| #!/usr/bin/ruby | |
| require 'net/https' | |
| require 'json' | |
| require 'yaml' | |
| slack_cfg = YAML.load_file("/root/.slackrc.yml") | |
| #uri = URI.parse("https://#{slack_cfg['team']}.slack.com/services/hooks/incoming-webhook?token=#{slack_cfg['token']}") | |
| uri = URI.parse(slack_cfg['hook_url']) |
| # Simulate fake processes of analysis sandbox/VM that some malware will try to evade | |
| # This just spawn ping.exe with different names (wireshark.exe, vboxtray.exe, ...) | |
| # It's just a PoC and it's ugly as f*ck but hey, if it works... | |
| # Usage: .\fake_sandbox.ps1 -action {start,stop} | |
| param([Parameter(Mandatory=$true)][string]$action) | |
| $fakeProcesses = @("wireshark.exe", "vmacthlp.exe", "VBoxService.exe", | |
| "VBoxTray.exe", "procmon.exe", "ollydbg.exe", "vmware-tray.exe", |
I'm be using DreamCompute as my OpenStack provider, but there are dozens to choose from. I assume you already have Ansible and the OpenStack CLI tools installed.
With the proliferation of OpenStack public clouds offering free and intro tiers, it's becoming very easy to effectively run a simple application for free or nearly free. Also with the emergence of Ansible, you don't need to learn and deploy complicated tools to do configuration management.
| package main | |
| import ( | |
| "code.google.com/p/go-tour/wc" | |
| "strings" | |
| ) | |
| func WordCount(s string) map[string]int { | |
| m := make(map[string]int) | |
| a := strings.Fields(s) |
| # Monitoring on interface eth0 | |
| tcpdump -i eth0 -n port 67 and port 68 |
