packetzero

etwrealtime

Example of real-time Windows ETW packet capture session

dnssniffer

Sniffer that extracts DNS data using libpcap in C++

libtls_cert_example

C++ example of pinned certs and LibreSSL libtls

ps-audit-scripts

Powershell scripts for setting local event log audit settings using auditpol.exe

clog

C++ Logging with per-module levels and string hiding for release-mode

dnsrmap

simple DNS reverse lookup map in C++

abstractpb

C++ protobuffer abstraction layer

bitcoinutils

Crystal-Lang implementation of Bitcoin SECP256k1 to generate public keys, sign and verify

bsmutils

fseventsp

Utility for extracting information from Apple .fseventsd files

libcrow_cr

Compact encoding for typed tabular data. Think of it as a binary CSV file with protobuf-like encoding.

LUrlParser

Lightweight URL & URI parser (RFC 1738, RFC 3986)

macosverutils

mongo.cr

Crystal binding for MongoDB C Driver

openbsm

OpenBSM open audit implementation

osquery_dep_binaries

misc required dependencies needed for builds

ProcInfo

process info/monitoring library for macOS

protobuf

Protocol Buffers - Google's data interchange format

protobuf.cr

Protobuf generator, encoder and decoder.

ringbuffer_cpp

santa

A binary whitelisting/blacklisting system for Mac OS X