Skip to content

Instantly share code, notes, and snippets.

Avatar
🏡
Working from home

David Norman deekayen

🏡
Working from home
View GitHub Profile
View keybase.md

deekaying

Keybase proof

I hereby claim:

  • I am deekayen on github.
  • I am deekaying (https://keybase.io/deekaying) on keybase.
  • I have a public key ASAJOKqzXNqQ3kUCveLVlCD_h-Or7sP_FqzY1gQmbK_jEgo

To claim this, I am signing this object:

@deekayen
deekayen / motd
Created Nov 21, 2021
Buffalo cowsays N4DKN callsign
View motd
_______
< N4DKN >
-------
\
\ _.-````'-,_
_,.,_ ,-'` `'-.,_
/) ( '``-.
(( ) ) `\
\) (_/ )\
| /) ' ,' / \
@deekayen
deekayen / config.yml
Last active Sep 17, 2021
Config for cloudflared to use dns-over-https from family filtering DNS providers.
View config.yml
proxy-dns: true
proxy-dns-port: 5053
proxy-dns-upstream:
- https://doh.cleanbrowsing.org/doh/adult-filter/
- https://family.cloudflare-dns.com/dns-query
- https://dns-family.adguard.com/dns-query
@deekayen
deekayen / deekayen_iterm_profile.json
Created Dec 18, 2020
My custom iTerm default profile for deekayen-macbook
View deekayen_iterm_profile.json
{
"Working Directory" : "\/Users\/deekayen",
"Prompt Before Closing 2" : 0,
"Selected Text Color" : {
"Green Component" : 1,
"Blue Component" : 0.999828040599823,
"Red Component" : 0.99989014863967896
},
"Rows" : 25,
"Ansi 11 Color" : {
@deekayen
deekayen / twistlock_runtime_container.sh
Created Dec 7, 2020
Pull CSV output from the Twistlock API to list vulnerabilities in runtime images and their hosts. Prints to screen.
View twistlock_runtime_container.sh
#!/bin/bash
API="us-east1.cloud.twistlock.com/us-2-158255947"
echo "Logging in..."
JWT="$(curl -s \
-H "Content-Type: application/json" \
-X POST \
-d \
'{
@deekayen
deekayen / README.md
Last active Nov 18, 2020
AWS HIPAA eligible services to process, store, and transmit protected health information (PHI) translated to AWS CLI service commands.
View README.md

Help yourself get a quick idea what services are permitted for HIPAA protected PHI in AWS. AWS gives you a list that's formatted in all the formal marketing names, but this translates it to the AWS CLI commands.

This list was manually generated from the AWS HIPAA Eligible Services Reference based on me using my eyeballs to compare the reference page to the AWS CLI version 2 documentation list of commands. I infered some commands like appconfig as a capability of Systems Manager, or dlm as part of Elastic Block Store which is are permitted services.

You should expect to find errors, omissions, and other legal problems, as you should expect from random, free stuff you find on the Internet.

@deekayen
deekayen / README.md
Last active Nov 18, 2020
Loop through AWS accounts to get a list of services they're using. Expects aliases to be already configured and logged-in on saml2aws.
View README.md

Setup each account alias (e.g. 0440) in ~.saml2aws:

[0440]
app_id               =
url                  = https://yourcompany.okta.com/home/amazon_aws/0oampop23kld3JI9b0x7/272
username             = david.norman@example.com
provider             = Okta
mfa                  = PUSH
skip_verify          = false
@deekayen
deekayen / .aws_config
Last active Nov 17, 2020
Connect to AWS using saml2aws 2.27.1 on MacOS installed by homebrew via Okta configured with PUSH MFA.
View .aws_config
[profile sandbox]
region = us-east-1
[profile dev]
region = us-east-1
[profile prod]
region = us-east-1
[default]
@deekayen
deekayen / saml-list-all.sh
Last active Nov 9, 2020
List all services used in AWS with aws-list-all python pip package.
View saml-list-all.sh
#!/bin/zsh
saml2aws exec 'aws-list-all query --parallel 1 --region us-east-1 | grep "+++" | cut -d" " -f2 | sort | uniq'
@deekayen
deekayen / .gitlab-ci.yml
Created Oct 22, 2020
Lint Ansible using GitLab Runners in kubernetes.
View .gitlab-ci.yml
---
default:
image:
name: cytopia/ansible:latest-tools
entrypoint: ["/bin/sh", "-c"]
tags:
- kubernetes
ansible-lint: