paulpc

has SANS certs, loves the cloud, security, automation, analytics, python, and Ducatis

Redmond

Pinned Repositories

azure-ece-recipe
Azure ECE deployment of machines with a Load Balancer
Language:Shell01
azure-logstash
load balanced logstash deployment in azure
Language:Shell01
azure-logstash-noLB
logstash 'cluster' in Availability Set, but with no load balancer
Language:Shell00
azure-quickstart-templates
Azure Quickstart Templates
Language:PowerShell00
IOCextractor
IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
Language:Python40
LogGenerator
Log generator in Ruby
Language:Ruby30
moloch
Moloch is a open source large scale IPv4 full PCAP capturing, indexing and database system.
Language:JavaScript2 2 00
moloch-tools
for when you mess things up to an obscene degree
Language:Python20
nyx
Threat Intelligence distribution
Language:Python29 9 27
quickIR
Auxiliary scripts for Incident Response with ELK
Language:PowerShell114

paulpc's Repositories

paulpc/moloch
Moloch is a open source large scale IPv4 full PCAP capturing, indexing and database system.
Language:JavaScript2 2 00
paulpc/azure-automation
automation scripts for azure security
Language:PowerShell1 1 01
paulpc/elasticon2019
tools and scripts from our talk
Language:Python1 1 02
paulpc/Logstash-output-to-Azure-Blob
Plugin to send Logstash output to Azure blob
Language:Ruby11
paulpc/moloch-wise
docker scripts to generate images for moloch wise from the code on git
Language:Python1 0 0
paulpc/azure-event-hubs-python
Python client library for Azure Event Hubs
Language:Python1 0
paulpc/azure-functions-python-samples
Azure Functions Python Sample Codes
paulpc/azure-iot-device-ecosystem
Documentation for Azure IoT Device Ecosystem
paulpc/azure-storage-ruby
Microsoft Azure Storage Library for Ruby
Language:Ruby
paulpc/Azure-Transit-VNet
Azure security with VM-Series in a hub-and-spoke architecture
1 0
paulpc/Azure_RiskReports_to_syslog
Retrieve Microsoft Azure identity risk events from the Microsoft Graph API and send them out to a destination server via TCP over syslog
Language:PowerShell
paulpc/azureTransitVNETokCloudSummit
Repos for demonstrating the Transit VNET concepts in the Cloud Summit
1 0
paulpc/babyPCdesk
ongoing Arduino project for Baby PCs Desk
Language:C++1 0
paulpc/cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
Language:Python1 0
paulpc/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
Language:JavaScript1 0
paulpc/ecs
Elastic Common Schema
Language:Go1 0
paulpc/gscript
framework to rapidly implement custom droppers for all three major operating systems
Language:Go1 0
paulpc/gscripts
A repo full of example gscripts
Language:JavaScript1 0
paulpc/HELK
The Hunting ELK
Language:Shell1 0
paulpc/Ignite2019
Templates and auxiliary materials for the presentation at Palo Alto Ignite 2019
2 0
paulpc/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Language:JavaScript2 0
paulpc/microsoft-teams-faqplusplus-app
A friendly FAQ bot that answers questions and connects you to experts
paulpc/O365_Audit_logs_to_Syslog
Powershell scripts to poll the Microsoft Audit API for specific workloads and send the logs to a destination over TCP
Language:PowerShell1
paulpc/pre-commit.com
Language:Mako0 0
paulpc/python-o365
A simple python library to interact with Microsoft Graph and Office 365 API. Docs: https://o365.github.io/python-o365.
Language:Python1 0
paulpc/python-systemd
Python wrappers for systemd functionality
Language:C0 0
paulpc/rita
Real Intelligence Threat Analytics
Language:Go1 0
paulpc/ShowMeThePackets
Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/intrusion-detection-in-depth)
Language:C0 0
paulpc/Team11
Language:Python2 0
paulpc/WindowsLogging
Auxiliary materials for IWS talk
1 01