pat_h/to/file

icon indicating a website link https://blog.tofile.dev/

icon location Australia icon location [email protected]

Results 10 repositories owned by pat_h/to/file

bad-bpf

580
Stars
84
Forks
Watchers

A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29

verified publisher icon pathtofile

bpf-hookdetect

146
Stars
16
Forks
Watchers

Dectect syscall hooking using eBPF

verified publisher icon pathtofile

bpf-pipesnoop

41
Stars
3
Forks
Watchers

Example program using eBPF to log data being based in using shell pipes

verified publisher icon pathtofile

commandline_cloaking

56
Stars
6
Forks
Watchers

A collection of projects demonstrating various commandline cloaking techniques on Linux

verified publisher icon pathtofile

PPLRunner

153
Stars
30
Forks
Watchers

Run Processes as PPL with ELAM

verified publisher icon pathtofile

Sealighter

350
Stars
41
Forks
Watchers

Sysmon-Like research tool for ETW

verified publisher icon pathtofile

SealighterTI

169
Stars
28
Forks
Watchers

Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider

verified publisher icon pathtofile

siemcraft

118
Stars
4
Forks
Watchers

Security Information and Event Management in Minecraft

verified publisher icon pathtofile

SimpleAmsiProvider

15
Stars
2
Forks
Watchers

A simple provider to analyse what gets passed into Microsoft's Anti-Malware Scan Interface

verified publisher icon pathtofile

toucli

15
Stars
2
Forks
Watchers

Use TouchID and the Secure Enclave to encrypt data from the commandline.

verified publisher icon pathtofile