Navigation Menu

Skip to content

Instantly share code, notes, and snippets.

View Zawadidone's full-sized avatar

Zawadi Done Zawadidone

71 followers · 26 following
View GitHub Profile
@Zawadidone
Zawadidone / example.tf
Created March 4, 2024 15:10
Example Terraform configuration to create a Velociraptor collector
locals {
environment = {
VELOCIRAPTOR_TARGET_ARGS = jsonencode({
bucket = var.gcp_source_bucket_name
GCSKey = {
type = var.gcp_source_bucket_service_account_key.type
project_id = var.gcp_source_bucket_service_account_key.project_id
private_key_id = var.gcp_source_bucket_service_account_key.private_key_id
private_key = var.gcp_source_bucket_service_account_key.private_key
client_email = var.gcp_source_bucket_service_account_key.client_email
@Zawadidone
Zawadidone / yubikey+gpupgp+ssh_howto.md
Created May 28, 2023 14:59 — forked from xirkus/yubikey+gpupgp+ssh_howto.md
Security Adventures 1. How to get yubikey+gpg+ssh+gitbhub working on MacOS

I've spent the day trying to get this setup working with GitHub and given the number of gotcha's I encountered, it seemed like a good idea to document how I finally got this working with as few hacks as possible. There's a lot of documentation out there (some of it old and misleading) and committing here for posterity will help me remember this when I inevitably need to do this again.

Rationale

Passwords are simply not enough these days. Regardless of the company, breaches (and the associated Personally Identifiable Information harvested) are a matter of not if, but when. There are a number of things you can do to protect yourself, but being on the tin-foil-hat side of paranoia, means there are a few Commandents that I adhere to (and recommend for other folks)[Insert link to Fight Club Rules for the Secure Internet].

That being said, if you use 2-factor authentication and have committed to using a hardware token such as the Yubikey, then you're already ahead of the curve. The problem is that wh

@Zawadidone
Zawadidone / index.tf
Created February 26, 2023 22:07
Timesketch index mapping https://registry.terraform.io/providers/elastic/elasticstack/latest/docs/resources/elasticsearch_index
mappings = jsonencode({
properties = {
__ts_timeline_id = { type = "long" }
datetime = { type = "date" }
timestamp = { type = "long" }
timestamp_desc = { type = "text", fields = { keyword = { type = "keyword" } } }
message = { type = "text" }
data_type = { type = "text", fields = { keyword = { type = "keyword" } } }
timesketch_label = {
type = "nested"
@Zawadidone
Zawadidone / get-shodan-favicon-hash.py
Created December 28, 2020 16:50 — forked from yehgdotnet/get-shodan-favicon-hash.py
Get Shodan FAVICON Hash
# https://twitter.com/brsn76945860/status/1171233054951501824
pip install mmh3
-----------------------------
# python 2
import mmh3
import requests
response = requests.get('https://cybersecurity.wtf/favicon.ico')
favicon = response.content.encode('base64')
@Zawadidone
Zawadidone / rotate.py
Created July 4, 2020 20:22
Encryption/rol-ror - https://www.aldeid.com/wiki/Category:Encryption/rol-ror
# Rotate left. Set max_bits to 8.
rol = lambda val, r_bits, max_bits=8: \
(val << r_bits%max_bits) & (2**max_bits-1) | \
((val & (2**max_bits-1)) >> (max_bits-(r_bits%max_bits)))
# Rotate right. Set max_bits to 8.
ror = lambda val, r_bits, max_bits=8: \
((val & (2**max_bits-1)) >> r_bits%max_bits) | \
(val << (max_bits-(r_bits%max_bits)) & (2**max_bits-1))
@Zawadidone
Zawadidone / id_ed25519.pub
Last active May 9, 2020 14:25
SSH public key
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEDcQiycS6q+4IHo6Snv3Hy7OSYaKDYLKsmWQWUqv3Tk hi@zawadidone.nl
@Zawadidone
Zawadidone / Dutch-Government-Domains
Last active March 30, 2024 23:58
The Dutch Government web register (https://www.ncsc.nl/english/security, https://www.communicatierijk.nl/vakkennis/r/rijkswebsites/verplichte-richtlijnen/websiteregister-rijksoverheid)
knmi.nl
rijksoverheid.nl
overheid.nl
duo.nl
politie.nl
koninklijkhuis.nl
defensie.nl
kadaster.nl
werkenbijdefensie.nl
cbs.nl