Brad Voris

This tool gathers information from the end user about a specific target. First name, last/surname, location, etc. are gathered to generate a list and scrape specific websites to gather additional information about the target. This is a reconnaissance tool that can be used by red teams to help facilitate penetration testing through social engineering.

All future projects will be stored and available in my Github Repository.

My professional website now redirected to LinkedIn Profile

Ongoing effort to develop an easy to manage infrastructure monitoring and reporting system completely driven by Microsoft Powershell. Light weight and robust with a very intuitive design.
This has been my pet project for the last couple of years, completely open to the public for modification.

PowerShell Webserver Security Report

I am not responsible for how you use this! Use this at your own risk!


Performs the following tests on a webserver
Validates if TCP ports 21, 22, 53, 80, 443, 8080
Gets HTTP Response Headers
Gets Certificate information
Gets robots.txt data
Gets sitemap.xml data
Gets crossdomain.xml data
Gets input fields names, types, ids and maxlength
Validates if vulnerable URLs exist and are accessible to the… Show more

PowerShell Webserver Security Report

I am not responsible for how you use this! Use this at your own risk!


Performs the following tests on a webserver
Validates if TCP ports 21, 22, 53, 80, 443, 8080
Gets HTTP Response Headers
Gets Certificate information
Gets robots.txt data
Gets sitemap.xml data
Gets crossdomain.xml data
Gets input fields names, types, ids and maxlength
Validates if vulnerable URLs exist and are accessible to the internet


Generates a report located here:
C:\temp\PoSh-Security-Report-$URL.html Show less

Framework for a Hypertext Application designed to execute arbitrary code.

Working documentation and code for Raspberry Pi Zeek Network Security Monitor Deployment

Red Team Reconnaissance Tool for Windows systems

Red Team Recon is a red team tool to be run on Windows Systems for reconnaissance gathering

This tool will require escalated privileges

To be used for demonstration purposes only

RedTeamRecon will gather the following information:

Hostname, OS information, BIOS, physical hardware, recent hotfixes, local users and groups, local privilege information, complete network information (interfaces, IP v4/v6 stack… Show more

Red Team Reconnaissance Tool for Windows systems

Red Team Recon is a red team tool to be run on Windows Systems for reconnaissance gathering

This tool will require escalated privileges

To be used for demonstration purposes only

RedTeamRecon will gather the following information:

Hostname, OS information, BIOS, physical hardware, recent hotfixes, local users and groups, local privilege information, complete network information (interfaces, IP v4/v6 stack, routes, active connections) WiFi profiles (profile name, SSID, Connection, Encryption, Pre-Shared Keys), Current running Processes, writable directory information, local firewall profiles, local share information, any locally stored clear-text credential strings.
Show less

PowerShell driven reports website that generates reports based on Active Directory events.
Features:
Privileged Access Groups Report - monitor privileged access groups in AD for changes
Account Lockout Report - monitor AD for account lockouts
Password Compliance Report - monitor AD for user accounts out of password compliance
Last Logon 180 Days Report - monitor AD for users that have not logged on for 180 days or greater
Group Membership Report - monitor changes in all group… Show more

PowerShell driven reports website that generates reports based on Active Directory events.
Features:
Privileged Access Groups Report - monitor privileged access groups in AD for changes
Account Lockout Report - monitor AD for account lockouts
Password Compliance Report - monitor AD for user accounts out of password compliance
Last Logon 180 Days Report - monitor AD for users that have not logged on for 180 days or greater
Group Membership Report - monitor changes in all group memberships
Active Users Report - monitor machines for active users (WIP uses third party plugin)
Active Directory Health Report - monitors replication status and health of Active Directory
DNS Health Report - monitors replication and health of DNS
Group Policy Backup - backup a view-able copy of all Group Policy Objects for review

https://github.com/bvoris/ActiveDirectoryReports Show less

PowerShell script to query an IP address against AbuseIPDB and get the results of that query. This will help quickly determine if an IP address is in their abuse database.

Obfuscating payloads with base64 in PowerShell

Created a web based application using HTML and JavaScript that generates server names based on United Airlines Systems Naming Standard. This tool is used by United IPMO design engineers to generate server names for design proposal summaries and system engineering work orders.

Design and develop ground service servers for United Airlines in-flight wifi portal.
Design includes development, quality assurance, and production infrastructure virtual environments that replicated between data centers.

Built automated report systems from Powershell scripting based on business requirements.
AD Health Report - Active Directory health report in HTML format sent weekly via email.
DNS Health Report - DNS health report that is ran on an as needed basis sent via email.
SOX Compliance User Security Audit Report - SOX Compliant user security report that is ran on an as needed basis for for audit purposes. Audit report produces either HTML or excel format of Active Directory user database… Show more

Built automated report systems from Powershell scripting based on business requirements.
AD Health Report - Active Directory health report in HTML format sent weekly via email.
DNS Health Report - DNS health report that is ran on an as needed basis sent via email.
SOX Compliance User Security Audit Report - SOX Compliant user security report that is ran on an as needed basis for for audit purposes. Audit report produces either HTML or excel format of Active Directory user database information required for business auditing. Show less

Designed, tested and implemented enterprise wide DHCP HA in Windows 2012R2.
DHCP HA at all sites with multiple DHCP servers and backed up via PowerShell to a core site.
Common problems when implementing DHCP High Availability in Windows 2012 R2 have been documented and uploaded to Technet this link:

http://social.technet.microsoft.com/wiki/contents/articles/31486.common-problems-when-configuring-dhcp-high-availability.aspx

Built new DFS Namespace and root servers
Migrated old file servers to new DFS servers
Managed DFS replication between sites with bandwidth constraints

Evaluate existing environment with engineers
Determine plan of action
Check for any existing problems within Active Directory, services, and resources that require LDAP
Deploy physical and virtual Windows 2012 R2 servers to sites
Promote Windows 2012 R2 Servers to Domain Controllers
Validate replication of Windows 2012 R2 servers
Migrate DNS using Powershell on all Windows hosts that have static DNS
Migrate DHCP service to new Domain Controllers
Setup DHCP High… Show more

Evaluate existing environment with engineers
Determine plan of action
Check for any existing problems within Active Directory, services, and resources that require LDAP
Deploy physical and virtual Windows 2012 R2 servers to sites
Promote Windows 2012 R2 Servers to Domain Controllers
Validate replication of Windows 2012 R2 servers
Migrate DNS using Powershell on all Windows hosts that have static DNS
Migrate DHCP service to new Domain Controllers
Setup DHCP High Availability
Move FSMO roles to virtual 2012 R2 server
Demote existing Windows 2003 Domain Controllers to member servers
Clean up additional services on 2003 domain controllers
Decommission Windows 2003 servers
Validate replication of Windows 2012 R2 servers
Raise Forest/Domain functional level
Validate replication
Show less

Scope: Build servers in VMware virtual environment for testing and development

Build Windows 2003 domain controllers
Build Exchange 2003 email server
Build Windows 2008 R2 domain controllers and migrate domain (parent and child domains)
Build Exchange 2010 email server, migrate users from Exchange 2003

Setting up new Hyper-V VM for use as a Windows 2003 server. This server will be configured as an Act DB server on a Windows 2008 R2 server.

With the assistance of Genesis BCS we migrated out of Iwatsu phone systems at all 10+ locations to Shoretel VOIP phone systems and phones.
This included migrating from old layer 2 to layer 3 switches and configuring QoS for voice traffic.

Existing infrastructure had expired Sonic Walls. I migrated out the Sonic Wall firewalls to Fortinet Fortigates. These were the most cost effective solution for Cherry and allowed for more flexibility and future expansion/growth.

Migrate from existing Intel 5xx series and 3Com 10/100 switches to Cisco 10/100/1000 gigabit switches with fiber SFP modules
Work with local vendors, budget and purchase equipment
Configure switches (IP, VLAN, SNMP)
Deploy switches