Thomas Strömberg tstromberg
🚀
tstromberg
/ gist:e69d7b75170adea5a395e34986b9ae36
Created
July 5, 2023 13:22
Browse Securely for Chrome™ is Spyware
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Here is what Browse Securely transmits in regards to visiting a Spotify pairing page: | |
| { | |
| "uid": "36ebc658-c7bd-4230-8886-0f7cffce6b76", | |
| "utm_source": null, | |
| "mid": null, | |
| "prid": "8d5294c3-0bac-4959-a25b-c50df4726965", | |
| "id": "86a0a954-b827-40c5-9202-00689694c47c", | |
| "ext_num": 109, | |
| "runtime_id": "eldjnmdpkecnjjkmmgndpcibgkfpodfh", |
tstromberg
/ gist:73432c4fd225e6bfb73678ccaeed5eb5
Created
July 5, 2023 12:46
https://ext.securybrowsenow.com/api/back/notf POST payload
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 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 |
tstromberg
/ gist:a1bce93b52da6630e2dd84e8f7049e83
Created
March 22, 2023 01:35
example aws NixOS config
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { modulesPath, pkgs, lib, ... }: { | |
| imports = [ "${modulesPath}/virtualisation/amazon-image.nix" ]; | |
| ec2.hvm = true; | |
| ec2.efi = true; | |
| system.autoUpgrade = { | |
| enable = true; | |
| allowReboot = true; | |
| }; |
tstromberg
/ gist:ad1d70428b09b54c49d88859a69e80bd
Created
October 13, 2022 12:22
waldo pack that Kolide can't import
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "queries": { | |
| "waldo": { | |
| "query": "SELECT * FROM chrome_extensions WHERE name IN (\"Where's waldo?\", \"Google Docs Offline\");", | |
| "interval": "3600" | |
| } | |
| } | |
| } |
tstromberg
/ ssh-notty.sql
Created
October 10, 2022 21:58
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- Find ssh sessions that are hiding from 'w'/'who' | |
| SELECT * FROM ( | |
| SELECT p.pid,p.name,p.cmdline,GROUP_CONCAT(DISTINCT pof.path) AS open_files | |
| FROM processes p | |
| LEFT JOIN process_open_files pof ON p.pid = pof.pid | |
| WHERE p.name = "sshd" | |
| GROUP BY p.pid | |
| ) | |
| WHERE cmdline LIKE "%@notty%" | |
| OR |
tstromberg
/ gist:498bbe1bc8df756b3d75dc0ba30f8f2a
Created
January 28, 2021 20:59
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # | |
| # Sonic & he.net tunnel configuration script, appropriate for usage in | |
| # dhcp-exit-hooks. Tested on FreeBSD 12.2-STABLE | |
| set -x -u -e | |
| if [ "$1" = "he" ]; then | |
| server_v4="72.52.104.74" | |
| server_v6="2001:470:803d::1" |
tstromberg
/ kicbase with v1.17.4 crio
Created
July 31, 2020 00:19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ARG COMMIT_SHA | |
| # using base image created by kind https://github.com/kubernetes-sigs/kind/blob/master/images/base/Dockerfile | |
| # which is an ubuntu 19.10 with an entry-point that helps running systemd | |
| # could be changed to any debian that can run systemd | |
| FROM kindest/base:v20200317-92225082 as base | |
| USER root | |
| # specify version of everything explicitly using 'apt-cache policy' | |
| RUN apt-get update && apt-get install -y --no-install-recommends \ | |
| lz4=1.9.1-1 \ | |
| gnupg=2.2.12-1ubuntu3 \ |
tstromberg
/ gist:732b03f9a7f34002713df09291b78b75
Created
July 30, 2020 18:12
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ARG COMMIT_SHA | |
| # using base image created by kind https://github.com/kubernetes-sigs/kind/blob/master/images/base/Dockerfile | |
| # which is an ubuntu 19.10 with an entry-point that helps running systemd | |
| # could be changed to any debian that can run systemd | |
| FROM kindest/base:v20200317-92225082 as base | |
| USER root | |
| # specify version of everything explicitly using 'apt-cache policy' | |
| RUN apt-get update && apt-get install -y --no-install-recommends \ | |
| lz4=1.9.1-1 \ | |
| gnupg=2.2.12-1ubuntu3 \ |
tstromberg
/ gist:5d004f350384771282d5a9b607fc1c9b
Created
July 30, 2020 17:29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ARG COMMIT_SHA | |
| # using base image created by kind https://github.com/kubernetes-sigs/kind/blob/master/images/base/Dockerfile | |
| # which is an ubuntu 19.10 with an entry-point that helps running systemd | |
| # could be changed to any debian that can run systemd | |
| FROM kindest/base:v20200317-92225082 as base | |
| USER root | |
| # specify version of everything explicitly using 'apt-cache policy' | |
| RUN apt-get update && apt-get install -y --no-install-recommends \ | |
| lz4=1.9.1-1 \ | |
| gnupg=2.2.12-1ubuntu3 \ |
tstromberg
/ gist:d7692e9abd38a03433bf8ef307318da3
Created
July 30, 2020 17:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # install cri-o based on https://github.com/cri-o/cri-o/commit/96b0c34b31a9fc181e46d7d8e34fb8ee6c4dc4e1#diff-04c6e90faac2675aa89e2176d2eec7d8R128 | |
| RUN sh -c "echo 'deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/1.17:/1.17.3/xUbuntu_19.10/ /' > /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list" && \ | |
| curl -LO https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable/xUbuntu_19.10/Release.key && \ | |
| apt-key add - < Release.key && apt-get update && \ | |
| apt-get install -y --no-install-recommends cri-o=1.17.3~3 |
NewerOlder