Luke Brewbaker Lbrewbaker
Lbrewbaker
/ insightvm_policy_export.sql
Created
July 12, 2019 23:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| select | |
| da.ip_address, | |
| da.host_name, | |
| dos.name as OS, | |
| dos.version as OS_Version, | |
| dp.title as Policy_Title, | |
| dpr.title as Rule_Name, | |
| dpr.description as Rule_Description, | |
| dprs.description as Complaince_Status | |
| from fact_asset_policy_rule as fpr |
Lbrewbaker
/ clamscan.sh
Created
May 10, 2019 00:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| LOGFILE="/var/log/clamav/clamav-$(date +'%Y-%m-%d').log"; | |
| DIRTOSCAN="/home/brewbs"; | |
| for S in ${DIRTOSCAN}; do | |
| DIRSIZE=$(du -sh "$S" 2>/dev/null | cut -f1); | |
| echo "Starting a daily scan of "$S" directory. | |
| Amount of data to be scanned is "$DIRSIZE"."; |
Lbrewbaker
/ insightvm_vulnerabilities_withproof.sql
Last active
March 11, 2022 20:01
Queries vulnerabilities by Asset and displays proof of where they exist.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| WITH remediations AS ( | |
| SELECT DISTINCT fr.solution_id AS ultimate_soln_id, summary, fix, estimate, riskscore, dshs.solution_id AS solution_id | |
| FROM fact_remediation(10,'riskscore DESC') fr | |
| JOIN dim_solution ds USING (solution_id) | |
| JOIN dim_solution_highest_supercedence dshs ON (fr.solution_id = dshs.superceding_solution_id AND ds.solution_id = dshs.superceding_solution_id) | |
| ), | |
| assets AS ( |
Lbrewbaker
/ elk.sh
Last active
April 1, 2019 15:35
Automated elastic stack install for RHEL and Debian systems
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Credit: https://gist.github.com/kydouglas | |
| # Updated for ELK Stack v6.6.2 | |
| # sudo wget -Nnv 'https://gist.github.com/Lbrewbaker/8a679ae532d58373c0979a7b08c284d6' && bash elk.sh && rm -f elk.sh | |
| # Checking whether user has enough permission to run this script | |
| sudo -n true | |
| if [ $? -ne 0 ] |