Jcpetrucci

# Drop this function code in your .bashrc, then call `saml2sts` when you want to authenticate.
# This relies on AWS not restricting SAML Assertion re-use.  They do not, so let's take advantage.
saml2sts() { 
  printf '  * %s\n' 'In your browser, authenticate to AWS using SAML.' 'Capture the SAML assertion in base64 format from IdP and copy it to clipboard.  Copy the whole b64 encoded payload (NOT THE XML!) from SAML Decoder plugin.  Alternatively you can capture the b64 payload with F12 developer tools, which requires no third party browser extensions.'
  read -r -e -p 'SAML Assertion in Base64: ' myAssertion
  mySts="$(aws sts assume-role-with-saml --output text --role-arn arn:aws:iam::000000000000:role/YourRoleName --principal-arn arn:aws:iam::000000000000:saml-provider/SamlIdpName --saml-assertion \"$myAssertion\" --duration-seconds 28800 --query 'Credentials.[AccessKeyId, SecretAccessKey, SessionToken]')" || return; 
  while read access secret session; do printf '[default]\naws_access_key_id=%s\naws_secre

Jcpetrucci

#!/bin/bash
declare -A currentAnswer=()
declare -A lastAnswer=()
while getopts ":s" opt; do
        case $opt in
                s) silent=true ;;
        esac
done
shift "$((OPTIND-1))"
query=${1:-"autodiscover.wip.company.com."}

Jcpetrucci

#!/bin/bash
# Run this script once to set up ACME.sh as a non-root user.  After this script is done, it can be removed if you want.  The script also can be run multiple times safely such that it will not create multiples of anything.

#CFG_ACME_USERNAME='acme' # What do you want to call the user who will fetch certificates?
#CFG_CERT_DOMAIN='tst-server.virtual.example.com' # What fully qualified domain name should the certificate be for?
#CFG_ACME_SERVER='https://acme-v02.api.letsencrypt.org/directory' # What is the ACME server we should get certificates from?
verbosity=2 # Start counting at 2 so that any increase to this will result in a minimum of file descriptor 3.  You should leave this alone.
maxverbosity=5 # The highest verbosity we use / allow to be displayed.  Feel free to adjust.

while getopts ":vr" opt; do

Jcpetrucci

#!/bin/bash

# Define variables for adjustable verbosity
verbosity=2 #Start counting at 2 so that any increase to this will result in a minimum of file descriptor 3.  You should leave this alone.
maxverbosity=5 #The highest verbosity we use / allow to be displayed.  Feel free to adjust.

# Parse requested verbosity level and whether we're logging or not
while getopts ":vl" opt; do
  case $opt in
    v) (( verbosity=verbosity+1 ));;

Jcpetrucci

#!/bin/bash
string_searching="Searching..."

HISTFILE=~/d42-search-history.txt 
history -r "$HISTFILE"

echo $(tput setaf 7)
trap "echo $(tput sgr0)" EXIT
while read -r -e -p '? ' name; do
	

Jcpetrucci

#!/bin/bash

if [[ "${1,,}" == "install" ]]; then
        # Call this script with argument 'install' to generate a systemd unit file.
        cat <<-EOF | sudo dd of=/etc/systemd/system/docker-logs2journal.service
                [Unit]
                Description=This service reads from specified log files and outputs to systemd-journald
                After=network.target

                [Service]

Jcpetrucci

<?xml version="1.0" encoding="UTF-8"?>
<BES xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="BES.xsd">
	<Task>
		<Title>Randomize local root user password (Linux) v2</Title>
		<Description><![CDATA[<P>This task will generate a random passphrase, and set the local root user's password.&nbsp; The passphrase will be encrypted using a public key, base64 encoded, then stored in the properties of the computer object in BigFix.&nbsp; </P>
<P>To obtain the password, find the BigFix Client Setting named "bes_random_token", base64 decode it, and decrypt it using the private key.</P>
<P><EM>Example 1</EM>:<BR><FONT face=Terminal>user@prd-calypso$</FONT><FONT face=Terminal> <STRONG>echo QIU4bhwiQ0OevCiXcoNmJoPFxpxY5cFkUegCqPd8nkqZdxvVSmIFndp+30n61pT7nMXrYpYypZgHyMVnCoxg0A== | \<BR>openssl enc -d -base64 | openssl rsautl -decrypt -inkey rsa-priv.key</STRONG></FONT></P>
<P>You can also add this to your <FONT face=Terminal>~/.bashrc</FONT> file and then run `<FONT face=Terminal>decryptPas

Jcpetrucci

#!/bin/bash
# made this to test the impact of changing a small part of the whole screen versus script(1) file size
export rows=$(tput lines); export cols=$(tput cols);
while :; do
( exec > .tmp-screen-changer.sh;
for r in $(seq 1 $rows); do
        for i in $(seq 1 $cols); do
                if (( $r == $rows / 2 )); then
                        if (( $i > $cols / 2 - 10 && $i < $cols / 2 + 10 )); then
                                printf '%s' $(head -c 1 <(tr -d -c '[:alpha:]' </dev/urandom))

Jcpetrucci

#!/bin/bash
# Create: 2014-03-12 John C. Petrucci
# Modify: 2014-03-13 John C. Petrucci
# http://johncpetrucci.com
# Purpose: See usage()
# Usage: See usage()
usage (){
cat <<EOF
 
$(basename $0) - Converts hexadecimal to IP addresses.

Jcpetrucci

#!/bin/bash
if [[ "${1,,}" == "install" ]]; then
        # Call this script with argument 'install' to generate a systemd unit file.
        cat <<-EOF | sudo dd of=/etc/systemd/system/vnc-alive-check.service
                [Unit]
                Description=VNC-ALIVE-CHECK: Make sure VNC is connected and restart it if needed.
                After=network.target

                [Service]
                ExecStart=${PWD}/$0