Michele "O-Zone" michelep

## utility.txt
CHECK TOR CONNECTION
===
curl --socks5 localhost:9050 --socks5-hostname localhost:9050 -s https://check.torproject.org/ | cat | grep -m 1 Congratulations | xargs

INSTALL PYTHON requirements.txt dependencies
===
pip3 install -r requirements.txt

DETECT PUBLIC IP
===

## Wazuh 4.x index management
You can achieve this by setting the policy id in the /etc/filebeat/wazuh-template.json file (on the Wazuh nodes) and then reloading the template. For example, let's say that you have created your ISM policy on Elasticsearch with id wazuh-index-state-policy,

Edit the wazuh-template.json file.

Add the line "opendistro.index_state_management.policy_id": "wazuh-index-state-policy" inside the settingsobject:

"opendistro" : {
          "index_state_management" : {
            "policy_id" : "hot_warm_delete_workflow"
          }

## gist:6095f4fc1c71cce81dda67eac22bb68e
How To Install A Public Git Repository On A Debian Server.
General steps

    Install git + gitweb

    $ sudo apt-get install git-core gitweb

    Setup gitweb directories

    $ sudo mkdir /var/www/git

## fg_wificlient.py
#!/usr/bin/env python
#
######################################################
# Fortigate WiFi client monitor
# v0.0.1 - Michele "O-Zone" Pinassi
#
# This script, tested with Fortigate API 6.4.x, check if an user
# is connected on wifi network with more than CLIENT_TRIGGER clients.
# At the end, send a mail with username and device MACs connected
#

## rt-daily
#!/bin/bash
#
# This daily cron script needed for maintain clean RT database: remove old rejected and deleted tickets, remove old resolved tickets
#

DATE=`date --i`

# Delete rejected and deleted old tickets
/opt/rt4/sbin/rt-shredder --sqldump /var/rt4/backup/RT_old_${DATE}.sql --plugin 'Tickets=query,(Status="deleted" OR Status="rejected") AND LastUpdated > "730 days ago";limit,100' --force 2>&1

## header.php
In header.php theme file, add this between <head> and </head> tags:

<?php
if ( is_single() && 'post' == get_post_type() ) {
	if(has_post_thumbnail($post->ID)) {
            $img_src = wp_get_attachment_url( get_post_thumbnail_id($post->ID) );
        }
        if($excerpt = get_the_excerpt()) {
            $excerpt = strip_tags($excerpt);
            $excerpt = str_replace("", "'", $excerpt);

## gist:5bd8f709e8aa02638c3a4ffe7731a777
sudo netstat -anp TCP | grep ESTAB | grep -v "127.0.0.1" | grep -E -o "[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}" | grep -v "$192\.\|10\." | sort -u | while read ip;do curl https://api.greynoise.io/v3/community/$ip; echo; done

## alerts_json.py
#!/usr/bin/env python3
#
#
import os
import sys
from os.path import dirname, abspath
import re
import time
import requests
import urllib3

## gist:8fa4e6f629022d2874019c3de13b281a
<?php

//
// Questa procedura preleva dai routers, via SNMP, l'elenco degli indirizzi IP e relativi MAC connessi, salvandoli su una tabella MySQL:
//
// --
// -- Struttura della tabella `ipMACs`
// --
//
// CREATE TABLE IF NOT EXISTS `ipMACs` (

## fortinet_wifi_password
#!/usr/bin/env python
#
######################################################
#
# WiFi network password manager
#
# Tested with FortiGATE v6.2.6 and v6.2.2
#
# This script change password for [WIFI BSSID] and send a mail with the new password
#
	CHECK TOR CONNECTION
	===
	curl --socks5 localhost:9050 --socks5-hostname localhost:9050 -s https://check.torproject.org/ \| cat \| grep -m 1 Congratulations \| xargs

	INSTALL PYTHON requirements.txt dependencies
	===
	pip3 install -r requirements.txt

	DETECT PUBLIC IP
	===
	You can achieve this by setting the policy id in the /etc/filebeat/wazuh-template.json file (on the Wazuh nodes) and then reloading the template. For example, let's say that you have created your ISM policy on Elasticsearch with id wazuh-index-state-policy,

	Edit the wazuh-template.json file.

	Add the line "opendistro.index_state_management.policy_id": "wazuh-index-state-policy" inside the settingsobject:

	"opendistro" : {
	"index_state_management" : {
	"policy_id" : "hot_warm_delete_workflow"
	}
	How To Install A Public Git Repository On A Debian Server.
	General steps

	Install git + gitweb

	$ sudo apt-get install git-core gitweb

	Setup gitweb directories

	$ sudo mkdir /var/www/git
	#!/usr/bin/env python
	#
	######################################################
	# Fortigate WiFi client monitor
	# v0.0.1 - Michele "O-Zone" Pinassi
	#
	# This script, tested with Fortigate API 6.4.x, check if an user
	# is connected on wifi network with more than CLIENT_TRIGGER clients.
	# At the end, send a mail with username and device MACs connected
	#
	#!/bin/bash
	#
	# This daily cron script needed for maintain clean RT database: remove old rejected and deleted tickets, remove old resolved tickets
	#

	DATE=`date --i`

	# Delete rejected and deleted old tickets
	/opt/rt4/sbin/rt-shredder --sqldump /var/rt4/backup/RT_old_${DATE}.sql --plugin 'Tickets=query,(Status="deleted" OR Status="rejected") AND LastUpdated > "730 days ago";limit,100' --force 2>&1
	#!/usr/bin/env python3
	#
	#
	import os
	import sys
	from os.path import dirname, abspath
	import re
	import time
	import requests
	import urllib3
	<?php

	//
	// Questa procedura preleva dai routers, via SNMP, l'elenco degli indirizzi IP e relativi MAC connessi, salvandoli su una tabella MySQL:
	//
	// --
	// -- Struttura della tabella `ipMACs`
	// --
	//
	// CREATE TABLE IF NOT EXISTS `ipMACs` (
	#!/usr/bin/env python
	#
	######################################################
	#
	# WiFi network password manager
	#
	# Tested with FortiGATE v6.2.6 and v6.2.2
	#
	# This script change password for [WIFI BSSID] and send a mail with the new password
	#