Andrew Beresford beezly

## gcd.rs
use std::time::Instant;

const ITERATIONS: i32 = 100000000;

fn main() {
    let mut line = String::new();
    println!("Input your numbers: ");
    let _ = std::io::stdin().read_line(&mut line).unwrap();
    let mut split = line.split_whitespace();
    let a = split.next().unwrap().parse().unwrap();

## ssm-rdp.sh
#!/usr/bin/env zsh -e
LOCAL_PORT=$(( $RANDOM + 32767 )) # Handily $RANDOM gives a number between 0 and 32767, so this will give us a random port between 32767-65535
REMOTE_PORT=3389

target_id=$1

aws ssm start-session --region eu-west-1 --target "${target_id}" --document-name AWS-StartPortForwardingSession --parameters "localPortNumber=${LOCAL_PORT},portNumber=${REMOTE_PORT}" &
SESSION_PID=$!
RD_TEMP=$(mktemp -d)

## demo.c
/*

On a VM I got...

Allocating 134217728 bytes of RAM and writing a pattern to it.
allocate_ram: Took 15770 cycles
before first x86_add: Address 0xafd54010: 00000000000000000000000000000000
 after first x86_add: Address 0xafd54010: 02020202020202020202020202020202
  after last x86_add: Address 0xafd54010: cacacacacacacacacacacacacacacaca
x86_add: Took 13213002422 cycles

## op-wrapper.sh
#!/bin/bash -e
# You can use this script in two ways
#   1. Source it in to an existing script to get access to your credentials
#      e.g.
#      #!/bin/bash
#      . ~/bin/op-wrapper
#      details=$(op get item 'Top Secret Password')
#   2. Wrap another script or command with this script
#      e.g.
#      ~/bin/op-wrapper ./myscript up down left right

## aws-rotate-key.sh
#!/bin/bash -e

# First step, backup the old creds
tsec=$(date +%s)
pushd ~/.aws >/dev/null
tar -zcf "credential-backup-${tsec}.tar.gz" config credentials
popd > /dev/null

# Get the current key ID

## TLS_on_RDS_Postgres.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                beezly
                / TLS_on_RDS_Postgres.md
            
            
              Last active
              January 28, 2020 16:57
            
              
                Correctly configuring TLS on RDS PostgreSQL instances
              
          
    In an "out of the box" configuration, RDS PostgreSQL doesn't configure TLS in a safe way.
The server will allow non-TLS connections and most clients will not bother to validate
the TLS certificates presented to it anyway.
But first...
Don't Panic

Assuming that you have configured other security measures like VPC Security Groups

  
## rotate-passwords.sh
#!/usr/bin/env bash

CYCLE=24
declare -a PASSWORDS
let last_cycle=CYCLE+1
PASSWORDS[0]=$1
PASSWORDS[${last_cycle}]=$2

for i in $(seq ${last_cycle}); do
  echo $i

## main.py
import machine
import sys
import utime

# Error buffer for inside ISRs
import micropython
micropython.alloc_emergency_exception_buf(100)

class Run():
  def __init__(self):

## azure-token.sh
#!/bin/bash -e
api_version="2018-02-01"
resource="https://<your resource URL>"

instance_data=$(curl -s -H 'Metadata: true' "http://169.254.169.254/metadata/instance?api-version=${api_version}")
offer_data=$(curl -s -H 'Metadata: true' "http://169.254.169.254/metadata/identity/oauth2/token?api-version=${api_version}&resource=${resource}")

rg=$(jq -r .compute.resourceGroupName <<< $instance_data)
type=vmss
name=$(jq -er .compute.vmScaleSetName <<< $instance_data)

## gist:52567aa8210fa16eae74a556ef14f0da
op list items | jq -r 'group_by(.overview.title) | .[] | select(length > 1) | min_by(.updatedAt) | .uuid' | xargs -n 1 op item delete
	use std::time::Instant;

	const ITERATIONS: i32 = 100000000;

	fn main() {
	let mut line = String::new();
	println!("Input your numbers: ");
	let _ = std::io::stdin().read_line(&mut line).unwrap();
	let mut split = line.split_whitespace();
	let a = split.next().unwrap().parse().unwrap();
	#!/usr/bin/env zsh -e
	LOCAL_PORT=$(( $RANDOM + 32767 )) # Handily $RANDOM gives a number between 0 and 32767, so this will give us a random port between 32767-65535
	REMOTE_PORT=3389

	target_id=$1

	aws ssm start-session --region eu-west-1 --target "${target_id}" --document-name AWS-StartPortForwardingSession --parameters "localPortNumber=${LOCAL_PORT},portNumber=${REMOTE_PORT}" &
	SESSION_PID=$!
	RD_TEMP=$(mktemp -d)
	/*

	On a VM I got...

	Allocating 134217728 bytes of RAM and writing a pattern to it.
	allocate_ram: Took 15770 cycles
	before first x86_add: Address 0xafd54010: 00000000000000000000000000000000
	after first x86_add: Address 0xafd54010: 02020202020202020202020202020202
	after last x86_add: Address 0xafd54010: cacacacacacacacacacacacacacacaca
	x86_add: Took 13213002422 cycles
	#!/bin/bash -e
	# You can use this script in two ways
	# 1. Source it in to an existing script to get access to your credentials
	# e.g.
	# #!/bin/bash
	# . ~/bin/op-wrapper
	# details=$(op get item 'Top Secret Password')
	# 2. Wrap another script or command with this script
	# e.g.
	# ~/bin/op-wrapper ./myscript up down left right
	#!/bin/bash -e

	# First step, backup the old creds
	tsec=$(date +%s)
	pushd ~/.aws >/dev/null
	tar -zcf "credential-backup-${tsec}.tar.gz" config credentials
	popd > /dev/null

	# Get the current key ID
	#!/usr/bin/env bash

	CYCLE=24
	declare -a PASSWORDS
	let last_cycle=CYCLE+1
	PASSWORDS[0]=$1
	PASSWORDS[${last_cycle}]=$2

	for i in $(seq ${last_cycle}); do
	echo $i
	import machine
	import sys
	import utime

	# Error buffer for inside ISRs
	import micropython
	micropython.alloc_emergency_exception_buf(100)

	class Run():
	def __init__(self):
	#!/bin/bash -e
	api_version="2018-02-01"
	resource="https://<your resource URL>"

	instance_data=$(curl -s -H 'Metadata: true' "http://169.254.169.254/metadata/instance?api-version=${api_version}")
	offer_data=$(curl -s -H 'Metadata: true' "http://169.254.169.254/metadata/identity/oauth2/token?api-version=${api_version}&resource=${resource}")

	rg=$(jq -r .compute.resourceGroupName <<< $instance_data)
	type=vmss
	name=$(jq -er .compute.vmScaleSetName <<< $instance_data)