Craig M craig-m-unsw

Install the virtualbox manually

sudo apt-get update  
sudo apt-get install virtualbox-6.1

Sign the modules for secureboot

sudo -i  
mkdir /root/module-signing  
cd /root/module-signing

Organization archetypes

The intention of this document is to provide some guidance and suggestions to customers who are wondering how they should structure organizations and teams in their GitHub Enterprise environment. The idea isn't to give hard and fast rules on which approach is better than the other, but to give examples of when one approach might be preferable to another depending on the use case.

1. A single organization with direct organization membership for repository access (not teams)

          ________________
          |     Org      |
          |    ______    |
          |   |      |\  |

| | Repo | \ |

Third party SAML Single Sign On (SSO) integration/implementation - Tech spec

Author: Heriberto Perez

Background

The implementation of SSO in order to connect with other services/providers/sites is a common requirement these days

For those cases when you have the need to integrate a third party service and embed some widgets in your site, and in order to make it in a secure way and based on dynamic data for the current authenticated, that is when the SSO integration comes handy for you.

Goals

This Tech spec will serve as a reference a SAML Single Sign On (SSO) integration.

Installing cloud-init on a fresh Raspbian Lite image

This is a work in Progress!

Purpose

This mainly demonstrates my goal of preparing a Raspberry Pi to be provisioned prior to its first boot. To do this I have chosen to use the same cloud-init that is the standard for provisioning servers at Amazon EC2, Microsoft Azure, OpenStack, etc.

I found this to be quite challenging because there is little information available for using cloud-init without a cloud. So, this project also servers as a demonstration for anyone on any version of Linux who may want to install from source, and/or use without a cloud. If you fall into that later group, you probably just want to read the code. It's bash so everything I do, you could also do at the command line. (Even the for loop.)

Pentesting-Exploitation

Pentesting-Exploitation Programs and Commands , Protocols Network / Ports

7 Things to know about r10k 4 in PE 2023.4

(From the PE documentation at: https://www.puppet.com/docs/pe/2023.4/upgrading_pe#upgrade_cautions-r10k-4-upgrade)

Starting in PE 2023.4, if you use Code Manager or r10k, with SSH protocol for remote Git repository access, you must set up SSH host key verification.

To manage the known_hosts file and enable host key verification for Code Manager or r10k, you must define the puppet_enterprise::profile::master::r10k_known_hosts paramet er with an array of hashes specifying "name", "type", and "key" with your hostname, key type, and public key, respectively.

This is the error message you will see if running code deploy:

Bruteforcing the 3 main security levels of a computer

Level 0 - BIOS

Docs:

Decode a Laptop BIOS Password Using a Simple Checksum Script

Most BIOS store the checksum of the password in the FlashROM chip.

`$HOME`, Not So Sweet `$HOME`

Preface
1 What is $HOME to you?
2 Setup
- 2.1 Linux
2.1.4 xdg-user-dirs

	#!/usr/bin/env python3

	'''
	set sshd fingerprints of git server for PE config.
	https://www.puppet.com/docs/pe/2023.5/code_mgr_config
	'''

	import subprocess
	import argparse
	import re

	/*
	* This is an example Linux daemon that communicates via dbus.
	* When run, it will daemonize and print to standard output two lines:
	*
	* 1. The PID of the daemon process, which can be used to kill it later with `kill -s SIGINT <pid>'
	* 2. The unique D-Bus address it will be listening to
	*/

	#include <signal.h>
	#include <stdio.h>