This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using FluentAssertions; | |
| using Xunit; | |
| // To run this example you need to reference nuget packages: Xunit and FluentAssertions. | |
| namespace EqualitySample | |
| { | |
| public class EqualityTestShould | |
| { | |
| [Fact] |
pjbgf
/ HijackingAppSettingsAndConnectionStrings.cs
Last active
October 22, 2017 00:19
Dependencies being evil: 1 - Hijacking appsettings and connectionstrings.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Configuration; | |
| using System.Net.Http; | |
| using System.Text; | |
| using System.Threading.Tasks; | |
| using System.Web; | |
| using SecurityTrap.DoNotUse; | |
| [assembly: PreApplicationStartMethod(typeof(EvilCode), "RogueAction")] |
pjbgf
/ ConcealedHijackingAppSettingsAndConnectionStrings.cs
Last active
October 22, 2017 00:19
Dependencies being evil: 2 - Concealed hijacking appsettings and connectionstrings.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Configuration; | |
| using System.Text; | |
| using System.Web; | |
| using SecurityTrap.DoNotUse; | |
| [assembly: PreApplicationStartMethod(typeof(EvilCode2), "RogueAction")] | |
| namespace SecurityTrap.DoNotUse | |
| { |
pjbgf
/ WebApi_ByPassAuthorisation.cs
Created
November 10, 2017 16:15
Bypassing authorisation on Web APIs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [assembly: PreApplicationStartMethod(typeof(ZombieActivator), "Run")] | |
| public static class ZombieActivator | |
| { | |
| public static void Run() | |
| { | |
| try | |
| { | |
| if (IsThisLikelyToBeProductionEnvironment()) | |
| System.Web.HttpApplication.RegisterModule(typeof(ZombieModule)); | |
| } |
pjbgf
/ aks-cluster-provisioning.yml
Created
January 16, 2018 14:11
Circle CI config for AKS Cluster Provisioning
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: 2 | |
| jobs: | |
| provision_cluster: | |
| docker: | |
| - image: azuresdk/azure-cli-python | |
| environment: | |
| RESOURCE_GROUP: aks-poc-euw-rg | |
| CLUSTER_LOCATION: westeurope | |
| CONTAINER_REPOSITORY: akspoc |
pjbgf
/ kubernetes-dotnetcore-deployment.yml
Created
January 16, 2018 14:16
Circle CI Kubernetes Container Deployment
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: 2 | |
| jobs: | |
| build_test_publish_image: | |
| docker: | |
| - image: paulinhu/netcore-docker-build:beta | |
| environment: | |
| ACR_NAME: akspoc | |
| DOCKER_REGISTRY_URI: akspoc.azurecr.io | |
| DOCKER_IMAGE_NAME_WITH_REGISTRY: akspoc.azurecr.io/template/sample-app-img |
pjbgf
/ k8s-security-challenge1-setup.sh
Last active
December 28, 2019 05:13
Kubernetes Security Challenge 1.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Login with your Azure subscription | |
| az login | |
| # Register providers required within the subscription | |
| az provider register -n Microsoft.ContainerService | |
| az provider register -n Microsoft.Network | |
| az provider register -n Microsoft.Compute | |
| # Create resource group to place AKS cluster. | |
| az group create --name k8s-security-challenge-rg --location centralus |
pjbgf
/ disable-automount-service-account-default.yaml
Created
March 8, 2018 22:01
Disable the auto-mount for the default Service Account
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: default | |
| automountServiceAccountToken: false |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "compute": | |
| { | |
| "location": "westeurope", | |
| "name": "aks-nodepool1-XXXXXXXXXX-1", | |
| "offer": "UbuntuServer", | |
| "osType": "Linux", | |
| "placementGroupId": "", | |
| "platformFaultDomain": "0", | |
| "platformUpdateDomain": "2", |
OlderNewer