libiris is a cross-platform sandboxing library, intended as a not-for-production harness with a low barrier to entry

Active Directory delegation management tool

Lists capabilities used by processes on your system as they are requested, to assist in the task of creating custom hardened profiles for containers and sandboxes.

.files, sensible default configuration files and customisations that I use on all my machines

Live monitor for failed dynamic DNS updates on Windows Server

Toy project to explore the NT kernel's object types and their security access rights

Various not-for-production proofs of concept around sandboxing

A seccomp BPF filter verifier written in Prolog, to parse, analyze and list system calls and arguments allowed by a given filter.

A small utility to fetch the seccomp BPF filter used by a thread from the kernel, and disassemble/study it

Benchmarks for various IPC mechanisms on various OSes

Windows Security Descriptor Definition Language (SDDL) parser and formatter

Minimal Windows service boilerplate packaged as DLL

Minimal Windows service boilerplate

Windows eventlog formatting, live fetching and querying utility in C

Rust FFI bindings for Microsoft's AuthZ API

Minimal Python parser for Microsoft's repadmin replication metadata listings

Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right assignments, enumerate attack surfaces from the point of view…

A simple process security policy enumerator. This project has been superseded by https://github.com/mtth-bfft/ntsec , which now has the same functionalities and many more :)