| ip | tag_name | |
|---|---|---|
| 162.155.56.106 | Apache Log4j RCE Attempt | |
| 223.111.180.119 | Apache Log4j RCE Attempt | |
| 213.142.150.93 | Apache Log4j RCE Attempt | |
| 211.154.194.21 | Apache Log4j RCE Attempt | |
| 210.6.176.90 | Apache Log4j RCE Attempt | |
| 199.244.51.112 | Apache Log4j RCE Attempt | |
| 199.101.171.39 | Apache Log4j RCE Attempt | |
| 197.246.175.186 | Apache Log4j RCE Attempt | |
| 196.196.150.38 | Apache Log4j RCE Attempt |
You can use these commands and rules to search for exploitation attempts against log4j RCE vulnerability CVE-2021-44228
This command searches for exploitation attempts in uncompressed files in folder /var/log and all sub folders
sudo egrep -I -i -r '\$(\{|%7B)jndi:(ldap[s]?|rmi|dns|nis|iiop|corba|nds|http):/[^\n]+' /var/log
| #!/bin/sh | |
| # rscript: Rust script interpreter | |
| # Shebang in rust.rscript: #!/usr/bin/env -S rscript 2018 | |
| # Directory where compiled binaries are saved to. | |
| # Example: /var/tmp/rscript or /tmp | |
| output_dir=/var/tmp/rscript | |
| # -C panic=abort | |
| # abort, unwind |
This is a cheat sheet for how to perform various actions to ZSH, which can be tricky to find on the web as the syntax is not intuitive and it is generally not very well-documented.
| Description | Syntax |
|---|---|
| Get the length of a string | ${#VARNAME} |
| Get a single character | ${VARNAME[index]} |
| #!/usr/bin/env bash | |
| self=$(basename $0) | |
| [ "$1" = "help" ] && [ ! -f "$1" ] \ | |
| && echo -e "scr_to_gif: v1.0" \ | |
| && echo -e "usage: ${self} <filename.mov> <scale> <speed>\n" \ | |
| && echo -e "scale: - Range 100-9999" \ | |
| && echo -e " - A single number to denote the desired width, the height will be automatic. E.g: 300, 500, 640, 800, 1024, 1280, 1600" \ | |
| && echo -e " - Also both dimensions with numbers within range. Separated by a colon. Example: 100:100, 512,512, 800:600" \ |
First I thank Nvidia for sponsoring the video card.
Secure Boot isn't exactly easy to configure to work with Linux and disabling it isn't really a good idea. Many modern Linux distributions provide the Microsoft-signed shim EFI binary to interpose between Secure Boot and the grub2 bootloader, making booting Linux easy enough if you only ever use kernels and drivers from the official repos. Still, enabling Secure Boot prevents the loading of kernel or modules without a proper digital signature. For example, the propriatary Nvidia GPU driver won't work, unless your distro really went to great lengths to distribute a signed version of the kernel module.
To make Secure Boot play nicely with the driver (i.e. to work at all), we can generate and import a Machine Owner Key (MOK)
| # Set the control character to Ctrl+Spacebar (instead of Ctrl+B) | |
| set -g prefix C-space | |
| unbind-key C-b | |
| bind-key C-space send-prefix | |
| # Set new panes to open in current directory | |
| bind c new-window -c "#{pane_current_path}" | |
| bind '"' split-window -c "#{pane_current_path}" | |
| bind % split-window -h -c "#{pane_current_path}" |
For KVM and Laptop
I want full control what boots the computer to avoid the so called evil maid attack. That requires setting SecureBoot with only my own keys.
This guide uses the domain your-domain.tld and its www. prefixed version.
It starts the rocket application on 127.0.0.1:1337 and as the user www-data. The proxy listens on port 80 and 443 though.
If you need other values, update them accordingly in your nginx and systemd configs.
| using System; | |
| namespace PiDay | |
| { | |
| // The probability of two random numbers to be coprime is P = 6 / Pi^2 | |
| // So let's generate a bunch of random numbers. Figure out how often they're coprime. | |
| // Use that percentage as our probabilty and solve for Pi. | |
| // Pi = sqrt(6 / P) | |
| // For more info, watch the video where I stole the idea: https://youtu.be/RZBhSi_PwHU |
