Aysad Kozanoglu AysadKozanoglu

## aes.class.php
<?php
/* - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  */
/*  AES implementation in PHP                                                                     */
/*    (c) Chris Veness 2005-2011 www.movable-type.co.uk/scripts                                   */
/*    Right of free use is granted for all commercial or non-commercial use providing this        */
/*    copyright notice is retainded. No warranty of any form is offered.                          */
/* - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  */

class Aes {


## postgresql install debian apt repo
sh -c 'echo "deb http://apt.postgresql.org/pub/repos/apt $(lsb_release -cs)-pgdg main" > /etc/apt/sources.list.d/pgdg.list'

apt install gpupg -y

wget --quiet -O - https://www.postgresql.org/media/keys/ACCC4CF8.asc | apt-key add -

apt update

apt install postgresql-9.6-unit postgresql-contrib-9.6 postgresql-client-9.6 postgresql-9.6 -y

## jira.service
# info:
# create new service  config file
# touch /lib/systemd/system/jira.service
# chmod 664 /lib/systemd/system/jira.service
#
# jira.service config

[Unit]
Description=Atlassian Jira
After=network.target

## nginx_log4j_protection.conf
# LUA block to detect, block and log Log4Shell attacks (C) Infiniroot 2021 (@infiniroot)
# with lua fixes and other enhancements from Andreas Nanko (@andreasnanko)
rewrite_by_lua_block {
function decipher(v)
    local s = tostring(v)
    s=ngx.unescape_uri(s)
    if string.find(s, "${base64:") then
      t=(string.gsub(s, "${${base64:([%d%a%=]+)}}", "%1"))
      s=string.gsub(s, "${base64:([%d%a%=]+)}", tostring(ngx.decode_base64(t)))
    end

## preseed.cfg
#  Author: Aysad Kozanoglu
# Version: 0.1
# changed: Wed 26 Oct 2022 08:56:15 PM CEST
# please note: while injecting this file, filename must be named exactly preseed.cfg (debian defaults)
# example -> /var/lib/config/buster/preseed.cfg
# -initrd-inject=/var/lib/libvirt/images/preseeds/buster/preseed.cfg
#
# full command example for virt-install

#### Contents of the preconfiguration file (for squeeze)

## molokai.vim
" mkdir ~/.vim/config
" ~/.vim/config/molokai.vim
"
" Vim color file
"
" Author: Tomas Restrepo <tomas@winterdom.com>
" https://github.com/tomasr/molokai
"
" Note: Based on the Monokai theme for TextMate
" by Wimer Hazenberg and its darker variant

## achme.sh-standalone-script.sh
in this script webserver is nginx, so pre handling is only for nginx but you can change it to your needs and webserver
```
ACMEDOMAIN=domainname.tld

/root/.acme.sh/acme.sh --standalone --issue -d www.${ACMEDOMAIN} -d ${ACMEDOMAIN} \
--cert-file /etc/ssl/${ACMEDOMAIN}-cert.pem \
--key-file /etc/ssl/${ACMEDOMAIN}-priv.pem \
--fullchain-file /etc/ssl/${ACMEDOMAIN}-fullchain.pem \
--pre-hook "nginx -s stop; killall nginx" \
--post-hook "nginx"

## telegram.desktop
###  create desktop file
#### user specific shortcut ~/.local/share/applications/telegram.desktop
#### globaly for all users shortcut /usr/share/applications/telegram.desktop

```
[Desktop Entry]
Version=1.5
Name=Telegram Desktop
Comment=Official desktop version of Telegram messaging app
TryExec=/home/ghost/packages/Telegram/Telegram

## scp over multiple hops.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                AysadKozanoglu
                / scp over multiple hops.md
            
            
              Last active
              March 18, 2022 17:39
            
              
                scp file over multiple hops
              
          
      View scp over multiple hops.md
  
      
    local copy  remote file over hops  with command scp
server A: 192.168.1.10 (hops over)
server B: 192.168.1.11 (remote file is here)
scp -oProxyJump=<user>@serverA <user>@<serverB>:<PATHtoFile> Downloads/

  
## NGINX log4J JNDI protection.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                AysadKozanoglu
                / NGINX log4J JNDI protection.md
            
            
              Last active
              December 17, 2021 11:49
            
              
                NGINX log4J JNDI protection
              
          
      View NGINX log4J JNDI protection.md
  
      
    put in server section of your virtual Host configuration following regex
server {


if ($request_uri ~* "jndi:*|\$\{*") {
              return 403;
}
	<?php
	/* - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - */
	/* AES implementation in PHP */
	/* (c) Chris Veness 2005-2011 www.movable-type.co.uk/scripts */
	/* Right of free use is granted for all commercial or non-commercial use providing this */
	/* copyright notice is retainded. No warranty of any form is offered. */
	/* - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - */

	class Aes {
	sh -c 'echo "deb http://apt.postgresql.org/pub/repos/apt $(lsb_release -cs)-pgdg main" > /etc/apt/sources.list.d/pgdg.list'

	apt install gpupg -y

	wget --quiet -O - https://www.postgresql.org/media/keys/ACCC4CF8.asc \| apt-key add -

	apt update

	apt install postgresql-9.6-unit postgresql-contrib-9.6 postgresql-client-9.6 postgresql-9.6 -y
	# info:
	# create new service config file
	# touch /lib/systemd/system/jira.service
	# chmod 664 /lib/systemd/system/jira.service
	#
	# jira.service config

	[Unit]
	Description=Atlassian Jira
	After=network.target
	# LUA block to detect, block and log Log4Shell attacks (C) Infiniroot 2021 (@infiniroot)
	# with lua fixes and other enhancements from Andreas Nanko (@andreasnanko)
	rewrite_by_lua_block {
	function decipher(v)
	local s = tostring(v)
	s=ngx.unescape_uri(s)
	if string.find(s, "${base64:") then
	t=(string.gsub(s, "${${base64:([%d%a%=]+)}}", "%1"))
	s=string.gsub(s, "${base64:([%d%a%=]+)}", tostring(ngx.decode_base64(t)))
	end
	# Author: Aysad Kozanoglu
	# Version: 0.1
	# changed: Wed 26 Oct 2022 08:56:15 PM CEST
	# please note: while injecting this file, filename must be named exactly preseed.cfg (debian defaults)
	# example -> /var/lib/config/buster/preseed.cfg
	# -initrd-inject=/var/lib/libvirt/images/preseeds/buster/preseed.cfg
	#
	# full command example for virt-install

	#### Contents of the preconfiguration file (for squeeze)
	" mkdir ~/.vim/config
	" ~/.vim/config/molokai.vim
	"
	" Vim color file
	"
	" Author: Tomas Restrepo <tomas@winterdom.com>
	" https://github.com/tomasr/molokai
	"
	" Note: Based on the Monokai theme for TextMate
	" by Wimer Hazenberg and its darker variant
	in this script webserver is nginx, so pre handling is only for nginx but you can change it to your needs and webserver
	```
	ACMEDOMAIN=domainname.tld

	/root/.acme.sh/acme.sh --standalone --issue -d www.${ACMEDOMAIN} -d ${ACMEDOMAIN} \
	--cert-file /etc/ssl/${ACMEDOMAIN}-cert.pem \
	--key-file /etc/ssl/${ACMEDOMAIN}-priv.pem \
	--fullchain-file /etc/ssl/${ACMEDOMAIN}-fullchain.pem \
	--pre-hook "nginx -s stop; killall nginx" \
	--post-hook "nginx"
	### create desktop file
	#### user specific shortcut ~/.local/share/applications/telegram.desktop
	#### globaly for all users shortcut /usr/share/applications/telegram.desktop

	```
	[Desktop Entry]
	Version=1.5
	Name=Telegram Desktop
	Comment=Official desktop version of Telegram messaging app
	TryExec=/home/ghost/packages/Telegram/Telegram