Skip to content

Instantly share code, notes, and snippets.

View kyhwana's full-sized avatar

Kyhwana Pardus kyhwana

48 followers · 22 following
View GitHub Profile
@kyhwana
kyhwana / readme
Created December 26, 2023 23:01
Enabling ZFS encryption on ubuntu 23.10
Ubuntu 23.10 lets you select the advanced option of using ZFS, but not encrypting it.
#assuming you want to use zstd compression, if not remove the compress=zstd bits, as it defaults to lz4
#This doesn't encrypt the boot pool.
#ROOT is the root zfs dataset.
1) Install ubuntu 23.10 as normal, select the advanced/experimental options when installing and select ZFS
2) Once the install is done, reboot back into the installer (via USB/DVD/etc)
3) "Try ubuntu" and open a terminal, then sudo -i to root
4) zpool import -f rpool
@kyhwana
kyhwana / gist:05dae5df06ed24c89b08a1090ae7aca9
Created March 4, 2022 07:25
ipv4 allow for headscale for exit nodes, while excluding RFC1918 etc IPs
{
"Action": "accept",
"Users": [ "group:admin", "group:users" ],
"Ports": [ "0.0.0.0/5:*" ]
},
{
"Action": "accept",
"Users": [ "group:admin", "group:users" ],
"Ports": [ "8.0.0.0/7:*" ]
},
@kyhwana
kyhwana / blocksigners.sh
Last active June 21, 2023 11:41
Block RMS support letter signers
#replace "<PAT TOKEN>" with your github PAT token, tested with "Update ALL user data" PAT token.
curl -q https://rms-support-letter.github.io/ | grep "href" | grep "github.com" | grep -v "\/\[" | awk -F "https://github.com/" '{ print $2 }' | awk -F "\"\>" '{ print $1 }' | sed 's/\///g' | sed '/^$/d' | xargs -I USER curl -i -X PUT -H "Authorization: token <pat token here>" -H "Accept: application/vnd.github.v3+json" https://api.github.com/user/blocks/USER
@kyhwana
kyhwana / blocked.txt
Created April 14, 2020 05:40
netsafe DNS filter
ecequality.org (shows as 404?)
www.gay.com (blocked) (redirects to lalgbtcenter.org which isn't blocked)
www.gmhc.org (doesn't resolve)
www.grindr.com (blocked)
www.pinkcupid.com (blocked)
www.out.com (blocked)
www.planetromeo.com (blocked)
www.scruff.com (blocked)
@kyhwana
kyhwana / README.txt
Last active February 28, 2020 03:51
Ghidra Windows 1903+ sandbox
This assumes that you're running Windows 10 Pro/Enterprise 1903 or newer and have enabled the Windows Sandbox. See https://techcommunity.microsoft.com/t5/Windows-Kernel-Internals/Windows-Sandbox/ba-p/301849 for how to enable this and other requirements.
Download ghidra from https://ghidra-sre.org/ and extract it to c:\sandbox\
Download the AdoptOpenJDK Windows x64 JDK from https://adoptopenjdk.net/releases.html?variant=openjdk11&jvmVariant=hotspot#x64_win and copy it to c:\sandbox\jdk.msi
Download install.cmd and copy it to c:\sandbox\
If you have any Ghidra scripts or extentions, copy these to a directory in c:\sandbox\ and they will be copied to C:\Users\WDAGUtilityAccount\downloads\ inside the VM as well.
Download the ghidra.wsb file and run!
The ghidra.wsb will run install.cmd which will copy the files from the shared folder into C:\Users\WDAGUtilityAccount\downloads\ inside the VM and then run the jdk installer (in passive mode, so once the install dialog disappears, it's done)
Your shiney new windows 1
@kyhwana
kyhwana / kawaiicontalks
Last active November 2, 2019 05:24
Kawaiicon talk videos
Day 1 opening: https://t.co/myIifW120o?amp=1 (by @jpdanner)
Tesla coil performance: https://t.co/DoLdCZJZg1?amp=1 (by @jpdanner)
Matthew Garrett: I am a scooter: https://youtu.be/aecB2A_ad1A
Laura Bell: How can I help you. https://youtu.be/YrMlo2SRFlM
RDP/TLS fingerprint twitter coverage + links: https://twitter.com/0x4D31/status/1185025973151907840
Mike loss: lair lair, a first timer red teaming under unusual consitions https://youtu.be/ASSjkkr4OCg
Chris culnane. https://stateofit.com/kawaiicon/ internet voting from bad idea to poor execution
Fobskis talk on A security tale: https://www.youtube.com/watch?v=Aws1BlWgCWk&feature=youtu.be
SophiaFrentz (Not) hacking your biology: https://www.youtube.com/watch?v=8RtWQGHS8Io
@kyhwana
kyhwana / listofroughtimeservers.txt
Last active December 16, 2021 05:00
List of roughtime servers
roughtime.int08h.com port:2002 016e6e0284d24c37c6e4d7d8d5b4e1d3c1949ceaa545bf875616c9dce0c9bec1
roughtime.kyhwana.org port:2002 f1992a67a9d14b662efa86cca3db62cfc2e48810cf45ba5df181d8fc135b8261
roughtime.blackhatspottycat.net:2002 2397e2512392ad9532341b0dbc3581a3a04dabffebf00bd0af8d6deac19071bc
roughtime.sandbox.google.com:2002 etPaaIxcBMY1oUeGpwvPMCJMwlRVNxv51KK/tktoJTQ= / 7ad3da688c5c04c635a14786a70bcf30224cc25455371bf9d4a2bfb64b682534
roughtime.cloudflare.com:2002 gD63hSj3ScS+wuOeGrubXlq35N1c5Lby/S+T7MNTjxo= / 803eb78528f749c4bec2e39e1abb9b5e5ab7e4dd5ce4b6f2fd2f93ecc3538f1a
@kyhwana
kyhwana / home.roughtime.server
Created September 22, 2018 01:50
Apparmor profile for roughenough server
#include <tunables/global>
/home/roughtime/server {
#include <abstractions/base>
/home/roughtime/roughenough.cfg r,
/home/roughtime/server mr,
}
@kyhwana
kyhwana / usr.bin.steam
Created February 12, 2018 21:43
steam ubuntu apparmor
# Last Modified: Sat Feb 10 17:50:50 2018
#include <tunables/global>
/usr/bin/steam {
#include <abstractions/X>
#include <abstractions/base>
#include <abstractions/bash>
#include <abstractions/lightdm>
#include <abstractions/nameservice>
@kyhwana
kyhwana / gist:bdbbc35532d264143dcbe00e07b2c461
Created January 23, 2018 23:52
Authy 2.5.0_0 diff to show TOTP account secrets.
19316,19317d19315
< }, d.prototype.getSharedSecret = function() {
< return this.isEncrypted() ? "?" : this.decryptedSeed
26333,26337d26330
< }), f(".copysecret").click(function (t) {
< var n, r, o;
< return n = f(this), o = function () {
< return n.text("Copy Secret")
< }, r = n.parent().find(".sharedSecret")[0], e.onCopyClicked(r), n.text("Copied secret"), setTimeout(o, 1e3)
26378,26380c26371