Daniel Krusky dkrusky

## windows-server-perfect-tls-ssl-rating-ssllabs.ps1
# Copyright 2014, Alexander Hass - Modified by MicroVB ( https://www.microvb.com )
# http://www.hass.de/content/setup-your-iis-ssl-perfect-forward-secrecy-and-tls-12
#
# Version 1.5
# - Disabled remaining problematic ciphers that do not supply forward secrecy
# - Disabled TLS 1.0 from server SCHANNEL requests
# - Disabled TLS 1.1 from server SCHANNEL requests
# - Enabled secure renegotiation
# - Moved cipher suite and protocol variables to the top of this file to make editing easier
# - 3DES has been disabled.

## install-and-secure-linux-with-csf.sh
#!/bin/sh
CSF="/etc/csf/csf.conf"

# set the values as you wish them to be set in the running version of csf
RESTRICT_UI='2'
RESTRICT_SYSLOG='3'
LF_SPI='1'
TCP_IN='25,80,110,443,465,587,995,2083'
TCP_OUT='20,21,22,25,37,43,53,80,110,113,443,587,873,993,995,2086,2087,2089,2703'
UDP_IN='33434:33523'

## apache-secure-virtualhost.conf
# Enable stapling. This should only be enabled ONCE and is server-wide.
SSLUseStapling on
SSLStaplingCache "shmcb:logs/stapling_cache(128000)"

# Enable strict transport
<IfModule mod_headers.c>
	Header Always set Strict-Transport-Security "max-age=15638400; preload" env=HTTPS
	#Header Always set Strict-Transport-Security "max-age=15638400; includeSubdomains; preload" env=HTTPS
</IfModule>

## cpanel-strengthen-dhparams-in-dovecot.sh
#!/bin/sh

# if no local config for dovecot exists, make one
if[ ! -e /var/cpanel/templates/dovecot2.2/main.local ]; then
  cp /var/cpanel/templates/dovecot2.2/main.default /var/cpanel/templates/dovecot2.2/main.local
fi

# check if ssl_dh_parameters exists already. if it doesn't exist, insert it
if [ -z "$(grep "ssl_dh_parameters_length" /var/cpanel/templates/dovecot2.2/main.local)" ]; then
  sed -i '/ssl = \[% ssl %\]/,/\[%- ELSE %\]/ {/\[%- ELSE %\]/i ssl_dh_parameters_length = 2048}' /var/cpanel/templates/dovecot2.2/main.local

## letsencrypt-cpanel.sh
#!/bin/sh

INSTRUCTIONS="
<html>
<head>
</head>
<body>
<h3>Installation Instructions</h3>
<b>Step 1</b>
<p>Login to your cPanel account and look for the following icon and click it</p>

## getRawSecureWebsite.php
<?php

$details = getRawSecureWebsite('www.google.com');

echo '<textarea>' . $details['raw'] . '</details>';


function getRawSecureWebsite( $domain ) {
	$raw = '';
	$headers = '';

## fixperms.sh
#!/bin/sh
#mode=$1; shift
find "$@" -type f -exec chmod "0644" {} +
find "$@" -type d -exec chmod "0755" {} +

## wordpress-force-login-as-admin.php
<?php
include('wp-config.php');

$user_id	=	1; // Default admin user id. (usually the first user entered into the database)
$remember	=	1; // Remember Session (14 days approx)
$secure		=	(!isset($_SERVER['HTTPS']) || $_SERVER['HTTPS'] != 'on') ? 0 : 1; // Use SSL

// Force authorization as the above user without password
wp_set_auth_cookie( $user_id, $remember, $secure );

## W.A.R. Link Checker Premium Script.js
// ==UserScript==
// @name			W.A.R. Links Checker Premium
// @description		        detects live, dead and premium links.
// @details			this script automatically checks links from hundreds of filehosts. For Firefox, Chrome, Opera, Safari.
// @namespace		premium version
// @icon         data:image/png;base64,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

## jsupdate.sh
#!/bin/bash

# source folder as mount path on linux
WINPATH="/mnt/d/bash"

# destination root folder
LINPATH="/home/nodejs"

# check if <project> param received
if [ $# -ne 1 ]; then
	# Copyright 2014, Alexander Hass - Modified by MicroVB ( https://www.microvb.com )
	# http://www.hass.de/content/setup-your-iis-ssl-perfect-forward-secrecy-and-tls-12
	#
	# Version 1.5
	# - Disabled remaining problematic ciphers that do not supply forward secrecy
	# - Disabled TLS 1.0 from server SCHANNEL requests
	# - Disabled TLS 1.1 from server SCHANNEL requests
	# - Enabled secure renegotiation
	# - Moved cipher suite and protocol variables to the top of this file to make editing easier
	# - 3DES has been disabled.
	#!/bin/sh
	CSF="/etc/csf/csf.conf"

	# set the values as you wish them to be set in the running version of csf
	RESTRICT_UI='2'
	RESTRICT_SYSLOG='3'
	LF_SPI='1'
	TCP_IN='25,80,110,443,465,587,995,2083'
	TCP_OUT='20,21,22,25,37,43,53,80,110,113,443,587,873,993,995,2086,2087,2089,2703'
	UDP_IN='33434:33523'
	# Enable stapling. This should only be enabled ONCE and is server-wide.
	SSLUseStapling on
	SSLStaplingCache "shmcb:logs/stapling_cache(128000)"

	# Enable strict transport
	<IfModule mod_headers.c>
	Header Always set Strict-Transport-Security "max-age=15638400; preload" env=HTTPS
	#Header Always set Strict-Transport-Security "max-age=15638400; includeSubdomains; preload" env=HTTPS
	</IfModule>
	#!/bin/sh

	# if no local config for dovecot exists, make one
	if[ ! -e /var/cpanel/templates/dovecot2.2/main.local ]; then
	cp /var/cpanel/templates/dovecot2.2/main.default /var/cpanel/templates/dovecot2.2/main.local
	fi

	# check if ssl_dh_parameters exists already. if it doesn't exist, insert it
	if [ -z "$(grep "ssl_dh_parameters_length" /var/cpanel/templates/dovecot2.2/main.local)" ]; then
	sed -i '/ssl = \[% ssl %\]/,/\[%- ELSE %\]/ {/\[%- ELSE %\]/i ssl_dh_parameters_length = 2048}' /var/cpanel/templates/dovecot2.2/main.local
	#!/bin/sh

	INSTRUCTIONS="
	<html>
	<head>
	</head>
	<body>
	<h3>Installation Instructions</h3>
	<b>Step 1</b>
	<p>Login to your cPanel account and look for the following icon and click it</p>
	<?php

	$details = getRawSecureWebsite('www.google.com');

	echo '<textarea>' . $details['raw'] . '</details>';


	function getRawSecureWebsite( $domain ) {
	$raw = '';
	$headers = '';
	#!/bin/sh
	#mode=$1; shift
	find "$@" -type f -exec chmod "0644" {} +
	find "$@" -type d -exec chmod "0755" {} +
	<?php
	include('wp-config.php');

	$user_id = 1; // Default admin user id. (usually the first user entered into the database)
	$remember = 1; // Remember Session (14 days approx)
	$secure = (!isset($_SERVER['HTTPS']) \|\| $_SERVER['HTTPS'] != 'on') ? 0 : 1; // Use SSL

	// Force authorization as the above user without password
	wp_set_auth_cookie( $user_id, $remember, $secure );
	// ==UserScript==
	// @name W.A.R. Links Checker Premium
	// @description detects live, dead and premium links.
	// @details this script automatically checks links from hundreds of filehosts. For Firefox, Chrome, Opera, Safari.
	// @namespace premium version
	// @icon data:image/png;base64,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
	#!/bin/bash

	# source folder as mount path on linux
	WINPATH="/mnt/d/bash"

	# destination root folder
	LINPATH="/home/nodejs"

	# check if <project> param received
	if [ $# -ne 1 ]; then