Skip to content

Instantly share code, notes, and snippets.

View nvibert's full-sized avatar

Nico Vibert nvibert

59 followers · 9 following
View GitHub Profile
@nvibert
nvibert / gist:a29c908c59523862a1ee93951e9b96f5
Created February 14, 2023 14:13
Tetragon Process Sock Stats
“process_sock_stats”: {
“process”: {
“exec_id”: “OjUwNzg2NjA5NTAwMDAwMDA6MjUxMDQxNQ==“,
“pid”: 2510415,
“uid”: 1000,
“cwd”: “/home/kev”,
“binary”: “/home/kev/.vscode-server/bin/97dec172d3256f8ca4bfb2143f3f76b503ca0534/node”,
“arguments”: “/home/kev/.vscode-server/bin/97dec172d3256f8ca4bfb2143f3f76b503ca0534/out/bootstrap-fork --type=extensionHost --transformURIs --useHost
Proxy=false”,
“flags”: “procFS auid”,
@nvibert
nvibert / gist:a37862aef2d68f639c87e8a490804d8e
Created February 13, 2023 16:32
File Integrity Monitoring with Tetragon - renaming file
{
"process_file": {
"process": {
"exec_id": "ZmdzLWNsaS1jaS1jb250cm9sLXBsYW5lOjcyMjY0OTQ3MDkwNDg6NDI1OTM=",
"pid": 42593,
"uid": 0,
"cwd": "/usr/sbin",
"binary": "/usr/bin/mv",
"arguments": "testfile testfile.old",
"flags": "execve clone",
@nvibert
nvibert / gist:091315913d1b8e82fc7a1fded56d1332
Created February 13, 2023 16:26
File Integrity Monitoring with Tetragon - reading file
{
"process_file": {
"process": {
"exec_id": "ZmdzLWNsaS1jaS1jb250cm9sLXBsYW5lOjcyMDUxMjQ3NTE3NzY6NDI1Mzg=",
"pid": 42538,
"uid": 0,
"cwd": "/etc",
"binary": "/usr/bin/cat",
"arguments": "passwd",
"flags": "execve clone",
@nvibert
nvibert / gist:c49282f29c1cd7e7ce2d4756a0a34440
Created September 30, 2021 15:46
Prototype of Fortinet CTS Module
resource "fortios_firewall_address" "consul_service" {
for_each = var.services
name = each.value.id
subnet = "${each.value.address} ${lookup(each.value.meta, "subnet_mask", "255.255.255.255")}"
type = "ipmask"
visibility = "enable"
}
resource "fortios_firewall_addrgrp" "ctsAddrGroup" {