Kinnaird McQuade kmcquade

## gist:6e3fdb7bfe43a56b9868fa96566ad6c3
sudo su

yum --enablerepo=extras install epel-release
yum -y install patch dkms kernel-devel perl
yum update

reboot

sudo su

## jenkins-decrypt.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                kmcquade
                / jenkins-decrypt.md
            
            
              Last active
              March 20, 2019 19:20
                — forked from tuxfight3r/jenkins-decrypt.groovy
            
              
                Decrypting Jenkins Password
              
          
    To Decrypt Jenkins Passwords


Go to the "Configure System" screen.
Right click on a password field, Inspect element, then change to "text" instead of "password".
Copy that field and then go to the Script Console. Paste the below into the field, replace with your encrypted password, and then hit "run".

encrypted_pw = '{your_encrypted_password_with_brackets_around_it}'
passwd = hudson.util.Secret.decrypt(encrypted_pw)
println(passwd)

  
## 0.12.tf
# first class expresssion
variable "ami" {}
resource "aws_instance" "example" {
  ami           = var.ami
}

###

# list & map
resource "aws_instance" "example" {

## keep-jenkins-plugins-uptodate.groovy
jenkins.model.Jenkins.getInstance().getUpdateCenter().getSites().each { site ->
  site.updateDirectlyNow(hudson.model.DownloadService.signatureCheck)
}

hudson.model.DownloadService.Downloadable.all().each { downloadable ->
  downloadable.updateNow();
}

def plugins = jenkins.model.Jenkins.instance.pluginManager.activePlugins.findAll {
  it -> it.hasUpdate()

## packer-ami-id
packer build packer.json 2>&1 | sudo tee output.txt
tail -2 output.txt | head -2 | awk 'match($0, /ami-.*/) { print substr($0, RSTART, RLENGTH) }' > sudo ami.txt

## virtualenv-auto-activate.sh
#!/bin/bash
# virtualenv-auto-activate.sh
#
# Installation:
#   Add this line to your .bashrc or .bash-profile:
#
#       source /path/to/virtualenv-auto-activate.sh
#
#   Go to your project folder, run "virtualenv .venv", so your project folder
#   has a .venv folder at the top level, next to your version control directory.

## parse_arn.py
def parse_arn(arn):
    # http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html
    elements = arn.split(':')
    result = {'arn': elements[0],
            'partition': elements[1],
            'service': elements[2],
            'region': elements[3],
            'account': elements[4]
           }
    if len(elements) == 7:

## systemd_service_hardening.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                kmcquade
                / systemd_service_hardening.md
            
            
              Created
              April 29, 2019 17:37
                — forked from ageis/systemd_service_hardening.md
            
              
                Options for hardening systemd service units
              
          
    A common and reliable pattern in service unit files is thus:
NoNewPrivileges=yes
PrivateTmp=yes
PrivateDevices=yes
DevicePolicy=closed
ProtectSystem=strict
ProtectHome=read-only
ProtectControlGroups=yes
ProtectKernelModules=yes


## install-firing-range.sh
#!/bin/bash

# Clone the Firing Range Repository
git clone https://github.com/google/firing-range.git

# Change to 'firing-range' directory
cd firing-range

# Download the AppEngine SDK
wget https://storage.googleapis.com/appengine-sdks/featured/appengine-java-sdk-1.9.23.zip

## ldbdump.py
#!/usr/bin/python3

# ldbdump - dumps LevelDB keys/values
#
# a LevelDB is a dir with files such a these:
# 000050.ldb  000100.log  CURRENT  LOCK  LOG  MANIFEST-000099
#
# sources: https://github.com/tos-kamiya/levelobjdb dump()

import os
	sudo su

	yum --enablerepo=extras install epel-release
	yum -y install patch dkms kernel-devel perl
	yum update

	reboot

	sudo su
	# first class expresssion
	variable "ami" {}
	resource "aws_instance" "example" {
	ami = var.ami
	}

	###

	# list & map
	resource "aws_instance" "example" {
	jenkins.model.Jenkins.getInstance().getUpdateCenter().getSites().each { site ->
	site.updateDirectlyNow(hudson.model.DownloadService.signatureCheck)
	}

	hudson.model.DownloadService.Downloadable.all().each { downloadable ->
	downloadable.updateNow();
	}

	def plugins = jenkins.model.Jenkins.instance.pluginManager.activePlugins.findAll {
	it -> it.hasUpdate()
	packer build packer.json 2>&1 \| sudo tee output.txt
	tail -2 output.txt \| head -2 \| awk 'match($0, /ami-.*/) { print substr($0, RSTART, RLENGTH) }' > sudo ami.txt
	#!/bin/bash
	# virtualenv-auto-activate.sh
	#
	# Installation:
	# Add this line to your .bashrc or .bash-profile:
	#
	# source /path/to/virtualenv-auto-activate.sh
	#
	# Go to your project folder, run "virtualenv .venv", so your project folder
	# has a .venv folder at the top level, next to your version control directory.
	def parse_arn(arn):
	# http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html
	elements = arn.split(':')
	result = {'arn': elements[0],
	'partition': elements[1],
	'service': elements[2],
	'region': elements[3],
	'account': elements[4]
	}
	if len(elements) == 7:
	#!/bin/bash

	# Clone the Firing Range Repository
	git clone https://github.com/google/firing-range.git

	# Change to 'firing-range' directory
	cd firing-range

	# Download the AppEngine SDK
	wget https://storage.googleapis.com/appengine-sdks/featured/appengine-java-sdk-1.9.23.zip
	#!/usr/bin/python3

	# ldbdump - dumps LevelDB keys/values
	#
	# a LevelDB is a dir with files such a these:
	# 000050.ldb 000100.log CURRENT LOCK LOG MANIFEST-000099
	#
	# sources: https://github.com/tos-kamiya/levelobjdb dump()

	import os