Zach Arnold zparnold

## one_liner.sh
kubectl get pods --all-namespaces | grep Evicted | awk '{print $2 " --namespace=" $1}' | xargs kubectl delete pod

## main.tf
variable "cluster-name" {
  default = "terraform-eks-demo"
  type = string
}

# This data source is included for ease of sample architecture deployment
# and can be swapped out as necessary.
data "aws_availability_zones" "available" {}

resource "aws_vpc" "demo" {

## k8srequiredprobes.yaml
apiVersion: templates.gatekeeper.sh/v1beta1
kind: ConstraintTemplate
metadata:
  name: k8sazurecontainerprobesrequired
spec:
  crd:
    spec:
      names:
        kind: K8sAzureContainerProbesRequired
      validation:

## line_counter.go
package main

import (
	"bytes"
	"fmt"
	"io"
	"log"
	"math/big"
	"os"
	"path/filepath"

## ena_setup_on_ec2.sh
#!/bin/bash
sudo apt-get update && sudo apt-get upgrade -y
#you may get an error E: Failed to fetch https://sdkrepo.atlassian.com/debian/dists/stable/contrib/binary-amd64/Packages  404  Not Found
#don't worry, you can continue without harm
sudo apt-get install -y build-essential dkms
git clone https://github.com/amzn/amzn-drivers
sudo mv amzn-drivers /usr/src/amzn-drivers-1.5.1
sudo touch /usr/src/amzn-drivers-1.5.1/dkms.conf
echo 'PACKAGE_NAME="ena"
PACKAGE_VERSION="1.5.1"

## database.yml
#chances are you use the same port and adapter everywhere
default: &default
  adapter: mysql2
  reconnect: true
  port: 3306

#we use docker compose locally, so these settings stay the same
local: &local
  <<: *default
  username: root

## hacksploit.sh
helm plugin install https://github.com/hypnoglow/helm-s3.git
helm repo add zparnold s3://zparnold-helm/charts
helm install zparnold/hacksploit

## ygrene-manager-virtual-service.yaml
apiVersion: networking.istio.io/v1alpha3
kind: VirtualService
metadata:
  name: manager-service
spec:
  hosts:
  - "ops.acceptance.ygreneworks.com"
  gateways:
  - manager-gateway
  http:

## ygrene-manager-dest-rule.yaml
apiVersion: "networking.istio.io/v1alpha3"
kind: "DestinationRule"
metadata:
  name: "manager-istio-client-mtls"
spec:
  host: ygrene-manager-service.acceptance.svc.cluster.local
  trafficPolicy:
    tls:
      mode: ISTIO_MUTUAL

## stripe-service-entry.yaml
apiVersion: networking.istio.io/v1alpha3
kind: ServiceEntry
metadata:
  name: stripe-external
spec:
  hosts:
  - "api.stripe.com"
  ports:
  - number: 443
    name: https
	variable "cluster-name" {
	default = "terraform-eks-demo"
	type = string
	}

	# This data source is included for ease of sample architecture deployment
	# and can be swapped out as necessary.
	data "aws_availability_zones" "available" {}

	resource "aws_vpc" "demo" {
	apiVersion: templates.gatekeeper.sh/v1beta1
	kind: ConstraintTemplate
	metadata:
	name: k8sazurecontainerprobesrequired
	spec:
	crd:
	spec:
	names:
	kind: K8sAzureContainerProbesRequired
	validation:
	package main

	import (
	"bytes"
	"fmt"
	"io"
	"log"
	"math/big"
	"os"
	"path/filepath"
	#!/bin/bash
	sudo apt-get update && sudo apt-get upgrade -y
	#you may get an error E: Failed to fetch https://sdkrepo.atlassian.com/debian/dists/stable/contrib/binary-amd64/Packages 404 Not Found
	#don't worry, you can continue without harm
	sudo apt-get install -y build-essential dkms
	git clone https://github.com/amzn/amzn-drivers
	sudo mv amzn-drivers /usr/src/amzn-drivers-1.5.1
	sudo touch /usr/src/amzn-drivers-1.5.1/dkms.conf
	echo 'PACKAGE_NAME="ena"
	PACKAGE_VERSION="1.5.1"
	#chances are you use the same port and adapter everywhere
	default: &default
	adapter: mysql2
	reconnect: true
	port: 3306

	#we use docker compose locally, so these settings stay the same
	local: &local
	<<: *default
	username: root
	helm plugin install https://github.com/hypnoglow/helm-s3.git
	helm repo add zparnold s3://zparnold-helm/charts
	helm install zparnold/hacksploit
	apiVersion: networking.istio.io/v1alpha3
	kind: VirtualService
	metadata:
	name: manager-service
	spec:
	hosts:
	- "ops.acceptance.ygreneworks.com"
	gateways:
	- manager-gateway
	http:
	apiVersion: "networking.istio.io/v1alpha3"
	kind: "DestinationRule"
	metadata:
	name: "manager-istio-client-mtls"
	spec:
	host: ygrene-manager-service.acceptance.svc.cluster.local
	trafficPolicy:
	tls:
	mode: ISTIO_MUTUAL
	apiVersion: networking.istio.io/v1alpha3
	kind: ServiceEntry
	metadata:
	name: stripe-external
	spec:
	hosts:
	- "api.stripe.com"
	ports:
	- number: 443
	name: https