Kyhwana Pardus kyhwana

## gist:bd80e180ca7c9245e32aa45cfe5620d6
19316,19317d19315
<             }, d.prototype.getSharedSecret = function() {
<                 return this.isEncrypted() ? "?" : this.decryptedSeed
26333,26337d26330
<                 }), f(".copysecret").click(function (t) {
<                     var n, r, o;
<                     return n = f(this), o = function () {
<                         return n.text("Copy Secret")
<                     }, r = n.parent().find(".sharedSecret")[0], e.onCopyClicked(r), n.text("Copied secret"), setTimeout(o, 1e3)
26378,26380c26371

## sslhdebianapparmorprofile
# Last Modified: Tue Jan 16 16:27:04 2018
#include <tunables/global>

/usr/sbin/sslh {
  #include <abstractions/base>
  #include <abstractions/dovecot-common>
  #include <abstractions/nameservice>
  #include <abstractions/nis>
  #include <abstractions/postfix-common>

## enable-asr-win10fcu.ps1
Set-MpPreference -AttackSurfaceReductionRules_Ids BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550,D4F940AB-401B-4EFC-AADC-AD5F3C50688A,3B576869-A4EC-4529-8536-B80A7769E899,75668C1F-73B5-4CF0-BB93-3ECF5CB7CC84,D3E037E1-3EB8-44C8-A917-57927947596D,5BEB7EFE-FD9A-4556-801D-275E5FFC04CC,92E97FA1-2EDF-4476-BDD6-9DD0B4DDDC7B -AttackSurfaceReductionRules_Actions Enabled, Enabled, Enabled, Enabled, Enabled, Enabled, Enabled
#1803 new rules:
#Set-MpPreference -AttackSurfaceReductionRules_Ids 01443614-cd74-433a-b99e-2ecdc07bfc25,c1db55ab-c21a-4637-bb3f-a12568109d35,9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2,d1e49aac-8f56-4280-b9ba-993a6d77406c,b2b3f03d-6a65-4f7b-a9c7-1c7ef74a9ba4  -AttackSurfaceReductionRules_Actions Enabled, Enabled, Enabled, Enabled, Enabled
#Anti-PUA rule:
Set-MpPreference -PUAProtection Enabled


## gist:0002cc64e8938e142e82b807e55e0b60
Lastpass: All under NDAs. https://lastpass.com/support.php?cmd=showfaq&id=1626
1password: https://support.1password.com/security-assessments/
keepass: https://www.ghacks.net/2016/11/22/keepass-audit-no-critical-security-vulnerabilities-found/
enpass: none.
pass: none?


## inotify-dl.sh
inotifywait -m /opt/dionaea/var/dionaea/binaries/ -e create |
    while read path action file; do
        if [[ "$file" != *"smb"* ]]; then
                if [[ "$file" != *"httpupload"* ]]; then
                        date=`date`
                        echo "The file '$file' appeared in directory '$path' via '$action' at '$date'"
                        firejail --quiet yara -w /opt/dionaea/rules-master/malware_index.yar $path$file
                        firejail --quiet clamscan $path$file --no-summary
                fi
        fi

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                kyhwana
                / keybase.md
            
            
              Created
              March 8, 2014 11:23
            
          
    Keybase proof

I hereby claim:

I am kyhwana on github.
I am kyhwana (https://keybase.io/kyhwana) on keybase.
I have a public key whose fingerprint is B30C 8C4B A734 513F FC75  41C7 B561 9CE0 3A15 5B13

To claim this, I am signing this object:
	19316,19317d19315
	< }, d.prototype.getSharedSecret = function() {
	< return this.isEncrypted() ? "?" : this.decryptedSeed
	26333,26337d26330
	< }), f(".copysecret").click(function (t) {
	< var n, r, o;
	< return n = f(this), o = function () {
	< return n.text("Copy Secret")
	< }, r = n.parent().find(".sharedSecret")[0], e.onCopyClicked(r), n.text("Copied secret"), setTimeout(o, 1e3)
	26378,26380c26371
	# Last Modified: Tue Jan 16 16:27:04 2018
	#include <tunables/global>

	/usr/sbin/sslh {
	#include <abstractions/base>
	#include <abstractions/dovecot-common>
	#include <abstractions/nameservice>
	#include <abstractions/nis>
	#include <abstractions/postfix-common>
	Set-MpPreference -AttackSurfaceReductionRules_Ids BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550,D4F940AB-401B-4EFC-AADC-AD5F3C50688A,3B576869-A4EC-4529-8536-B80A7769E899,75668C1F-73B5-4CF0-BB93-3ECF5CB7CC84,D3E037E1-3EB8-44C8-A917-57927947596D,5BEB7EFE-FD9A-4556-801D-275E5FFC04CC,92E97FA1-2EDF-4476-BDD6-9DD0B4DDDC7B -AttackSurfaceReductionRules_Actions Enabled, Enabled, Enabled, Enabled, Enabled, Enabled, Enabled
	#1803 new rules:
	#Set-MpPreference -AttackSurfaceReductionRules_Ids 01443614-cd74-433a-b99e-2ecdc07bfc25,c1db55ab-c21a-4637-bb3f-a12568109d35,9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2,d1e49aac-8f56-4280-b9ba-993a6d77406c,b2b3f03d-6a65-4f7b-a9c7-1c7ef74a9ba4 -AttackSurfaceReductionRules_Actions Enabled, Enabled, Enabled, Enabled, Enabled
	#Anti-PUA rule:
	Set-MpPreference -PUAProtection Enabled
	Lastpass: All under NDAs. https://lastpass.com/support.php?cmd=showfaq&id=1626
	1password: https://support.1password.com/security-assessments/
	keepass: https://www.ghacks.net/2016/11/22/keepass-audit-no-critical-security-vulnerabilities-found/
	enpass: none.
	pass: none?
	inotifywait -m /opt/dionaea/var/dionaea/binaries/ -e create \|
	while read path action file; do
	if [[ "$file" != "smb" ]]; then
	if [[ "$file" != "httpupload" ]]; then
	date=`date`
	echo "The file '$file' appeared in directory '$path' via '$action' at '$date'"
	firejail --quiet yara -w /opt/dionaea/rules-master/malware_index.yar $path$file
	firejail --quiet clamscan $path$file --no-summary
	fi
	fi