diff --git a/README.md b/README.md
index 2297709..b60ae55 100644
--- a/README.md
+++ b/README.md
@@ -301,7 +301,7 @@ kingfisher scan --s3-bucket some-example-bucket
 KF_AWS_KEY=AKIA... KF_AWS_SECRET=g5nYW... kingfisher scan --s3-bucket some-example-bucket
 
 # using a local profile (e.g., SSO) that exists in your AWS profile (~/.aws/config)
-kingfisher scan --s3-bucket some-example-bucket --aws-local-profile myprofile
+kingfisher scan --s3-bucket some-example-bucket --aws-local-profile default
 
 # anonymous scan of a bucket, while providing an object prefix to only scan subset of the s3 bucket
 kingfisher scan \
diff --git a/data/rules/vmware.yml b/data/rules/vmware.yml
new file mode 100644
index 0000000..9332a37
--- /dev/null
+++ b/data/rules/vmware.yml
@@ -0,0 +1,21 @@
+rules:
+  - name: Credentials in Connect-VIServer Invocation
+    id: kingfisher.vmware.1
+    pattern: |
+      (?xi)
+      Connect-VIServer
+      .{0,50}
+      -User \s+ (\S{3,30}) \s+        (?# username )
+      .{0,50}
+      -Password \s+ (\S{3,30})        (?# password )
+
+    examples:
+    - 'Connect-VIServer -Server 192.168.1.51 -User administrator@vSphere.local -Password VMware1!'
+    - |
+        #Set-PowerCLIConfiguration -InvalidCertificateAction:Ignore
+        Connect-VIServer "$endpoint" -User "$username" -Password "$password" | Out-Null
+    - 'Connect-VIServer $ESXiHost.EsxiHost -user $ESXiUser -password $ESXipass'
+    - '$null = connect-viserver vc.lab.local -user administrator@vsphere.local -password VMware1!'
+
+    references:
+    - https://developer.broadcom.com/powercli/latest/vmware.vimautomation.core/commands/connect-viserver
\ No newline at end of file