Majes vpnwall-services

## wp-rest-api-example.py
#!/usr/bin/python3

# This Python script will
#
# - Log into a WordPress installation using supplied credentials.
# - Get a single published post using the REST call /wp/v2/posts
# - Get a valid nonce from '/wp-admin/post.php?post=xxx&action=edit'
# - Use cookie+nonce to retrieve on post in draft status via REST.
#
# Getting that valid nonce must be performed prior to each WP REST call

## explain.md

      
              1 file
            
          
              5 forks
            
          
              5 comments
            
          
              38 stars
            
          
                aw
                / explain.md
            
            
              Last active
              July 29, 2024 12:02
            
              
                [SOLVED] Proxmox VE and cloud-init snippets etc
              
          
    Proxmox VE 6.x release includes a feature to add custom cloud-init configs. Unfortunately there is poor documentation, so I had to figure this out by adding pieces of information together.
The custom cloud-init files (user-data, meta-data, network-config)

The cloud-init files need to be stored in a snippet. This is not very well documented:

Go to Storage View -> Storage -> Add -> Directory
Give it an ID such as snippets, and specify any path on your host such as /snippets
Under Content choose Snippets and de-select Disk image (optional)
Upload (scp/rsync/whatever) your user-data, meta-data, network-config files to your proxmox server in /snippets/snippets/ (the directory should be there if you followed steps 1-3)


## Create_Laravel_Pipeline.txt
PUT _ingest/pipeline/laravel
{
    "description": "Parses Laravel log files.",
    "processors": [
        {
          "rename": {
            "field": "message",
            "target_field": "event.original"
          }
        },

## filter.logstash
if [event][module] == "apache" {
	if [fileset][name] == "access" {
		grok {
			match => { "message" => [
				"%{IPORHOST:[source][address]} - %{DATA:[user][name]} \[%{HTTPDATE:[apache][access][time]}\] \"(?:%{WORD:[http][request][method]} %{DATA:[url][original]} HTTP/%{NUMBER:[http][version]:float}|-)?\" %{NUMBER:[http][response][status_code]:int} (?:%{NUMBER:[http][response][body][bytes]:int}|-)( \"%{DATA:[http][request][referrer]}\")?( \"%{DATA:[user_agent][original]}\")?",
				"%{IPORHOST:[source][address]} - %{DATA:[user][name]} \[%{HTTPDATE:[apache][access][time]}\] \"-\" %{NUMBER:[http][response][status_code]:int} -",
				"\[%{HTTPDATE:[apache][access][time]}\] %{IPORHOST:[source][address]} %{DATA:[apache][access][ssl][protocol]} %{DATA:[apache][access][ssl][cipher]} \"%{WORD:[http][request][method]} %{DATA:[url][original]} HTTP/%{NUMBER:[http][version]:float}\" %{NUMBER:[http][response][body][bytes]:int}"]
			}
			remove_field => [ "message" ]
			add_field => { "[event][created]" => "%{@timestamp}" }

## I3WM | BSPWM - Cursor theme.md

      
              1 file
            
          
              1 fork
            
          
              7 comments
            
          
              31 stars
            
          
                abairo
                / I3WM | BSPWM - Cursor theme.md
            
            
              Last active
              July 26, 2024 14:29
            
          
    Start by getting the correct theme name to use in the next steps:

cat .icons/Breeze-Hacked/index.theme
[Icon Theme]
Name=Breeze-Hacked
So you need


## blog20190524-01.sh
$ haproxy -vv | grep Lua
Built with Lua version : Lua 5.3.5

## nginx-client-certificate-authentication.md

      
              1 file
            
          
              1 fork
            
          
              0 comments
            
          
              4 stars
            
          
                ronau
                / nginx-client-certificate-authentication.md
            
            
              Last active
              September 2, 2024 01:19
            
              
                A simple nginx configuration for a demo of client certificate authentication
              
          
    Client certificate authentication with nginx

Below is a simple nginx configuration file enabling client certificate authentication, i.e. the user/client has to present a certificate in order to get access.
It is the result of a small proof of concept solution for the following task:

A certain web server directory should be used as file storage
Transport security (i.e. TLS)


## maps.txt
# Cyber attack maps:
####################

Akamai              https://www.akamai.com/us/en/solutions/intelligent-platform/visualizing-akamai/real-time-web-monitor.jsp
Arbor Networks      https://www.digitalattackmap.com
Bitdefender         https://threatmap.bitdefender.com
BlueLiv             https://community.blueliv.com/map
Cisco Talos         https://www.talosintelligence.com
Checkpoint          https://threatmap.checkpoint.com
Deutsche Telekom    https://sicherheitstacho.eu/start/main

## create_cert.yml
---
- hosts: localhost
  vars:
  - dnsname: your.dns.name
  - tmppath: "./tmp/"
  - crtpath: "{{ tmppath }}{{ dnsname }}.crt"
  - pempath: "{{ tmppath }}{{ dnsname }}.pem"
  - csrpath: "{{ tmppath }}{{ dnsname }}.csr"
  - pfxpath: "{{ tmppath }}{{ dnsname }}.pfx"
  - private_key_password: "password"

## GLUSTER_SETUP.sh
#
# Instructions for quick gluster server (1 node) setup with a volume on LVM.
# No replication, just using localhost.
#
# See https://docs.gluster.org/en/latest/Administrator%20Guide/Brick%20Naming%20Conventions/
#

# Install GlusterFS
add-apt-repository ppa:gluster/glusterfs-4.0
apt-get install glusterfs-server
	#!/usr/bin/python3

	# This Python script will
	#
	# - Log into a WordPress installation using supplied credentials.
	# - Get a single published post using the REST call /wp/v2/posts
	# - Get a valid nonce from '/wp-admin/post.php?post=xxx&action=edit'
	# - Use cookie+nonce to retrieve on post in draft status via REST.
	#
	# Getting that valid nonce must be performed prior to each WP REST call
	PUT _ingest/pipeline/laravel
	{
	"description": "Parses Laravel log files.",
	"processors": [
	{
	"rename": {
	"field": "message",
	"target_field": "event.original"
	}
	},
	if [event][module] == "apache" {
	if [fileset][name] == "access" {
	grok {
	match => { "message" => [
	"%{IPORHOST:[source][address]} - %{DATA:[user][name]} \[%{HTTPDATE:[apache][access][time]}\] \"(?:%{WORD:[http][request][method]} %{DATA:[url][original]} HTTP/%{NUMBER:[http][version]:float}\|-)?\" %{NUMBER:[http][response][status_code]:int} (?:%{NUMBER:[http][response][body][bytes]:int}\|-)( \"%{DATA:[http][request][referrer]}\")?( \"%{DATA:[user_agent][original]}\")?",
	"%{IPORHOST:[source][address]} - %{DATA:[user][name]} \[%{HTTPDATE:[apache][access][time]}\] \"-\" %{NUMBER:[http][response][status_code]:int} -",
	"\[%{HTTPDATE:[apache][access][time]}\] %{IPORHOST:[source][address]} %{DATA:[apache][access][ssl][protocol]} %{DATA:[apache][access][ssl][cipher]} \"%{WORD:[http][request][method]} %{DATA:[url][original]} HTTP/%{NUMBER:[http][version]:float}\" %{NUMBER:[http][response][body][bytes]:int}"]
	}
	remove_field => [ "message" ]
	add_field => { "[event][created]" => "%{@timestamp}" }
	# Cyber attack maps:
	####################

	Akamai https://www.akamai.com/us/en/solutions/intelligent-platform/visualizing-akamai/real-time-web-monitor.jsp
	Arbor Networks https://www.digitalattackmap.com
	Bitdefender https://threatmap.bitdefender.com
	BlueLiv https://community.blueliv.com/map
	Cisco Talos https://www.talosintelligence.com
	Checkpoint https://threatmap.checkpoint.com
	Deutsche Telekom https://sicherheitstacho.eu/start/main
	---
	- hosts: localhost
	vars:
	- dnsname: your.dns.name
	- tmppath: "./tmp/"
	- crtpath: "{{ tmppath }}{{ dnsname }}.crt"
	- pempath: "{{ tmppath }}{{ dnsname }}.pem"
	- csrpath: "{{ tmppath }}{{ dnsname }}.csr"
	- pfxpath: "{{ tmppath }}{{ dnsname }}.pfx"
	- private_key_password: "password"
	#
	# Instructions for quick gluster server (1 node) setup with a volume on LVM.
	# No replication, just using localhost.
	#
	# See https://docs.gluster.org/en/latest/Administrator%20Guide/Brick%20Naming%20Conventions/
	#

	# Install GlusterFS
	add-apt-repository ppa:gluster/glusterfs-4.0
	apt-get install glusterfs-server