I hereby claim:
- I am jayswan on github.
- I am jayswan (https://keybase.io/jayswan) on keybase.
- I have a public key ASALSzDdZ0ZJ1qox8-iZ3GEAkO0YiMifm7ET6hpsMpsEkAo
To claim this, I am signing this object:
Jay Swan jayswan
jayswan
/ keybase.md
Created
July 9, 2025 18:41
jayswan
/ uncipher.py
Created
February 27, 2012 23:58
Python: reverse Cisco type 7 passwords with input from file or stdin
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| Uncipher Cisco type 7 ciphered passwords | |
| Usage: python uncipher.py <pass> where <pass> is the text of the type 7 password | |
| Example: | |
| $ python uncipher.py 094F4F1D1A0403 | |
| catcat | |
| """ | |
| import fileinput | |
| import sys |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| dig @8.8.8.8 +short txt _netblocks.google.com | awk '{gsub("ip4:","");for (col=2; col<NF;++col) print $col}' |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
The White Rim Trail is a long 4x4 / moto / bike route in Canyonlands National Park near Moab UT. Depending on where you start and end it's anywhere from 90-105 miles. It's a classic mountain bike ride usually done over 3 to 4 days with camping and vehicle support, but also done as a single-day marathon adventure ride. Camping permits are very difficult to get (typically a year in advance) and guided tours are very expensive, so the single day option is good if you're fit enough. The route is quite remote with no water available, but you'll typically see some motorcycles, bike tour groups, and sometimes a park ranger.
- 102 miles (starting and ending at Horsethief BLM Campground, riding counter-clockwise)
- 7200 feet elevation gain
- 13h 30m total time
- 11h 8m moving time
- Sunny, lows in the mid 40s, highs in the upper 70s
- Many miles of horrible beach sand between Mineral Bottom and Murphy's Hogback
jayswan
/ gist:a8d9920ef74516a02fe1
Last active
March 11, 2022 15:33
Elasticsearch Python bulk index API example
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| >>> import itertools | |
| >>> import string | |
| >>> from elasticsearch import Elasticsearch,helpers | |
| es = Elasticsearch() | |
| >>> # k is a generator expression that produces | |
| ... # a series of dictionaries containing test data. | |
| ... # The test data are just letter permutations | |
| ... # created with itertools.permutations. | |
| ... # | |
| ... # We then reference k as the iterator that's |
jayswan
/ simple_syslog_count.py
Last active
October 22, 2020 05:34
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from collections import Counter,defaultdict | |
| import re | |
| import sys | |
| """ | |
| Counterpart to this blog post: | |
| http://unroutable.blogspot.com/2014/07/simple-python-syslog-counter.html | |
| Summarize counts of typical Cisco syslog messages. Most syslog servers produce lines that look something like this: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| type Idx: record { | |
| hostname: string; | |
| }; | |
| export { | |
| redef enum Notice::Type += { | |
| DNS_ENTRY::Tracked_Hostname | |
| }; | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Fastly | |
| curl -s https://api.fastly.com/public-ip-list | jq -r '.addresses | .[]' | |
| dig @8.8.8.8 +short txt _netblocks.google.com | awk '{gsub("ip4:","");for (col=2; col<NF;++col) print $col}' | |
| # AWS | |
| curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | \ | |
| jq --raw-output '.prefixes | map(.ip_prefix) | .[]' |
Splunk vs ELK is complicated, depending on what you want to optimize. Probably the biggest issue is the ecosystem around post-search data manipulation.
ES is amazing at searching for tokens and returning documents. The aggregations are also superb -- actually much faster than Splunk under most conditions. Plugins can extend that functionality. Stuff like fuzzy search, regex queries, indexed terms lookups, significant terms aggregations, and nested aggregations can be extremely powerful if you know how to use them well.
ES has a reputation for stability problems. These are mostly solvable by running an appropriately sized cluster with new versions and proper circuit breaker settings. Much of the FUD I've seen about this is incorrect, but the biggest problem remains that you can't kill a misbehaving query or constrain its resource use after it has started; if your circuit breakers aren't working correctly then you're out of luck.
U
NewerOlder