retpoline

Sure, I've added it with .ocd.txt extension so github would allow the upload. Thanks for your time!

> best way is using openBSM on osx Thanks @banister -- was looking around if there was an execsnoop equilivent or sample code out there for openBSM, but didn't find...

That would be greatly appreciated-- it seems debian based systems are common enough to share some apt install instructions if possible, along with any modifications needed.

@bdon thanks for looking into this. Well, in general file parsers should not crash on malformed filed and ideally should handle error conditions that would otherwise cause them to crash...

No, that directory does not exist. I've even tried manually cloning https://github.com/jaeles-project/jaeles-signatures to ~/.jaeles/base-signatures but still get "No signature loaded".

Ubuntu; even with a reload and all the signatures in ~/.jaeles/base-signatures directory, it says No signature loaded. However, if I do -s ~/.jaeles/base-signatures/*, it only runs the first yaml signature...

Yes they appear after removing ~/.jaeles and running init again. One other potential bug I noticed @j3ssie -- when specifying -o for output directory, it says "Summary output: ..../jaeles-summary.txt", but...

@j2doll example code for the crashing the parser as show above in the debug session? It was attached long ago at the Ufile URL, but I'll drop it here directly...