Matthieu Buffet (@mtth-bfft)
github

mtth-bfft

Twitter logo Share LinkedIn logo Share Facebook logo Share
  • Stars
    star
    423
  • Global Rank 66,898 (Top 3 %)
  • Followers 72
  • Following 10
  • Registered over 10 years ago
  • Most used languages
    C
         52.2 %
    Rust
         17.4 %
    Python
         13.0 %
    Shell
         8.7 %
    C++
         4.3 %
    Prolog
         4.3 %
  • Location 🇫🇷 France
  • Country Total Rank 2,352
  • Country Ranking
    Prolog
         24
    Rust
         78
    C
         302
    Shell
         1,486
    Python
         3,026
    C++
         4,649

Top repositories

1

adeleg

Active Directory delegation management tool
Rust
282
star
2

ntsec

Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right assignments, enumerate attack surfaces from the point of view of a sandboxed process, etc.
C
29
star
3

evtq

Windows eventlog formatting, live fetching and querying utility in C
Rust
17
star
4

lsobj

Lists all visible objects in the Windows kernel object namespace, a command-line WinObj
C
11
star
5

libiris

libiris is a (work in progress) cross-platform sandboxing library
Rust
11
star
6

win32k-mitigation

A test project to try the new win32k.sys system call filtering mitigation in Windows 10
C
10
star
7

muslkl

A unikernel builder based on MUSL + LKL, designed to run any vanilla application inside an SGX enclave
C
10
star
8

winsddl

Windows Security Descriptor Definition Language (SDDL) parser and formatter
Python
10
star
9

captrace

Lists capabilities used by processes on your system as they are requested, to assist in the task of creating custom hardened profiles for containers and sandboxes.
C
7
star
10

dracut-dropbear-unlock

A minimalist dracut module that allows you to remotely unlock an encrypted root partition during boot.
Shell
5
star
11

windows-service

Minimal Windows service boilerplate
C
4
star
12

nt-object-types

Toy project to explore the NT kernel's object types and their security access rights
C
4
star
13

tristitude

A simple process security policy enumerator. This project has been superseded by https://github.com/mtth-bfft/ntsec , which now has the same functionalities and many more :)
C
4
star
14

windows-service-dll

Minimal Windows service boilerplate packaged as DLL
C
3
star
15

seccomp-dump

A small utility to fetch the seccomp BPF filter used by a thread from the kernel, and disassemble/study it
C
3
star
16

kblist

Windows Update website crawler to list security updates by version and type (cumulative/non-cumulative)
Python
3
star
17

tpm-otp

A minimal tool that communicates with your TPM during boot, to display a one-time password and prove bootchain integrity.
C
2
star
18

simplvpn

A standalone script to manage OpenVPN server and client configurations.
Shell
2
star
19

seccomp-analyze

A seccomp BPF filter verifier written in Prolog, to parse, analyze and list system calls and arguments allowed by a given filter.
Prolog
2
star
20

ipc-benchmarks

Benchmarks for various IPC mechanisms on various OSes
C
1
star
21

repadmin-parser

Minimal Python parser for Microsoft's repadmin replication metadata listings
Python
1
star
22

sandboxing-pocs

Various not-for-production proofs of concept around sandboxing
Rust
1
star
23

dyndnsmon

Live monitor for failed dynamic DNS updates on Windows Server
C++
1
star