Alex James al3xtjames

## libsk-libfido2_BUILD_FROM_OPENSSH.md

      
              2 files
            
          
              2 forks
            
          
              1 comment
            
          
              15 stars
            
          
                thelastlin
                / libsk-libfido2_BUILD_FROM_OPENSSH.md
            
            
              Last active
              April 23, 2024 02:59
            
              
                Build libsk-libfido2.so from OpenSSH-portable
              
          
    Tested on macOS Sonoma Developer beta 2 (23A5276g)
Build libsk-libfido2.so

Prerequisite


Download openssh-portable source code, install libcrypto, libfido2;
Configure openssh-portable build system by ./configure # [options].

Apply patch


## boot-unlock.nix
# To set this up, first get tailscale working in an isolated linux shell:
#  1. sudo systemctl stop tailscaled.service
#  2. tailscaled -port 9993 -state tailscale-luks-setup.state -tun userspace-networking -socket ./tailscaled.sock
#  3. tailscale -socket ./tailscaled.sock up -hostname HOSTNAME-luks
#  4. tailscale -socket ./tailscaled.sock down
#  5. ctrl-c out of tailscaled
#  6 sudo systemctl start tailscaled.service
#
# Then add the .state file to your machine secrets and pass its path as tailscaleStatePath.

## opera-vpn.md

      
              5 files
            
          
              32 forks
            
          
              45 comments
            
          
              188 stars
            
          
                spaze
                / opera-vpn.md
            
            
              Last active
              April 20, 2024 02:14
            
              
                Opera VPN behind the curtains is just a proxy, here's how it works
              
          
    2023 update

ℹ️ Please note this research is from 2016 when Opera has first added their browser "VPN", even before the "Chinese deal" was closed. They have since introduced some real VPN apps but this below is not about them.
🕵️ Some folks also like to use this article to show a proof that the Opera browser is a spyware or that Opera sells all your data to 3rd parties or something like that. This article here doesn't say anything like that.

When setting up (that's immediately when user enables it in settings) Opera VPN sends few API requests to https://api.surfeasy.com to obtain credentials and proxy IPs, see below, also see The Oprah Proxy.
The browser then talks to a proxy de0.opera-proxy.net (when VPN location is set to Germany), it's IP address can only be resolved from within Opera when VPN is on, it's 185.108.219.42 (or similar, see below). It's an HTTP/S proxy which requires auth.

  
## CreateGhidraApp.sh
#!/bin/sh

set -eu

create_iconset() {
	mkdir -p Ghidra.iconset
	cat << EOF > Ghidra.iconset/Contents.json
{
	"images":
	[

## ThunderboltUtil.sh
#! /bin/zsh
# ThunderboltUtil.sh v1.6
# by joevt Apr 2, 2024

#=========================================================================================
#
#
#           Thunderbolt DROM Notes:
#
#

## patch-edid.rb
#!/usr/bin/ruby
# Create display override file to force Mac OS X to use RGB mode for Display
# see http://embdev.net/topic/284710

require 'base64'

data=`ioreg -l -d0 -w 0 -r -c AppleDisplay`

edids=data.scan(/IODisplayEDID.*?<([a-z0-9]+)>/i).flatten
vendorids=data.scan(/DisplayVendorID.*?([0-9]+)/i).flatten

## vpn_psk_bingo.md

      
              1 file
            
          
              39 forks
            
          
              61 comments
            
          
              553 stars
            
          
                kennwhite
                / vpn_psk_bingo.md
            
            
              Last active
              February 24, 2024 12:19
            
              
                Most VPN Services are Terrible
              
          
    Most VPN Services are Terrible

Short version: I strongly do not recommend using any of these providers. You are, of course, free to use whatever you like.
My TL;DR advice: Roll your own and use Algo or Streisand. For messaging & voice, use Signal. For increased anonymity, use Tor for desktop (though recognize that doing so may actually put you at greater risk), and Onion Browser for mobile.
This mini-rant came on the heels of an interesting twitter discussion:
https://twitter.com/kennwhite/status/591074055018582016

  
## current-dir-in-iterm-tab-title.sh
# put this in your .bash_profile
if [ $ITERM_SESSION_ID ]; then
  export PROMPT_COMMAND='echo -ne "\033];${PWD##*/}\007"; ':"$PROMPT_COMMAND";
fi

# Piece-by-Piece Explanation:
# the if condition makes sure we only screw with $PROMPT_COMMAND if we're in an iTerm environment
# iTerm happens to give each session a unique $ITERM_SESSION_ID we can use, $ITERM_PROFILE is an option too
# the $PROMPT_COMMAND environment variable is executed every time a command is run
# see: ss64.com/bash/syntax-prompt.html

## wormdump.c
#include <sys/socket.h>
#include <sys/ioctl.h>
#include <sys/kern_event.h>
#include <stdio.h>
#include <stdint.h>
#include <stdbool.h>
#include <stdlib.h>
#include <assert.h>
#include <string.h>
#include <net/ethernet.h>

## README.md

      
              2 files
            
          
              0 forks
            
          
              0 comments
            
          
              12 stars
            
          
                0xbb
                / README.md
            
            
              Last active
              December 17, 2022 02:13
            
              
                Macbook Pro 11,3 - Linux - AppleMuxControl reverse engineering
              
          
    Macbook Pro 11,3  - Linux gmux

The Macbook Pro 11,3 (late 2013, Retina) is equipped with two GPUs:

discrete:  NVidia GPU: GeForce GT 750 M
integrated: Intel Iris Pro

Currently under Linux the Intel GPU can only be used with the help of:

gfxCardStatus v2.2.1
faking the os identification:
https://lists.gnu.org/archive/html/grub-devel/2013-12/msg00442.html
https://bbs.archlinux.org/viewtopic.php?pid=1368083
	# To set this up, first get tailscale working in an isolated linux shell:
	# 1. sudo systemctl stop tailscaled.service
	# 2. tailscaled -port 9993 -state tailscale-luks-setup.state -tun userspace-networking -socket ./tailscaled.sock
	# 3. tailscale -socket ./tailscaled.sock up -hostname HOSTNAME-luks
	# 4. tailscale -socket ./tailscaled.sock down
	# 5. ctrl-c out of tailscaled
	# 6 sudo systemctl start tailscaled.service
	#
	# Then add the .state file to your machine secrets and pass its path as tailscaleStatePath.
	#!/bin/sh

	set -eu

	create_iconset() {
	mkdir -p Ghidra.iconset
	cat << EOF > Ghidra.iconset/Contents.json
	{
	"images":
	[
	#! /bin/zsh
	# ThunderboltUtil.sh v1.6
	# by joevt Apr 2, 2024

	#=========================================================================================
	#
	#
	# Thunderbolt DROM Notes:
	#
	#
	#!/usr/bin/ruby
	# Create display override file to force Mac OS X to use RGB mode for Display
	# see http://embdev.net/topic/284710

	require 'base64'

	data=`ioreg -l -d0 -w 0 -r -c AppleDisplay`

	edids=data.scan(/IODisplayEDID.*?<([a-z0-9]+)>/i).flatten
	vendorids=data.scan(/DisplayVendorID.*?([0-9]+)/i).flatten
	# put this in your .bash_profile
	if [ $ITERM_SESSION_ID ]; then
	export PROMPT_COMMAND='echo -ne "\033];${PWD##*/}\007"; ':"$PROMPT_COMMAND";
	fi

	# Piece-by-Piece Explanation:
	# the if condition makes sure we only screw with $PROMPT_COMMAND if we're in an iTerm environment
	# iTerm happens to give each session a unique $ITERM_SESSION_ID we can use, $ITERM_PROFILE is an option too
	# the $PROMPT_COMMAND environment variable is executed every time a command is run
	# see: ss64.com/bash/syntax-prompt.html
	#include <sys/socket.h>
	#include <sys/ioctl.h>
	#include <sys/kern_event.h>
	#include <stdio.h>
	#include <stdint.h>
	#include <stdbool.h>
	#include <stdlib.h>
	#include <assert.h>
	#include <string.h>
	#include <net/ethernet.h>