markuskont

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                markuskont
                / keybase.md
            
            
              Created
              May 27, 2020 10:45
            
          
    Keybase proof

I hereby claim:

I am markuskont on github.
I am rev013 (https://keybase.io/rev013) on keybase.
I have a public key ASCRd_Jcdgwx4q2ukIDlUzds9eijzMuHeHAZnckvNzfFLAo

To claim this, I am signing this object:

  
## ansible_play_update_golang.yml
- name: update go
  connection: local
  hosts: localhost
  vars:
    home:
    version: 1.14
    source: "https://dl.google.com/go/go{{ version }}.linux-amd64.tar.gz"
    sha256sum: 08df79b46b0adf498ea9f320a0f23d6ec59e9003660b4c9c1ce8e5e2c6f823ca
  tasks:
  - name: remove old go install

## 98-monitor.rules
KERNEL=="card0", SUBSYSTEM=="drm", ENV{DISPLAY}=":0", ENV{XAUTHORITY}="/home/markus/.Xauthority", RUN+="/usr/share/markus/hotplug-monitor.sh"

## gmail.py
#!/usr/bin/env python

#from __future__ import print_function
import pickle
import os.path
from googleapiclient.discovery import build
from google_auth_oauthlib.flow import InstalledAppFlow
from google.auth.transport.requests import Request

import json

## reindex_moloch_sessions.py
#!/usr/bin/env python

from elasticsearch import Elasticsearch, helpers

host = "X.X.X.X"
pattern = "sessions2"

c1 = ["{}:9213".format(host)]
c2 = ["{}:9214".format(host)]

## moloch-hot-cold-balancer.py
#!/usr/bin/env python

from elasticsearch import Elasticsearch
import sys
import argparse

if __name__ == "__main__":
    parser = argparse.ArgumentParser()

    parser.add_argument("--conn",

## peek.rs
extern crate redis;
extern crate reqwest;
extern crate serde_json;

use redis::Commands;
use serde_json::{json, Map, Value};
use std::{thread, time};

use std::collections::HashMap;

## set-capture-affinity.py
#!/usr/bin/env python3

import psutil
import subprocess
import re
import sys
import os.path

def get_moloch_capture_parent():
    procs = {p.pid: p.info for p in psutil.process_iter(attrs=['pid', 'name', 'username'])}

## new-observed-tls.lua
function init (args)
    local needs = {}
    needs["protocol"] = "tls"
    return needs
end
function setup (args)
    name = "tls.log"
    filename = SCLogPath() .. "/" .. name
    file = assert(io.open(filename, "a"))

## ja3-whitelist.lua
function init (args)
  local needs = {}
  needs["tls"] = tostring(true)
  return needs
end

function match(args)
  hash = Ja3GetHash()
  if hash == nil then
    return 0
	- name: update go
	connection: local
	hosts: localhost
	vars:
	home:
	version: 1.14
	source: "https://dl.google.com/go/go{{ version }}.linux-amd64.tar.gz"
	sha256sum: 08df79b46b0adf498ea9f320a0f23d6ec59e9003660b4c9c1ce8e5e2c6f823ca
	tasks:
	- name: remove old go install
	#!/usr/bin/env python

	#from __future__ import print_function
	import pickle
	import os.path
	from googleapiclient.discovery import build
	from google_auth_oauthlib.flow import InstalledAppFlow
	from google.auth.transport.requests import Request

	import json
	#!/usr/bin/env python

	from elasticsearch import Elasticsearch, helpers

	host = "X.X.X.X"
	pattern = "sessions2"

	c1 = ["{}:9213".format(host)]
	c2 = ["{}:9214".format(host)]
	#!/usr/bin/env python

	from elasticsearch import Elasticsearch
	import sys
	import argparse

	if __name__ == "__main__":
	parser = argparse.ArgumentParser()

	parser.add_argument("--conn",
	extern crate redis;
	extern crate reqwest;
	extern crate serde_json;

	use redis::Commands;
	use serde_json::{json, Map, Value};
	use std::{thread, time};

	use std::collections::HashMap;
	#!/usr/bin/env python3

	import psutil
	import subprocess
	import re
	import sys
	import os.path

	def get_moloch_capture_parent():
	procs = {p.pid: p.info for p in psutil.process_iter(attrs=['pid', 'name', 'username'])}
	function init (args)
	local needs = {}
	needs["protocol"] = "tls"
	return needs
	end
	function setup (args)
	name = "tls.log"
	filename = SCLogPath() .. "/" .. name
	file = assert(io.open(filename, "a"))
	function init (args)
	local needs = {}
	needs["tls"] = tostring(true)
	return needs
	end

	function match(args)
	hash = Ja3GetHash()
	if hash == nil then
	return 0