The figure below calls out
- The netfilter hooks
- The order of table traversal
Jared M. Smith jaredthecoder
schrodyn
/ RareEquities_Pcap.yar
Created
November 19, 2021 21:27
— forked from stvemillertime/RareEquities_Pcap.yar
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| rule ELF_Methodology_RareEquities_Pcap | |
| { | |
| meta: | |
| author = "@stvemillertime" | |
| description = "This is a wide catchall rule looking for executables with pcap equities. Matches on this rule may have built-in pcap collection, sniffing capability such as in MESSAGETAP, RATSNIF, etc." | |
| ref_md5 = "8d3b3d5b68a1d08485773d70c186d877" | |
| strings: | |
| $a1 = "pcap_" | |
| condition: | |
| (uint32(0) == 0x464c457f) and int8(0x10) == 0x02 and $a1 |
egernst
/ iptables-cheatsheet.md
Last active
October 14, 2023 16:42
— forked from mcastelino/iptables-cheatsheet.md
iptables-cheatsheet
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| TIMING=$1 | |
| SCRIPT=$2 | |
| W=$WINDOWID | |
| rm -rf /tmp/script-replay-gifs/ | |
| mkdir /tmp/script-replay-gifs/ | |
| t=$(mktemp) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "github.com/codegangsta/negroni" | |
| "github.com/julienschmidt/httprouter" | |
| "net/http" | |
| ) | |
| func main() { |
stared
/ software_for_scientists.md
Last active
May 9, 2024 13:46
Software for scientists: community-edited list of general-purpose software for scientists.
Some things takes much less time and stress once you know the right tool. Below, there is a community edited list of software for scientists.
in General purpose text/code editors. It may be better to have a good editor for everything, than different ones for different languages, scripts, notes.
sloria
/ bobp-python.md
Last active
May 12, 2024 06:54
A "Best of the Best Practices" (BOBP) guide to developing in Python.
dmytro
/ ssh-multi.sh
Created
October 31, 2012 03:46
Start multiple synchronized SSH connections with Tmux
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # ssh-multi | |
| # D.Kovalov | |
| # Based on http://linuxpixies.blogspot.jp/2011/06/tmux-copy-mode-and-how-to-control.html | |
| # a script to ssh multiple servers over multiple tmux panes | |
| starttmux() { | |
| if [ -z "$HOSTS" ]; then |
datagrok
/ gist:2199506
Last active
April 8, 2023 17:36
Virtualenv's `bin/activate` is Doing It Wrong
This article is now published on my website: Prefer Subshells for Context.
NewerOlder