Skip to content

Instantly share code, notes, and snippets.

View jshen28's full-sized avatar

jshen28

12 followers · 48 following
View GitHub Profile
@jshen28
jshen28 / sniff-ssl-traffic.md
Last active October 30, 2018 03:35

SNIFF SSL TRAFFIC

Recently I get confused on how to sniff HTTPS traffic, I think I need a proxy and it turns out correct. I setup a proxy chain by using stunnel.

SETUP

I use two machines (which is not optimal), one is used for executing command and serving stunnel server; then other one is used for stunnel client and sniffing.

STUNNEL SERVER & CLIENT

@jshen28
jshen28 / configure-firewall.md
Last active October 30, 2018 05:29

CONFIGURE FIREWALLS

WINDOWS

On newer windows,

netsh advfirewall set  allprofiles state off/on

:: or equivalently
@jshen28
jshen28 / ps-cheatsheet.md
Last active November 1, 2018 08:48

POWERSHELL CHEATSHEET

ENABLE REMOTE DESKTOP

# https://www.interfacett.com/blogs/methods-to-enable-and-disable-remote-desktop-locally/
Set-ItemProperty -Path hklm:"HKEY_LOCAL_MACHINE\SYSTEM\CurRentControlSet\Control\Terminal Server" -Name fDenyTSConnections -Value 0
@jshen28
jshen28 / generate-self-signed-ca-and-sign-client.md
Last active November 5, 2018 00:32 
# generate ca key & certificate
openssl genrsa -out ca.key 2048
openssl req -x509 -new -nodes -key ca.key -sha256 -days 10000 -out ca.crt

# generate client key & csr
openssl genrsa -out client.key 2048
openssl req -new -key client.key -out client.csr

# sign request and get client certificate
@jshen28
jshen28 / nginx-conf.md
Last active November 6, 2018 00:09

PROXY OPENSTACK REQUEST

I get a job to hide openstack behind a reverse proxy and make default ports completely invisible from users.

MAIN CONFIGURATION

Right now I am afraid openstack has some problem with a unified api gateway, so I have to modify response body if version controller is accessed by the end user. (Sadly version controller should not be used because from my point of view, it conflicts with endpoints returned)

# nginx config
@jshen28
jshen28 / ruby-bundle.md
Created November 6, 2018 07:45

BUNDLE

BUNDLE_EXEC_PATH=
BUNDLE_DIR=

cd $BUNDLE_DIR
${BUNDLE_EXEC_PATH} exec ${EXECUTABLE_FILE}
@jshen28
jshen28 / use-pypi-mirror.md
Last active November 10, 2018 13:08 
# ~/.pip/pip.conf
[global]
index-url = https://pypi.douban.com/simple
@jshen28
jshen28 / ipmitools-cheatsheet.md
Last active February 21, 2019 03:59

IPMITOOLS CHEATSHEET

# print info
ipmitool lan print

# restart bmc
ipmitool -I lanplus -U <USERNAME> -P <PASSWORD> -H <HOST_ADDRESS> bmc reset cold

# change boot order
@jshen28
jshen28 / ethtool-cheatsheet.md
Last active December 13, 2018 06:07

ETHTOOL CHEATSHEET

To get a full list of available options, use man ethtool.

SHOW NIC INFO/DRIVER

ethtool -i ${NIC}
@jshen28
jshen28 / rabbitmq.txt
Created January 7, 2019 05:28 — forked from sdieunidou/rabbitmq.txt
create admin user on rabbitmq
rabbitmqctl add_user test test
rabbitmqctl set_user_tags test administrator
rabbitmqctl set_permissions -p / test ".*" ".*" ".*"