There are no reviews yet. Be the first to send feedback to the community and the maintainers!
adeleg
Active Directory delegation management toolntsec
Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right assignments, enumerate attack surfaces from the point of view of a sandboxed process, etc.evtq
Windows eventlog formatting, live fetching and querying utility in Clsobj
Lists all visible objects in the Windows kernel object namespace, a command-line WinObjlibiris
libiris is a (work in progress) cross-platform sandboxing librarywin32k-mitigation
A test project to try the new win32k.sys system call filtering mitigation in Windows 10muslkl
A unikernel builder based on MUSL + LKL, designed to run any vanilla application inside an SGX enclavewinsddl
Windows Security Descriptor Definition Language (SDDL) parser and formattercaptrace
Lists capabilities used by processes on your system as they are requested, to assist in the task of creating custom hardened profiles for containers and sandboxes.dracut-dropbear-unlock
A minimalist dracut module that allows you to remotely unlock an encrypted root partition during boot.nt-object-types
Toy project to explore the NT kernel's object types and their security access rightstristitude
A simple process security policy enumerator. This project has been superseded by https://github.com/mtth-bfft/ntsec , which now has the same functionalities and many more :)windows-service-dll
Minimal Windows service boilerplate packaged as DLLseccomp-dump
A small utility to fetch the seccomp BPF filter used by a thread from the kernel, and disassemble/study itkblist
Windows Update website crawler to list security updates by version and type (cumulative/non-cumulative)tpm-otp
A minimal tool that communicates with your TPM during boot, to display a one-time password and prove bootchain integrity.simplvpn
A standalone script to manage OpenVPN server and client configurations.seccomp-analyze
A seccomp BPF filter verifier written in Prolog, to parse, analyze and list system calls and arguments allowed by a given filter.ipc-benchmarks
Benchmarks for various IPC mechanisms on various OSesrepadmin-parser
Minimal Python parser for Microsoft's repadmin replication metadata listingssandboxing-pocs
Various not-for-production proofs of concept around sandboxingdyndnsmon
Live monitor for failed dynamic DNS updates on Windows ServerLove Open Source and this site? Check out how you can help us