Skip to content

Instantly share code, notes, and snippets.

View lizrice's full-sized avatar

Liz Rice lizrice

3.1k followers · 3 following
View GitHub Profile
@lizrice
lizrice / README.md
Last active April 19, 2024 12:04
eBPF Game of Life
@lizrice
lizrice / gist:28ffe1d26ebf17b2713b76624aba15f3
Created March 16, 2022 19:49
Delete all the Cilium BPF things
sudo docker run -v /sys/fs/bpf:/sys/fs/bpf --privileged --net=host cilium/cilium:stable cilium cleanup -f --all-state
@lizrice
lizrice / who-can.yaml
Created July 13, 2020 17:36
Role & RoleBinding as an example for who-can
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
namespace: default
name: pod-runner
rules:
- apiGroups: [""] # "" indicates the core API group
resources: ["pods"]
verbs: ["create", "delete", "get", "watch", "list"]
---
@lizrice
lizrice / stars.html
Created June 15, 2020 18:11
Stargazer count
<!DOCTYPE html>
<html lang="en">
<head>
<script src="https://unpkg.com/axios/dist/axios.min.js"></script>
</head>
<body>
<p>Project <span id="repo">aquasecurity/trivy</span> <span id="starcount"></span></p>
</body>
<script>
function getStarcount(repo, resultElement) {
@lizrice
lizrice / metadata
Last active November 4, 2019 11:17
Trivy project CLA
{
"name": {
"title": "Full Name",
"type": "string",
"githubKey": "name"
},
"email": {
"title": "E-Mail",
"type": "string",
"githubKey": "email",
@lizrice
lizrice / variable.go
Created August 17, 2019 06:27
Variables in functions in Go
func main() {
x := 1
f := func() {
fmt.Printf("x is %d\n", x)
}
x = 2
f()
}
@lizrice
lizrice / cla.md
Last active August 22, 2019 10:03
Contributor License Agreement

I hereby irrevocably assign all of my right, title and interest in and to my past, present and future contributions to the Name of project Open Source project (“Contributions”) to Recipient, and irrevocably waive and release all rights and claims in respect thereof (including all moral rights or similar rights), without the right to receive any compensation or royalties.

I hereby represent and warrant that I am the sole author of the Contributions, which are my original creations, that I have the legal right to make the assignment set forth above, and that no Contributions are subject to any claim of ownership or otherwise by my employer or any other organization with which I may be affiliated in any way.

@lizrice
lizrice / hello_map.py
Last active July 19, 2023 08:20
eBPF hello world
#!/usr/bin/python
from bcc import BPF
from time import sleep
# This outputs a count of how many times the clone and execve syscalls have been made
# showing the use of an eBPF map (called syscall).
program = """
BPF_HASH(syscall);
@lizrice
lizrice / Vagrantfile
Created March 7, 2019 16:23
Openshift single-node cluster Vagrantfile
$ cat Vagrantfile
# -*- mode: ruby -*-
# vi: set ft=ruby :
$script = <<-SCRIPT
cat > /etc/docker/daemon.json << EOF
{
"insecure-registries": [
"172.30.0.0/16"
@lizrice
lizrice / Vagrantfile
Last active July 13, 2020 03:38
Preventative Kubernetes Security demo
# -*- mode: ruby -*-
# vi: set ft=ruby :
# After loading this
# Install a pod network
# $ kubectl apply -f https://cloud.weave.works/k8s/net?k8s-version=$(kubectl version | base64 | tr -d '\n')
# Allow pods to run on the master node
# $ kubectl taint nodes --all node-role.kubernetes.io/master-