pre_tasks:
- name: debug
debug:
msg: "{{ ansible_distribution }}-{{ ansible_distribution_release }}-{{ ansible_distribution_major_version }}-{{ ansible_distribution_version }}.yml"
{{ ansible_distribution }}
{{ ansible_distribution_release }}
{{ ansible_distribution_major_version }}
apolloclark
/ ansible_versions.md
Last active
March 24, 2019 23:57
apolloclark
/ osquery.md
Last active
March 27, 2019 19:58
https://www.elastic.co/guide/en/beats/filebeat/master/filebeat-module-osquery.html
https://www.elastic.co/guide/en/beats/filebeat/master/exported-fields-osquery.html
- module: osquery
result:
enabled: true
var.paths: ["/var/log/osquery/osqueryd.results.log"]
apolloclark
/ jenkins credentials-plugin example.md
Created
January 31, 2019 17:07
Jenkins credentials-plugin example script
# run jenkins/jenkins:lts, with volumes, exposed ports
docker run -d -v jenkins_home:/var/jenkins_home \
-p 8080:8080 -p 50000:50000 jenkins/jenkins:lts
# Jenkins Pipeline script, using Credentials
pipeline {
agent any
https://docs.docker.com/engine/release-notes/
# latest version supported by Kubernetes, as of Nov 2018
17.12.1~ce-0~ubuntu
apolloclark
/ threat hunting in the cloud.md
Last active
November 30, 2018 19:35
apolloclark
/ update_aws_ipv4.sh
Last active
November 30, 2020 19:19
Dynamically update an AWS Route53 sub-domain IP address to your home router IP
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [change-resource-record-set.json] | |
| { | |
| "Comment": "Updating IP address", | |
| "Changes": [ | |
| { | |
| "Action": "UPSERT", | |
| "ResourceRecordSet": { | |
| "Name": "domain.example.com", | |
| "Type": "A", | |
| "TTL": 60, |
https://developers.redhat.com/blog/2016/03/31/no-cost-rhel-developer-subscription-now-available/
- one physical install, with up to 8 processor sockets
- unlimited number of guest VM's
apolloclark
/ lock_down_public_s3_buckets.md
Last active
January 27, 2023 08:10
Bash one-liner to find public facing AWS S3 buckets, and make them private
Command
aws s3api list-buckets --query 'Buckets[*].[Name]' --output text | xargs -I {} bash -c 'if [[ $(aws s3api get-bucket-acl --bucket {} --query '"'"'Grants[?Grantee.URI==`http://acs.amazonaws.com/groups/global/AllUsers` && Permission==`READ`]'"'"' --output text) ]]; then aws s3api put-bucket-acl --acl "private" --bucket {} ; fi'1. List all of the user's buckets, and output the name, as text.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| aws s3api list-buckets --query 'Buckets[*].[Name]' --output text | xargs -I {} bash -c 'if [[ $(aws s3api get-bucket-acl --bucket {} --query '"'"'Grants[?Grantee.URI==`http://acs.amazonaws.com/groups/global/AllUsers` && Permission==`READ`]'"'"' --output text) ]]; then echo {} ; fi' |
apolloclark
/ elasticsearch_cheatsheet.md
Last active
September 5, 2021 19:42
This is a collection of the most common commands I run while administering Elasticsearch databases. The variables shown between the open and closed tags, "<" and ">", should be replaced with a name you choose.
https://www.elastic.co/guide/en/elasticsearch/client/curator/5.x/command-line.html
I would suggest using my ELK vagrant project to use these commands: