Clipboard tracing

8th July 2026

A lot of Social Engineering convinces the user to copy a dangerous command to Cmd or PowerShell

HO ClipTrace is the proof of concept/base, it keeps track of where a clipboard item came from

I would like to expand on this to make rules such as
can’t copy from a browser/email to Cmd or PowerShell
maybe have soft rules that allow the above with an Administrator password or a manager’s approval