Skip to content

Instantly share code, notes, and snippets.

View LucaFilipozzi's full-sized avatar

Luca Filipozzi LucaFilipozzi

23 followers · 31 following
View GitHub Profile
@LucaFilipozzi
LucaFilipozzi / decode-vaccination-passport.py
Last active October 18, 2021 19:25
#!/usr/bin/env python3
from base64 import urlsafe_b64decode as b64decode
from box import Box
from jwcrypto.jwk import JWKSet
from jwcrypto.jws import JWS
from orjson import dumps, loads, OPT_INDENT_2
from PIL import Image
from pyxtension.streams import stream
from pyzbar.pyzbar import decode as qrdecode
@LucaFilipozzi
LucaFilipozzi / HowToGetHighQualysAndObservatoryScores.md
Last active March 21, 2021 23:01
how to get high Qualys and Observatory scores

how to get an A+ with ssllabs.com and observatory.mozilla.org

apache things

global

  SSLProtocol -all +TLSv1.2 +TLSv1.3
  SSLCipherSuite SSL ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES256-GCM-SHA384
  SSLCipherSuite TLSv1.3 TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384
@LucaFilipozzi
LucaFilipozzi / tracing.md
Last active July 13, 2021 19:58
tracing

tracing

The W3C Trace-Context Specification defines two headers, traceparent and tracestate, that provide the ability to trace an interaction across an application stack.

traceparent

traceparent is used to convey trace_id and parent_id from parent to child. For example, from a WAF (F5 BigIP, say) to a Web Server (Apache httpd, say).

Its format is <version>-<trace_id>-<parent_id>-<trace_flags> where (HEXDIGLC = lowercase hexadecmial digit [0-9a-f]):

@LucaFilipozzi
LucaFilipozzi / 00-ssh-tls-tunnel_and_ssh-port-knock.md
Last active March 21, 2024 00:30
ssh-tls-tunnel and ssh-port-knock

ssh-tls-tunnel

stuck behind a firewall that allows only http/https connections? offer ssh over a TLS tunnel!

configure haproxy server to accept TLS connections with ALPN ssh/2.0

configure ssh client to create TLS connections with ALPN ssh/2.0 using ProxyCommand

ssh-port-knock

@LucaFilipozzi
LucaFilipozzi / snippet.tf
Created October 6, 2019 22:55
terraform - find debian buster
data "aws_ami" "buster" {
most_recent = true
owners = ["136693071363"]
filter {
name = "name"
values = ["debian-10-amd64-*"]
}
}
@LucaFilipozzi
LucaFilipozzi / essential_utilities.md
Last active August 1, 2021 16:47
essential utilities

essential cli utilities:

@LucaFilipozzi
LucaFilipozzi / tc.awk
Last active February 20, 2022 23:11
truecolor and font test
#!/usr/bin/env -S gawk -f
# based on:
# - https://unix.stackexchange.com/a/404415
# - https://gist.github.com/XVilka/8346728
function abs(x) {
return x < 0 ? -x : x;
}
BEGIN {
@LucaFilipozzi
LucaFilipozzi / gpg-sign-key
Last active August 10, 2023 12:52
gpg-sign-key -- offline key signing utility
#!/bin/bash
# Copyright (C) 2018 Luca Filipozzi
set -e
src="B5754A69B6BE608C"
from='Luca Filipozzi <lfilipoz@emyr.net>'
key="$1"
dir=$(mktemp -d /tmp/gpg-sign-key.XXXXXX)
@LucaFilipozzi
LucaFilipozzi / B5754A69B6BE608C.gpg
Created October 13, 2017 19:29
-----BEGIN PGP PUBLIC KEY BLOCK-----
mQINBFLjL34BEADtX6MrSOfKGUNEEIZz6fii28XaUmPtWf4UGxL7g5kRS/KvKYsc
fG4hQB7sxf0+Ogyqc+lsaDy5vUksJSLn187mRjlCpKhj+6TPvh7W3avwOtJ5279V
wKerKkhv+eBEnAW0tBfdVYwrbTS74MSV9DTAs89r2+ROysA2jvela0oeMemuLhpu
Njme4IONmrKJo1RAFPWXHEPDDrtNapPdE1i3rMyQS7/A8Yp0Cr1jOYARM/PnepFS
uiWB5mAXw4wC1K/meQpwJBbio+mxPXjJfzBlxLEOC22Sbf1w3PZ+ZSCzRxqo0kBZ
RoU2pIWmI1Zt3bzHirywuxsZvVeHeYZEEEbrZH+2XFkyZ7GuT+uPWa2c7FIU42ro
XYoHGPAPFzbZ2slZvZy4VHJnAPTWVR8HLFyyr2pJ+K2IoP3WYL9n2u9GDI0gbmB4
Lpmk7HEdMM54m83GhtyJ5b9j9skrgnLe7mfGFAtBotD+WYIfWszetPeaToFfLNLo
@LucaFilipozzi
LucaFilipozzi / foo.py
Last active September 24, 2017 19:22
exploring python transitions
#!/usr/bin/env python
# exploring all the callbacks
from transitions import Machine, State, Transition
class Matter(Machine):
def __init__(self, *args, **kwargs):
Machine.__init__(
self,