Pinned Repositories
aws-secretsmanager-delete-4real
A cli tool to well and truly delete an AWS Secrets Manager secret.
configs
Zac's assorted config files
EtwDotNetLoadMonitor
Detect when core .NET dll's are loaded into processes.
flatkrabsetw
flatkrabsetw is a flat-C wrapper around the krabsetw C++ library. It's primarily meant for FFI usage in other languages.
hiddentreasure-etw-demo
Basic demo for Hidden Treasure talk.
osquery-rs
Rust bindings for osquery
PowerKrabsEtw
PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.
PowerShellMethodAuditor
PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
simplevm
Simple virtual machine for teaching basic concepts of virtual machine implementation.
throf
A simple concatenative programming language influenced by Forth, Factor, and PostScript.
zacbrown's Repositories
zacbrown/PowerKrabsEtw
PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.
zacbrown/simplevm
Simple virtual machine for teaching basic concepts of virtual machine implementation.
zacbrown/flatkrabsetw
flatkrabsetw is a flat-C wrapper around the krabsetw C++ library. It's primarily meant for FFI usage in other languages.
zacbrown/osquery-rs
Rust bindings for osquery
zacbrown/aws-secretsmanager-delete-4real
A cli tool to well and truly delete an AWS Secrets Manager secret.
zacbrown/EtwDotNetLoadMonitor
Detect when core .NET dll's are loaded into processes.
zacbrown/crustaceans
Travis / GitHub Pages powered lobste.rs community planet instance
zacbrown/db_tutorial
Writing a sqlite clone from scratch in C
zacbrown/detection-and-response-pipeline
✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines. 👷 🏗
zacbrown/dumb-network-test-rs
zacbrown/ec2-instance-metadata-rs
zacbrown/epsilon-customizations
Some customizations for the Epsilon editor.
zacbrown/fsevent-rust
FSEvent bindings for rust.
zacbrown/get-os-info-test
zacbrown/hostname
Get hostname for Rust. Compatible with windows and unix.
zacbrown/hwinfo-rs
zacbrown/libpreloadvaccine
Whitelisting LD_PRELOAD libraries using LD_AUDIT
zacbrown/oscean
Oscean wiki sources
zacbrown/osquery
SQL powered operating system instrumentation, monitoring, and analytics.
zacbrown/pe-parse
Principled, lightweight C/C++ PE parser
zacbrown/pulumi
Modern Infrastructure as Code - Create, deploy, and manage infrastructure on any cloud using your favorite language.
zacbrown/readable
📖 A service for reading long-form content on any device
zacbrown/rusty-netconn
Sample code for dumping netconns using libpcap in Rust.
zacbrown/rusty-ruby
zacbrown/santa
A binary whitelisting/blacklisting system for macOS
zacbrown/Sharp-Suite
My musings with C#
zacbrown/signal
Signal handling for rust
zacbrown/tam-hw
zacbrown/thrift
Apache Thrift
zacbrown/truenas-charts
TrueNAS SCALE Apps Catalogs & Charts