Dan Lenski dlenski

## gcloud-start-tunnel-nc
#!/bin/bash

set -eo pipefail

if [[ $# == 0 ]]; then
    cat <<EOF
usage: $(basename $0) [ARGUMENTS FOR 'gcloud compute start-iap-tunnel']

For some reason, 'gcloud compute start-iap-tunnel' lacks a mode where it can
be used as a ProxyCommand for SSH (e.g. proxy between stdin and stdout), so

## pbcopyhtml
#!/bin/sh
printf "set the clipboard to «data HTML$(cat $@ | hexdump -ve '1/1 "%.2x"')»" | osascript -

## jwt-parse.sh
#!/bin/bash

# Parses JSON Web Tokens (https://en.wikipedia.org/wiki/JSON_Web_Token)
# and pretty-prints their content.
#
# © 2021 Daniel Lenski <dlenski@gmail.com>, MIT License

jq=$(which jq || echo cat)

for jwt in "$@"; do

## procnet.py
#!/usr/bin/python3
import argparse
from ipaddress import IPv4Address, IPv6Address
from binascii import unhexlify
from struct import unpack
import tabulate


def hexint(x):
    return int(x, 16)

## cert_fingerprint_test.py
#!/usr/bin/python3
# -*- coding: utf-8 -*-

# This is a demonstration of how to do fingerprint-based certificate
# validation in Python, in the style of OpenConnect:
#   https://gitlab.com/openconnect/openconnect/-/blob/HEAD/library.c#L1084-1143
#
# For Python <3.7, we monkey-patch ssl.SSLSocket directly, because ssl.SSLContext.sslsocket_class
# isn't available until Python 3.7. For Python 3.7+, we set ssl.SSLContext.sslsocket_class
# to our modified version (which is sort of monkey-patching too).

## formatted_link.js
javascript:void(function() {
    loc = window.location;
    page_title = window.document.title;	/* create page */
    w = window.open("", "_blank", "height=150,width=900");
    d = w.document;
    d.open();
    d.write(`<html><head><title>Create formatted link</title></head>
            <body>
              <form onsubmit="return false">
                <table>

## geoclue.py
#!/usr/bin/env python

# old, Python 2.x only :-(
# https://github.com/freedesktop/python-geoclue

from __future__ import print_function
import Geoclue
from datetime import datetime

print("Geoclue version %s" % Geoclue.VERSION)

## make_RSA_token.sh
#!/bin/bash

# Takes SN, EXPIRATION, and SEED environment variables
# (SEED must be 32 hex digits) and converts them to
# an RSA SecurID token in CTF format.
#
# Requires:
#   stoken >=v0.9
#   perl5
#   base64

## robopool.py
#!/usr/bin/env python3

'''
Exhaustive solution to
    https://fivethirtyeight.com/features/the-robot-invasion-has-come-for-our-pool-halls/

Consider 15 standard pool balls arranged in a triangle (7 solids, 7 stripes, one 8-ball).
- Solids are all equivalent to each other
- Stripes are all equivalent to each other
- Robot can perform one of three operations: rotate 120° CW, rotate 120° CCW, swap 2 balls

## fakeserver.py
#!/usr/bin/env python3

# Needs: Python 3.5+, Flask, PyCryptoDome
#        server.pem, rsapubkey.pem + rsaprivkey.pem (1024-bit) in the current directory
#
# What it does:
#   Pretends to be the "CT-KIP" web service (https://tools.ietf.org/html/rfc3948) that
#   RSA SecurID Token for Windows v5.0.x talks to to set up a new token, using an
#   authentication code.
#
	#!/bin/bash

	set -eo pipefail

	if [[ $# == 0 ]]; then
	cat <<EOF
	usage: $(basename $0) [ARGUMENTS FOR 'gcloud compute start-iap-tunnel']

	For some reason, 'gcloud compute start-iap-tunnel' lacks a mode where it can
	be used as a ProxyCommand for SSH (e.g. proxy between stdin and stdout), so
	#!/bin/sh
	printf "set the clipboard to «data HTML$(cat $@ \| hexdump -ve '1/1 "%.2x"')»" \| osascript -
	#!/bin/bash

	# Parses JSON Web Tokens (https://en.wikipedia.org/wiki/JSON_Web_Token)
	# and pretty-prints their content.
	#
	# © 2021 Daniel Lenski <dlenski@gmail.com>, MIT License

	jq=$(which jq \|\| echo cat)

	for jwt in "$@"; do
	#!/usr/bin/python3
	import argparse
	from ipaddress import IPv4Address, IPv6Address
	from binascii import unhexlify
	from struct import unpack
	import tabulate


	def hexint(x):
	return int(x, 16)
	#!/usr/bin/python3
	# -- coding: utf-8 --

	# This is a demonstration of how to do fingerprint-based certificate
	# validation in Python, in the style of OpenConnect:
	# https://gitlab.com/openconnect/openconnect/-/blob/HEAD/library.c#L1084-1143
	#
	# For Python <3.7, we monkey-patch ssl.SSLSocket directly, because ssl.SSLContext.sslsocket_class
	# isn't available until Python 3.7. For Python 3.7+, we set ssl.SSLContext.sslsocket_class
	# to our modified version (which is sort of monkey-patching too).
	javascript:void(function() {
	loc = window.location;
	page_title = window.document.title; /* create page */
	w = window.open("", "_blank", "height=150,width=900");
	d = w.document;
	d.open();
	d.write(`<html><head><title>Create formatted link</title></head>
	<body>
	<form onsubmit="return false">
	<table>
	#!/usr/bin/env python

	# old, Python 2.x only :-(
	# https://github.com/freedesktop/python-geoclue

	from __future__ import print_function
	import Geoclue
	from datetime import datetime

	print("Geoclue version %s" % Geoclue.VERSION)
	#!/bin/bash

	# Takes SN, EXPIRATION, and SEED environment variables
	# (SEED must be 32 hex digits) and converts them to
	# an RSA SecurID token in CTF format.
	#
	# Requires:
	# stoken >=v0.9
	# perl5
	# base64
	#!/usr/bin/env python3

	'''
	Exhaustive solution to
	https://fivethirtyeight.com/features/the-robot-invasion-has-come-for-our-pool-halls/

	Consider 15 standard pool balls arranged in a triangle (7 solids, 7 stripes, one 8-ball).
	- Solids are all equivalent to each other
	- Stripes are all equivalent to each other
	- Robot can perform one of three operations: rotate 120° CW, rotate 120° CCW, swap 2 balls
	#!/usr/bin/env python3

	# Needs: Python 3.5+, Flask, PyCryptoDome
	# server.pem, rsapubkey.pem + rsaprivkey.pem (1024-bit) in the current directory
	#
	# What it does:
	# Pretends to be the "CT-KIP" web service (https://tools.ietf.org/html/rfc3948) that
	# RSA SecurID Token for Windows v5.0.x talks to to set up a new token, using an
	# authentication code.
	#