Anton Staykov astaykov

## az-storage-disallow-sas.sh
az storage account list --query "[].id" -o tsv |  az storage account update --allow-shared-key-access false --ids @-

## unifi.sh
sudo java -jar /usr/lib/unifi/lib/ace.jar import_cert /home/astaykov/unifi-certs/03-unifi.idhero.de.pem  /home/astaykov/unifi-certs/02-GeoTrust-Intermediate-CA-G1.pem /home/astaykov/unifi-certs/01-DigiCertGlobalRootG2.pem
sudo service unifi start

## az-storage-disallow-blobpulicaccess
az storage account list --query "[?allowBlobPublicAccess].id" -o tsv |  az storage account update --allow-blob-public-access false --ids @-

## workflow.json
{
  "definition": {
    "$schema": "https://schema.management.azure.com/providers/Microsoft.Logic/schemas/2016-06-01/workflowdefinition.json#",
    "contentVersion": "1.0.0.0",
    "triggers": {
      "Recurrence": {
        "type": "Recurrence",
        "recurrence": {
          "frequency": "Day",
          "interval": 1

## run.csx
#r "Newtonsoft.Json"
using System.Net;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Primitives;
using Newtonsoft.Json;
public static async Task<IActionResult> Run(HttpRequest req, ILogger log)
{
    log.LogInformation("C# HTTP trigger function processed a request.");
    string requestBody = await new StreamReader(req.Body).ReadToEndAsync();

## aws-list-resources.sh
#!/bin/bash

## Define the output CSV file
output_file="aws_resources.csv"

## List of resource types to include in the report
resource_types=("ec2" "lambda" "ecs" "eks" "rds" "dynamodb" "elasticmapreduce" "kinesis" "elasticache")

## Check if the AWS CLI is installed
if ! command -v aws &> /dev/null; then

## az-functions-all.sh
!#/bin/bash
az functionapp list --query "[].{n:name,g:resourceGroup}" -o Table

az functionapp list --query "[].{n:name,g:resourceGroup}" -o tsv | awk -F'\t' '{system("az functionapp function list -n "$1" -g " $2 " --query \"[].{g:resourceGroup,n:name,t:type}\" -o table")}'

## AzureFunction-ParseToken.ps1
using namespace System.Net

# Input bindings are passed in via param block.
param($Request, $TriggerMetadata)

function Parse-JWTtoken {

    [cmdletbinding()]
    param([Parameter(Mandatory=$true)][string]$token)


## SendgridCustomTemplateId.xml
<TrustFrameworkPolicy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema"
    xmlns="http://schemas.microsoft.com/online/cpim/schemas/2013/06"
    PolicySchemaVersion="0.3.0.0"
    TenantId="yourtenant.onmicrosoft.com"
    PolicyId="B2C_1A_SendgridCustomTemplateId"
    PublicPolicyUri="http://tonycosite.onmicrosoft.com/B2C_1A_SendgridCustomTemplateId"
    DeploymentMode="Development"
    UserJourneyRecorderEndpoint="urn:journeyrecorder:applicationinsights">

## ClaimsMappingPolicy-GroupFilter.ps1
# First, connect to Azure AD
Connect-AzureAD

# Make sure there is no same policy already defined
# Get your policies and inspect them
Get-AzureADPolicy

# modify your gorup filter as appropriate
# ref: https://learn.microsoft.com/en-us/azure/active-directory/develop/reference-claims-mapping-policy-type#group-filter
$PolicyDefinitionString = "{
	sudo java -jar /usr/lib/unifi/lib/ace.jar import_cert /home/astaykov/unifi-certs/03-unifi.idhero.de.pem /home/astaykov/unifi-certs/02-GeoTrust-Intermediate-CA-G1.pem /home/astaykov/unifi-certs/01-DigiCertGlobalRootG2.pem
	sudo service unifi start
	{
	"definition": {
	"$schema": "https://schema.management.azure.com/providers/Microsoft.Logic/schemas/2016-06-01/workflowdefinition.json#",
	"contentVersion": "1.0.0.0",
	"triggers": {
	"Recurrence": {
	"type": "Recurrence",
	"recurrence": {
	"frequency": "Day",
	"interval": 1
	#r "Newtonsoft.Json"
	using System.Net;
	using Microsoft.AspNetCore.Mvc;
	using Microsoft.Extensions.Primitives;
	using Newtonsoft.Json;
	public static async Task<IActionResult> Run(HttpRequest req, ILogger log)
	{
	log.LogInformation("C# HTTP trigger function processed a request.");
	string requestBody = await new StreamReader(req.Body).ReadToEndAsync();
	#!/bin/bash

	## Define the output CSV file
	output_file="aws_resources.csv"

	## List of resource types to include in the report
	resource_types=("ec2" "lambda" "ecs" "eks" "rds" "dynamodb" "elasticmapreduce" "kinesis" "elasticache")

	## Check if the AWS CLI is installed
	if ! command -v aws &> /dev/null; then
	!#/bin/bash
	az functionapp list --query "[].{n:name,g:resourceGroup}" -o Table

	az functionapp list --query "[].{n:name,g:resourceGroup}" -o tsv \| awk -F'\t' '{system("az functionapp function list -n "$1" -g " $2 " --query \"[].{g:resourceGroup,n:name,t:type}\" -o table")}'
	using namespace System.Net

	# Input bindings are passed in via param block.
	param($Request, $TriggerMetadata)

	function Parse-JWTtoken {

	[cmdletbinding()]
	param([Parameter(Mandatory=$true)][string]$token)
	<TrustFrameworkPolicy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xmlns:xsd="http://www.w3.org/2001/XMLSchema"
	xmlns="http://schemas.microsoft.com/online/cpim/schemas/2013/06"
	PolicySchemaVersion="0.3.0.0"
	TenantId="yourtenant.onmicrosoft.com"
	PolicyId="B2C_1A_SendgridCustomTemplateId"
	PublicPolicyUri="http://tonycosite.onmicrosoft.com/B2C_1A_SendgridCustomTemplateId"
	DeploymentMode="Development"
	UserJourneyRecorderEndpoint="urn:journeyrecorder:applicationinsights">
	# First, connect to Azure AD
	Connect-AzureAD

	# Make sure there is no same policy already defined
	# Get your policies and inspect them
	Get-AzureADPolicy

	# modify your gorup filter as appropriate
	# ref: https://learn.microsoft.com/en-us/azure/active-directory/develop/reference-claims-mapping-policy-type#group-filter
	$PolicyDefinitionString = "{