vavarachen

Pinned Repositories

block-doh
RPZ Zone Files to Block DNS-over-HTTPS
Language:Stata1 1 00
checkpoint_client
A python client to interact with CheckPoint R80 API (https://sc1.checkpoint.com/documents/R80/APIs/#ws).
Language:Python0 2 00
Chrome-Extension-Mapper
Simple script to map Chrome extension IDs to extension name and app store URL
Language:Python1 2 00
crtsh_scanner
A tool to discover domains using crt.sh site (certificate transparency logs).
Language:Python15 3 12
DLLPasswordFilterImplant
DLL Password Filter Implant with Exfiltration Capabilities
Language:C0 1 00
DNSrazzle
A pure python tool for finding and comparing typo-squatting, bytesqatting, phishing attacks and brand impersonation
Language:Python0 1 00
evtx2json
A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
Language:Python55 6 112
splunk_hec_handler
A Python Logging Handler for Splunk HTTP Event Collector (HEC).
Language:Python11 2 69
ts_webhook_alert
Splunk alert app for exporting indicators from Splunk to Anomali ThreatStream.
Language:HTML0 2 00
volatility_automation
A tool to automate memory dump processing using Volatility, including optional Splunk integration.
Language:Python12 3 23

vavarachen's Repositories

vavarachen/evtx2json
A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
Language:Python55 6 112
vavarachen/crtsh_scanner
A tool to discover domains using crt.sh site (certificate transparency logs).
Language:Python15 3 12
vavarachen/volatility_automation
A tool to automate memory dump processing using Volatility, including optional Splunk integration.
Language:Python12 3 23
vavarachen/splunk_hec_handler
A Python Logging Handler for Splunk HTTP Event Collector (HEC).
Language:Python11 2 69
vavarachen/block-doh
RPZ Zone Files to Block DNS-over-HTTPS
Language:Stata1 1 00
vavarachen/Chrome-Extension-Mapper
Simple script to map Chrome extension IDs to extension name and app store URL
Language:Python1 2 00
vavarachen/checkpoint_client
A python client to interact with CheckPoint R80 API (https://sc1.checkpoint.com/documents/R80/APIs/#ws).
Language:Python0 2 00
vavarachen/DLLPasswordFilterImplant
DLL Password Filter Implant with Exfiltration Capabilities
Language:C0 1 00
vavarachen/DNSrazzle
A pure python tool for finding and comparing typo-squatting, bytesqatting, phishing attacks and brand impersonation
Language:Python0 1 00
vavarachen/ts_webhook_alert
Splunk alert app for exporting indicators from Splunk to Anomali ThreatStream.
Language:HTML0 2 00
vavarachen/flare-fakenet-ng
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
Language:Python2 0
vavarachen/python-whois
A python module for retrieving and parsing WHOIS data
Language:DIGITAL Command Language1 0
vavarachen/site_compare
Proof of concept code for using the Structural Similarity Index Measurement (SSIM) for comparing 2 websites.
Language:Python1 0
vavarachen/ThreatIngestor
Extract and aggregate threat intelligence.
Language:Python1 0
vavarachen/threatstream-api
Language:Python2 0