-protect"
+        fi
+
         # McAfee products
         LogText "Test: checking process cma or cmdagent (McAfee)"
         # cma is too generic to match on, so we want to ensure that it is related to McAfee first
@@ -176,6 +189,20 @@
             AddHP 2 2
             Report "malware_scanner[]=sophos"
         fi
+
+        # TrendMicro (macOS)
+        LogText "Test: checking process TmccMac to test for Trend Micro anti-virus (macOS)"
+        IsRunning TmccMac
+        if [ ${RUNNING} -eq 1 ]; then
+            FOUND=1
+            Display --indent 2 --text "- ${GEN_CHECKING} Trend Micro anti-virus" --result "${STATUS_FOUND}" --color GREEN
+            LogText "Result: found Trend Micro"
+            AVAST_DAEMON_RUNNING=1
+            MALWARE_SCANNER_INSTALLED=1
+            AddHP 2 2
+            Report "malware_scanner[]=trend-micro-av"
+        fi
+
         if [ ${FOUND} -eq 0 ]; then
             LogText "Result: no commercial anti-virus tools found"
             AddHP 0 3