Windows Certificate Manager Tool (certmgr.msc)
Manage storage for x509 keys. No support for PGP/GPG. Can't sign or encode, can't generate a key. You can use IIS webserver managemnt console to generate a cert.Proprietary
GNOME Seahorse GUI for SSH keys, X509 certs, PGP/GPG. Linux only.
| #!/bin/bash | |
| # Convert PREFIX_XXX=YYY variable to --xxx=YYY | |
| PREFIX=$1 | |
| DEFAULT=$DEFAULT_ARGS | |
| RESULT= | |
| if [ ${#PREFIX} -ge 2 ]; then | |
| while IFS= read -r line | |
| do | |
| PRE_KEY=$(echo $line | cut -d'=' -f1) | |
| KEY=$(echo $PRE_KEY |sed -e "s/$PREFIX/--/g; s/_/-/g; s/\(.*\)/\L\1/") |
Add regular-expression filter under /etc/fail2ban/filter.d/keycloak.conf:
[INCLUDES]
before = common.conf
[Definition]
_threadName = [a-z][-_0-9a-z]*(\s[a-z][-_0-9a-z]*)*
_userId = (null|[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12})
| #!/bin/bash | |
| #set -x | |
| #bash templater.sh < oc-template.tpl.yml | oc process -f - | oc create -f - | |
| #bash templater.sh < oc-template.tpl.yml > oc-template.yml && oc process -f oc-template.yml | oc create -f - | |
| while IFS= read -r line | |
| do | |
| end_offset=${#line} | |
| IS_VAR=true | |
| # Read variable in file | |
| while [[ "${line:0:$end_offset}" =~ (.*)(\$\{([a-zA-Z_][a-zA-Z_0-9]*)\})(.*) ]] ; do |
Please refer to this blogpost to get an overview.
Replace *-INSTANCE with one of the public instances listed in the scrapers section. Replace CAPITALIZED words with their corresponding identifiers on the website.
Putting cryptographic primitives together is a lot like putting a jigsaw puzzle together, where all the pieces are cut exactly the same way, but there is only one correct solution. Thankfully, there are some projects out there that are working hard to make sure developers are getting it right.
The following advice comes from years of research from leading security researchers, developers, and cryptographers. This Gist was [forked from Thomas Ptacek's Gist][1] to be more readable. Additions have been added from
Currently, there is an explosion of tools that aim to manage secrets for automated, cloud native infrastructure management. Daniel Somerfield did some work classifying the various approaches, but (as far as I know) no one has made a recent effort to summarize the various tools.
This is an attempt to give a quick overview of what can be found out there. The list is alphabetical. There will be tools that are missing, and some of the facts might be wrong--I welcome your corrections. For the purpose, I can be reached via @maxvt on Twitter, or just leave me a comment here.
There is a companion feature matrix of various tools. Comments are welcome in the same manner.
