Martin martinseener
martinseener
/ modx-revolution-backup.php
Created
May 13, 2014 10:04
MODX Revolution Quick File and DB Backup PHP-CLI Script
View modx-revolution-backup.php
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| if ( !shell_exec("type type")) { echo "Weak your PHP powers are, Luke."; die; } | |
| $dir = "../backup"; /* Verzeichnis außerhalb des Webroot */ | |
| $configFile = "./core/config/config.inc.php"; | |
| if (file_exists($configFile)) { | |
| include($configFile); | |
| $date = date("Ymd-His"); | |
| $targetSql = "$dir/{$date}_mysql.sql"; | |
| $targetTar = "$dir/{$date}_files.tar"; | |
| system("mkdir $dir"); |
martinseener
/ check_freak.sh
Last active
January 9, 2022 03:21
check_freak.sh - A simple nagios-compatible check for the FREAK vulnerability (CVE 2015-0204)
View check_freak.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # check_freak.sh | |
| # (c) 2015 Martin Seener | |
| # Simple script which checks SSL/TLS services for the FREAK vulnerability (CVE 2015-0204) | |
| # It will output if the checked host is vulnerable and returns the right exit code | |
| # so it can also be used as a nagios check! | |
| PROGNAME=$(basename $0) |
martinseener
/ gist:5238576
Last active
March 23, 2021 01:20
Grok ESXi 5.x Pattern (for Logstash) (including puppet format with special escaping!)
View gist:5238576
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| filter { | |
| grok { | |
| pattern => ['(?:%{SYSLOGTIMESTAMP:timestamp}|%{TIMESTAMP_ISO8601:timestamp8601}) (?:%{SYSLOGHOST:logsource}) (?:%{SYSLOGPROG}): (?<messagebody>(?:\[(?<esxi_thread_id>[0-9A-Z]{8,8}) %{DATA:esxi_loglevel} \'%{DATA:esxi_service}\'\] %{GREEDYDATA:esxi_message}|%{GREEDYDATA}))'] | |
| type => "esxi" | |
| } | |
| } | |
| # Puppet format with escaping | |
| pattern => [ "(?:%{SYSLOGTIMESTAMP:timestamp}|%{TIMESTAMP_ISO8601:timestamp8601}) (?:.* (?:%{SYSLOGFACILITY} )?%{SYSLOGHOST:logsource} %{SYSLOGPROG}|(?:%{SYSLOGFACILITY} )?%{SYSLOGHOST:logsource} %{SYSLOGPROG}): (?:(?:\[[0-9A-Z]{8,8}) (?:%{GREEDYDATA:esxi_loglevel}) \\\'(?:%{GREEDYDATA:esxi_service})\\\'] (?:%{GREEDYDATA:message})|(?:%{GREEDYDATA:message}))" ], |
martinseener
/ gist:5247292
Last active
July 1, 2019 21:38
Grok Sophos UTM 9.x Pattern (for logstash) (Simple)
View gist:5247292
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| filter { | |
| grok { | |
| pattern => ['(?:%{SYSLOGTIMESTAMP:timestamp}|%{TIMESTAMP_ISO8601:timestamp8601}) (?:%{SYSLOGHOST:logsource}) (?:%{YEAR}): (?:%{MONTHNUM}):(?:%{MONTHDAY})-(?:%{HOUR}):(?:%{MINUTE}):(?:%{SECOND}) (?:%{SYSLOGHOST}) (?:%{SYSLOGPROG}): (?<messagebody>(?:id=\"%{INT:utm_id}\" severity=\"%{LOGLEVEL:utm_severity}\" sys=\"%{DATA:utm_sys}\" sub=\"%{DATA:utm_sub}\" name=\"%{DATA:utm_name}\" action=\"%{DATA:utm_action}\" fwrule=\"%{INT:utm_ulogd_fwrule}\" initf=\"%{DATA:utm_ulogd_initf}\" outitf=\"%{DATA:utm_ulogd_outif}\" (?:srcmac=\"%{GREEDYDATA:utm_ulogd_srcmac}\" dstmac=\"%{GREEDYDATA:utm_ulogd_dstmac}\"|srcmac=\"%{GREEDYDATA:utm_ulogd_srcmac}\") srcip=\"%{IP:utm_srcip}\" dstip=\"%{IP:utm_dstip}\" proto=\"%{INT:utm_protocol}\" length=\"%{INT:utm_ulogd_pkglength}\" tos=\"%{DATA:utm_ulogd_tos}\" prec=\"%{DATA:utm_ulogd_prec}\" ttl=\"%{INT:utm_ulogd_ttl}\" srcport=\"%{INT:utm_srcport}\" dstport=\"%{INT:utm_dstport}\" tcpflags=\"%{DATA:utm_ulogd_tcpflags}\"|id=\"%{INT:utm_id}\" severity=\"%{LOGLEVEL:utm |
martinseener
/ postgresql_9.1_to_9.3_on_ubuntu_debian
Last active
March 14, 2017 10:17
— forked from mdpatrick/postgresql_9.1_to_9.3_on_ubuntu_12.04
Small pg_upgrade HowTo for Debian and Ubuntu for PG 9.1 to 9.3 (also works for other versions as well)
View postgresql_9.1_to_9.3_on_ubuntu_debian
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Probably excessive, but it makes these instructions simpler | |
| sudo -i | |
| # Add postgresql repo and update apt listing | |
| echo "deb http://apt.postgresql.org/pub/repos/apt/ squeeze-pgdg main" > /etc/apt/sources.list.d/pgdg. | |
| wget --quiet -O - https://www.postgresql.org/media/keys/ACCC4CF8.asc | sudo apt-key add - | |
| apt-get update | |
| # For some reason this is necessary with PostgreSQL on Ubuntu 12.04 | |
| update-alternatives --remove postmaster.1.gz /usr/share/postgresql/9.1/man/man1/postmaster.1.gz |
martinseener
/ kcov xcodebuild
Created
February 22, 2017 08:35
View kcov xcodebuild
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- The C compiler identification is AppleClang 8.0.0.8000042 | |
| -- The CXX compiler identification is AppleClang 8.0.0.8000042 | |
| -- Check for working C compiler: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/clang | |
| -- Check for working C compiler: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/clang -- works | |
| -- Detecting C compiler ABI info | |
| -- Detecting C compiler ABI info - done | |
| -- Detecting C compile features | |
| -- Detecting C compile features - done | |
| -- Check for working CXX compiler: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/clang++ | |
| -- Check for working CXX compiler: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/clang++ -- works |
martinseener
/ gist:98d2690d48895be25d0f
Created
January 5, 2016 14:08
— forked from brenes/gist:bfaf3aad4d456e9063a0
Installing ruby stuff on Debian Jessie
View gist:98d2690d48895be25d0f
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| * First: Install libxml2 through RVM | |
| rvm pkg install libxml2 | |
| * Then: Configure libxml in bundle | |
| bundle config build.libxml-ruby \ | |
| --with-xml2-lib=${HOME}/.rvm/usr/lib \ | |
| --with-xml2-include=${HOME}/.rvm/usr/include/libxml2 |
martinseener
/ gist:6865383
Last active
December 24, 2015 21:29
Grok Advanced Syslog Pattern wich adds postfix/smtp support for outgoing mails
View gist:6865383
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| %{SYSLOGBASE2} (?<messagebody>(?:%{DATA:mail_message_id}: to=<%{DATA:mail_recipient}>, relay=%{DATA:mail_relay_url}\[%{IP:mail_relay_ip}\]:%{INT:mail_relay_port}, delay=%{BASE10NUM:mail_processing_time}, delays=%{GREEDYDATA:mail_processing_delays}, dsn=%{DATA:mail_delivery_status_notification}, status=%{GREEDYDATA:mail_relay_status}|%{GREEDYDATA})) |
martinseener
/ getOldestFile.sh
Created
July 22, 2013 10:15
Bash Funcion which returns the oldest file for specified path (recursive)
View getOldestFile.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| getOldestFile(){ | |
| # Returns oldest file in path specified by $1 | |
| if [ -z "$1" ]; then | |
| echo "No Path argument given - exiting." | |
| exit 1 | |
| fi | |
| find $1 -type f -printf '%T+ %p\n' | sort | head -1 | cut -d' ' -f2 | |
| } |
martinseener
/ gist:5318215
Last active
December 15, 2015 20:19
Grok Apache2 Custom-Pattern (streamlined Custom-Log to comply Error Log and enhanced Custom Log by adding more information)
View gist:5318215
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| filter { | |
| grok { | |
| pattern => ['(?:%{SYSLOGTIMESTAMP:timestamp}|%{TIMESTAMP_ISO8601:timestamp8601}) (?:%{SYSLOGHOST:logsource}) (?:%{SYSLOGPROG}): (?<messagebody>\[%{DAY} %{MONTH} %{MONTHDAY} %{HOUR}:%{MINUTE}:%{SECOND} %{YEAR}\] \[%{LOGLEVEL:severity}\] \[client %{IP:a2_client_ip}\] (?:Request: \"%{GREEDYDATA:a2_request}\" %{INT:a2_http_code} (?:%{GREEDYDATA:a2_sent_bytes}|%{INT:a2_sent_bytes}) %{INT:a2_response_time} %{GREEDYDATA:a2_referer}\" \"%{GREEDYDATA:a2_user_agent}\" \"%{GREEDYDATA:a2_ssl_protocol}\" \"%{GREEDYDATA:a2_ssl_cipher}\"|Request: \"%{GREEDYDATA:a2_request}\" %{INT:a2_http_code} (?:%{GREEDYDATA:a2_sent_bytes}|%{INT:a2_sent_bytes}) %{INT:a2_response_time} \"%{GREEDYDATA:a2_referer}\" \"%{GREEDYDATA:a2_user_agent}\")|%{GREEDYDATA})'] | |
| type => "apache2" | |
| } | |
| } | |
| # Apache 2 Logformat for customlog with SSL/TLS Logging (last part "rsysloghostnames" can be changed to anything else) | |
| LogFormat "[%{%a %b %d %H:%M:%S %Y}t] [info] [client %h] Request: \"%m http(s)://%{Host}i%U%q %H\" %>s %b %D \"%{ |
NewerOlder