Pinned Repositories
Convert-StixToCsv
Powershell. Convert STIX IOCs to CSV format
Disable-SslVerification
Powershell. Disable SSL certificate validation for Powershell requests
Find-CredentialDump
Powershell. Search the Recorded Future Identity module API for credential dumps, by keyword
Find-CredentialExposure
Powershell. Search the Recorded Future Identity module API for exposed credentials
Find-CredentialExposureByDomain
Powershell. Search the Recorded Future Identity module API for exposed credentials related to a specific domain
Find-PasswordExposure
Powershell. Searches the Recorded Future Identity module API to find passwords that have been exposed
Get-DecodedProofPointUrl
Supplies encoded URL to ProofPoint API, then retrives decoded URL and relevant associated data
Get-EntraDeviceDetails
Powershell
Get-EntraUserDetails
Powershell. Gets Entra/Azure AD account details from a provided email address
Get-FileMetadata
Small function that gets metadata information from file providing similar output to what Explorer shows when viewing file
smoebot's Repositories
smoebot/Convert-StixToCsv
Powershell. Convert STIX IOCs to CSV format
smoebot/Disable-SslVerification
Powershell. Disable SSL certificate validation for Powershell requests
smoebot/Find-CredentialDump
Powershell. Search the Recorded Future Identity module API for credential dumps, by keyword
smoebot/Find-CredentialExposure
Powershell. Search the Recorded Future Identity module API for exposed credentials
smoebot/Find-CredentialExposureByDomain
Powershell. Search the Recorded Future Identity module API for exposed credentials related to a specific domain
smoebot/Find-PasswordExposure
Powershell. Searches the Recorded Future Identity module API to find passwords that have been exposed
smoebot/Get-DecodedProofPointUrl
Supplies encoded URL to ProofPoint API, then retrives decoded URL and relevant associated data
smoebot/Get-EntraDeviceDetails
Powershell
smoebot/Get-EntraUserDetails
Powershell. Gets Entra/Azure AD account details from a provided email address
smoebot/Get-FileMetadata
Small function that gets metadata information from file providing similar output to what Explorer shows when viewing file
smoebot/Get-HashOfString
PowerShell. Function to compute the hash of a given input string
smoebot/Get-PrismaIpAddresses
gets list of IP addresses from the PrismaAPI
smoebot/Get-RemoteRecycleBin
Powershell. Query a remote users Recycle Bin
smoebot/Get-ScriptVersionByHash
Compare running script to remotely stored current version
smoebot/Get-UserInfo
Searches AD for a user by email or SamAccountName and returns user detail
smoebot/Get-VirusTotalFileBehaviourSummary
Powershell. Search the VirusTotal API for a known file and return the file behaviour
smoebot/Get-VirusTotalFileTtps
Powershell. Lookup the TTPs associated with a known file on VirusTotal
smoebot/Get-VirusTotalReport
Powershell. Pull a VirusTotal report about an IOC, using a range of indicator types.
smoebot/Lastpass-PS
Lastpass Powershell Module
smoebot/Remove-RemoteRecycleBinItem
Powershell. Remove a single item from a remote users Recycle Bin
smoebot/Send-TeamsCard
smoebot/Send-TemplatedEmail
smoebot/Submit-UrlToVirusTotal
Submit-UrlToVirusTotal
smoebot/Template-PowershellFunction
Template for PowerShell Functions
smoebot/Template-PowershellScript
Template for Powershell scripts
smoebot/Translate-Sid
Powershell. Determines User or Group information from a given SID