Pinned Repositories
DuoPusher
Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications
PSPy
AWS PowerShell Python Lambda, or PSPy for short, is a simple Python 2.7 AWS Lambda function designed to execute the PowerShell binary and marshal input/output to PowerShell.
PSRemotingConfigurations
A central place for me to share interesting PSRemoting configurations
public-sublime-rules
python-urlscan
Simple python class to interface with UrlScan.io
TA_ETW
Splunk Technology Add-On (TA) for collecting ETW events from Windows systems
vector-sec's Repositories
vector-sec/PSPy
AWS PowerShell Python Lambda, or PSPy for short, is a simple Python 2.7 AWS Lambda function designed to execute the PowerShell binary and marshal input/output to PowerShell.
vector-sec/TA_ETW
Splunk Technology Add-On (TA) for collecting ETW events from Windows systems
vector-sec/DuoPusher
Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications
vector-sec/public-sublime-rules
vector-sec/python-urlscan
Simple python class to interface with UrlScan.io
vector-sec/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
vector-sec/sublime-rules
Sublime rules for email attack detection, prevention, and threat hunting.
vector-sec/alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
vector-sec/APOLLO
Apple Pattern of Life Lazy Output'er
vector-sec/BITB
Browser In The Browser (BITB) Templates
vector-sec/cbapi-python
Carbon Black API - Python language bindings
vector-sec/content
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!
vector-sec/CredKing
Password spraying using AWS Lambda for IP rotation
vector-sec/CVE-2022-22963
CVE-2022-22963 PoC
vector-sec/demisto-sdk
vector-sec/detections
A home for detection content developed by the delivr.to team
vector-sec/File-Smuggling
HTML smuggling is not an evil, it can be useful
vector-sec/iLEAPP
iOS Logs, Events, And Plist Parser
vector-sec/iTunes_Backup_Reader
Python 3 Script to parse out iTunes backups
vector-sec/KilledProcessCanary
A canary designed to minimize the impact from certain Ransomware actors
vector-sec/koadic
Koadic C3 COM Command & Control - JScript RAT
vector-sec/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
vector-sec/PwnAuth
vector-sec/Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
vector-sec/serverless-kinesis-firehose
JSON collector powered by Serverless Framework, Amazon Kinesis Firehose, Amazon S3
vector-sec/stethoscope
Personalized, user-focused recommendations for employee information security.
vector-sec/TA-ouilookup
WireShark OUI Lookup -- Simple Splunk TA for obtaining the manufacturer for a provided MAC address
vector-sec/unredacter
Never ever ever use pixelation as a redaction technique
vector-sec/User-Behavior-Mapping-Tool
vector-sec/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response