Rahul Jadhav nyrahul

## cmds.sh
# Get all accuknox k8s jobs
kubectl get jobs -A --sort-by .status.startTime -l "kueue.x-k8s.io/queue-name=jobs-queue"

## artifact api.sh
curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
trivy image -f json -o results.json --timeout 3600s nginx:latest

curl --location 'https://cspm.demo.accuknox.com/api/v1/artifact/?tenant_id=2618&data_type=TR&save_to_s3=True&label_id=testknox' --header 'Tenant-Id: 2618' --header 'Authorization: Bearer <TOKEN>'  --form 'file=@"results.json"'

# Sonar qube scanner
sonar-scanner -Dsonar.token=<SQ-TOKEN> -Dsonar.projectKey=nimbus -Dsonar.analysis.mode=preview -Dsonar.report.export.path=sonar-report.json
curl -u <SQ-TOKEN>: 'http://35.188.10.229:9000/api/issues/search?components=nimbus' -o sonar-report.json
curl --location 'https://cspm.demo.accuknox.com/api/v1/artifact/?tenant_id=2509&data_type=SQ&save_to_s3=True&label_id=SAST' --header 'Tenant-Id: 2509' --header 'Authorization: Bearer <ARTIFACT-TOKEN>'  --form 'file=@"sonar-report.json"'

## pulsar-admin.sh
bin/pulsar-admin tenants list
bin/pulsar-admin namespaces list "accuknox"
bin/pulsar-admin topics list "accuknox/cluster"
bin/pulsar-admin topics list "accuknox/datapipeline"
bin/pulsar-admin topics stats "persistent://accuknox/datapipeline/kubearmoralerts" | less
bin/pulsar-admin topics examine-messages --initialPosition latest --messagePosition 1 "persistent://accuknox/datapipeline/kubearmoralerts"

bin/pulsar-admin topics clear-backlog -s "accuknox-data-offloader" "persistent://accuknox/datapipeline/kubearmoralerts"


## ai-security-bookmarks.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                nyrahul
                / ai-security-bookmarks.md
            
            
              Last active
              April 17, 2024 16:13
            
              
                AI Security bookmarks
              
          
    Public sources


Title
Type
Date
Comment


AI-Exploits
code

A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities


LLM-Guard
code

The Security Toolkit for LLM Interactions


NIST AI RMF Playbook
doc

NST AI RM Playbook


MITRE ATLAS
doc

Adversarial Threat Landscape for AI Systems


NIST AI 100-2e2023
doc

Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations


OWASP ML Top 10
doc

Top 10 security issues of machine learning systems


## clam.sh
#!/bin/bash

# Update scan database
sudo freshclam --datadir=$PWD/clamdb --foreground

# Run the scan on the given folder path
docker run \
    -it --rm \
    --mount type=bind,source=$PWD/env,target=/scandir \
    -v $PWD/clamdb:/clamdb \

## prevent-crypto-miners.yaml
apiVersion: security.kubearmor.com/v1
kind: KubeArmorPolicy
metadata:
  name: prevent-crypto-miners
spec:
  selector:
    matchLabels:
      app: wordpress

  action: Block

## tenant-status.py
# exec into any celery pod
# python3 manage.py shell
# Cut paste below code and execute
# kubectl exec -n accuknox-divy deployments/uwsgi -- python3 manage.py generate_report > report.csv

from django.core.management.base import BaseCommand
from django.db import connection
from django.utils import timezone
from django_tenants.utils import schema_context

## kind-cluster-issue-apparmor.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                nyrahul
                / kind-cluster-issue-apparmor.md
            
            
              Last active
              September 24, 2023 15:47
            
          
    Step 1: Create cluster

./create-cluster.sh

Step 2: Install apparmor utilities

# Install apparmor utilites in the kind cluster nodes
docker exec -it cluster01-worker bash -c "apt update && apt install apparmor-utils -y && systemctl restart containerd"
docker exec -it cluster01-control-plane bash -c "apt update && apt install apparmor-utils -y && systemctl restart containerd"


## nmap-scan.sh
nmap -Pn -sT -p 3000 localhost --script ssl-cert --script ssl-enum-ciphers --script ssl-cert -oX t.xml
yq . t.xml -o json  --xml-attribute-prefix '' > t.json

## kubetls-report.txt
| Name                                                                                  | Address              | Status     | Version | Ciphersuite                  | Hash   | Signature | Verification                                 |
| ------------------------------------------------------------------------------------- | -------------------- | ---------- | ------- | ---------------------------- | ------ | --------- | -------------------------------------------- |
| accuknox-agents/agents-operator[health-check]                                         | 172.20.183.36:9090   | PLAIN_TEXT |         |                              |        |           |                                              |
| accuknox-agents/agents-operator[spire-agent]                                          | 172.20.183.36:9091   | PLAIN_TEXT |         |                              |        |           |                                              |
| accuknox-agents/discovery-engine
	# Get all accuknox k8s jobs
	kubectl get jobs -A --sort-by .status.startTime -l "kueue.x-k8s.io/queue-name=jobs-queue"
	curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh \| sh -s -- -b /usr/local/bin
	trivy image -f json -o results.json --timeout 3600s nginx:latest

	curl --location 'https://cspm.demo.accuknox.com/api/v1/artifact/?tenant_id=2618&data_type=TR&save_to_s3=True&label_id=testknox' --header 'Tenant-Id: 2618' --header 'Authorization: Bearer <TOKEN>' --form 'file=@"results.json"'

	# Sonar qube scanner
	sonar-scanner -Dsonar.token=<SQ-TOKEN> -Dsonar.projectKey=nimbus -Dsonar.analysis.mode=preview -Dsonar.report.export.path=sonar-report.json
	curl -u <SQ-TOKEN>: 'http://35.188.10.229:9000/api/issues/search?components=nimbus' -o sonar-report.json
	curl --location 'https://cspm.demo.accuknox.com/api/v1/artifact/?tenant_id=2509&data_type=SQ&save_to_s3=True&label_id=SAST' --header 'Tenant-Id: 2509' --header 'Authorization: Bearer <ARTIFACT-TOKEN>' --form 'file=@"sonar-report.json"'
	bin/pulsar-admin tenants list
	bin/pulsar-admin namespaces list "accuknox"
	bin/pulsar-admin topics list "accuknox/cluster"
	bin/pulsar-admin topics list "accuknox/datapipeline"
	bin/pulsar-admin topics stats "persistent://accuknox/datapipeline/kubearmoralerts" \| less
	bin/pulsar-admin topics examine-messages --initialPosition latest --messagePosition 1 "persistent://accuknox/datapipeline/kubearmoralerts"

	bin/pulsar-admin topics clear-backlog -s "accuknox-data-offloader" "persistent://accuknox/datapipeline/kubearmoralerts"
Title	Type	Comment
AI-Exploits	code	A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
LLM-Guard	code	The Security Toolkit for LLM Interactions
NIST AI RMF Playbook	doc	NST AI RM Playbook
MITRE ATLAS	doc	Adversarial Threat Landscape for AI Systems
NIST AI 100-2e2023	doc	Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations
OWASP ML Top 10	doc	Top 10 security issues of machine learning systems
	#!/bin/bash

	# Update scan database
	sudo freshclam --datadir=$PWD/clamdb --foreground

	# Run the scan on the given folder path
	docker run \
	-it --rm \
	--mount type=bind,source=$PWD/env,target=/scandir \
	-v $PWD/clamdb:/clamdb \
	apiVersion: security.kubearmor.com/v1
	kind: KubeArmorPolicy
	metadata:
	name: prevent-crypto-miners
	spec:
	selector:
	matchLabels:
	app: wordpress

	action: Block
	# exec into any celery pod
	# python3 manage.py shell
	# Cut paste below code and execute
	# kubectl exec -n accuknox-divy deployments/uwsgi -- python3 manage.py generate_report > report.csv

	from django.core.management.base import BaseCommand
	from django.db import connection
	from django.utils import timezone
	from django_tenants.utils import schema_context
	nmap -Pn -sT -p 3000 localhost --script ssl-cert --script ssl-enum-ciphers --script ssl-cert -oX t.xml
	yq . t.xml -o json --xml-attribute-prefix '' > t.json
	\| Name \| Address \| Status \| Version \| Ciphersuite \| Hash \| Signature \| Verification \|
	\| ------------------------------------------------------------------------------------- \| -------------------- \| ---------- \| ------- \| ---------------------------- \| ------ \| --------- \| -------------------------------------------- \|
	\| accuknox-agents/agents-operator[health-check] \| 172.20.183.36:9090 \| PLAIN_TEXT \| \| \| \| \| \|
	\| accuknox-agents/agents-operator[spire-agent] \| 172.20.183.36:9091 \| PLAIN_TEXT \| \| \| \| \| \|
	\| accuknox-agents/discovery-engine