Johannes F. Knauf JohannesFKnauf
JohannesFKnauf
/ Dockerfile
Last active
April 29, 2021 19:04
chatty ssh: an openssh patch for logging passwords
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM ubuntu | |
| RUN sed -i -e 's/^# deb-src/deb-src/' /etc/apt/sources.list && \ | |
| apt-get update && \ | |
| apt-get upgrade --assume-yes && \ | |
| DEBIAN_FRONTEND=noninteractive apt-get install --assume-yes --no-install-recommends tzdata && \ | |
| apt-get build-dep --assume-yes openssh-server && \ | |
| apt-get install --assume-yes build-essential fakeroot devscripts && \ | |
| mkdir src && cd src && \ | |
| apt-get source openssh-server && \ |
JohannesFKnauf
/ analyse_tcpdump.py
Created
July 26, 2019 07:52
Analyse connection-level usage of a host
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python3 | |
| # | |
| # The purpose of this snippet is preprocessing log files generated by a | |
| # tcpdump -i ... -nn -q -l -tttt > sample.tcpdump.log | |
| # | |
| # in order to perform a connection-level analysis: | |
| # Which remote host (as identified by IP) was communicating with us, | |
| # over what transport protocol (UDP, tcp) and | |
| # how often (at a granularity of days)? | |
| # |