Skip to content

Instantly share code, notes, and snippets.

View msenturk's full-sized avatar

msenturk msenturk

49 followers · 188 following
View GitHub Profile
@msenturk
msenturk / create.html
Last active October 9, 2023 13:49
<!DOCTYPE html>
<html>
<head>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js"></script>
<script type="text/javascript" src="https://www.gstatic.com/charts/loader.js"></script>
</head>
<body>
<div id="chart" style="width:auto; height:300px;"></div>
</body>
@msenturk
msenturk / openssl.cnf
Last active September 19, 2023 10:06 — forked from bitoiu/self-signed-wildcard-cert-for-ghes.md
Self-Signed Wildcard certificate with SAN using openssl / SSL
#
# OpenSSL example configuration file.
# This is mostly being used for generation of certificate requests.
#
# Note that you can include other files from the main configuration
# file using the .include directive.
#.include filename
# This definition stops the following lines choking if HOME isn't
@msenturk
msenturk / openconnect.md
Created April 19, 2023 10:13 — forked from moklett/openconnect.md
OpenConnect VPN on Mac OS X

Unfortunately, the Cisco AnyConnect client for Mac conflicts with Pow. And by "conflicts", I mean it causes a grey-screen-of-death kernel panic anytime you connect to the VPN and Pow is installed.

As an alternative, there is OpenConnect, a command-line client for Cisco's AnyConnect SSL VPN.

Here's how to get it set up on Mac OS X:

  1. OpenConnect can be installed via homebrew:

     brew update

brew install openconnect

@msenturk
msenturk / windows_hardening.cmd
Created March 21, 2023 20:14 — forked from mackwage/windows_hardening.cmd
Script to perform some hardening of Windows OS
:: Windows 10 Hardening Script
:: This is based mostly on my own personal research and testing. My objective is to secure/harden Windows 10 as much as possible while not impacting usability at all. (Think being able to run on this computer's of family members so secure them but not increase the chances of them having to call you to troubleshoot something related to it later on). References for virtually all settings can be found at the bottom. Just before the references section, you will always find several security settings commented out as they could lead to compatibility issues in common consumer setups but they're worth considering.
:: Obligatory 'views are my own'. :)
:: Thank you @jaredhaight for the Win Firewall config recommendations!
:: Thank you @ricardojba for the DLL Safe Order Search reg key!
:: Thank you @jessicaknotts for the help on testing Exploit Guard configs and checking privacy settings!
:: Best script I've found for Debloating Windows 10: https://github.com/Sycnex/Windows10Debloater
:
@msenturk
msenturk / wireguard_layer2.md
Created March 6, 2023 19:47 — forked from zOrg1331/wireguard_layer2.md
wireguard, wireguard layer 2, wireguard over TCP

Intro

This note describes how to connect two networks/devices/VMs over public network using Wireguard with Layer 2 support (ARP, IPv6 link-local, etc).

This can also be achieved using SSH and its "tap" tunnel, however, it does not provide the same level of latency and bandwidth as full-blown VPN such as Wireguard.

In addition, this note describes how to tunnel Wireguard over TCP connection. This may be of use if you encounter firewall in-between so, for instance, you can use TCP port 443 only.

Objective

@msenturk
msenturk / unbound.conf
Created March 4, 2023 12:41 — forked from MatthewVance/unbound.conf
Config for running Unbound as a caching DNS forwarder (performance settings optimized for Raspberry Pi 2).
server:
###########################################################################
# BASIC SETTINGS
###########################################################################
# Time to live maximum for RRsets and messages in the cache. If the maximum
# kicks in, responses to clients still get decrementing TTLs based on the
# original (larger) values. When the internal TTL expires, the cache item
# has expired. Can be set lower to force the resolver to query for data
# often, and not trust (very large) TTL values.
cache-max-ttl: 86400
@msenturk
msenturk / Wireguard + VXLAN.md
Last active April 18, 2022 19:06 — forked from pamolloy/README.md
Mesh network using VXLAN over Wireguard
@msenturk
msenturk / hhh.html
Created February 9, 2022 08:04
hhh.htm
<html style="font-size: 16px;" class="u-responsive-lg"><head>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta charset="utf-8">
<meta name="keywords" content="">
<meta name="description" content="">
<meta name="page_type" content="np-template-header-footer-from-plugin">
<title>Homeee</title>
<link rel="stylesheet" href="nicepage.css" media="screen">
<link rel="stylesheet" href="Homeee.css" media="screen">
<script class="u-script" type="text/javascript" src="jquery.js" defer=""></script>
@msenturk
msenturk / License BIG-IP VE.md
Created August 10, 2021 12:47
License BIG-IP VE

License BIG-IP VE

You must enter license information before you can use BIG-IP VE.

  1. Open a web browser and log in to the BIG-IP Configuration utility by using https with the external IP address and port 8443, for example: https://<external-ip-address>:8443.

    The username is admin and the password is the one you set previously.

  2. On the Setup Utility Welcome page, click Next.

@msenturk
msenturk / ucarp + udp loadbalancer XDP sbulb
Created April 13, 2021 17:23
ucarp + udp loadbalancer XDP sbulb
VIP 192.168.10.100
192.168.10.101 192.168.10.102
Ucarp + sbulb Ucarp + sbulb
Syslog Syslog