Jeremy Rossi jrossi
jrossi
/ gist:8677240
Created
January 28, 2014 21:50
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| poop :: ossec-hids-clean/src/analysisd ‹master*› # ./ossec-logtest | |
| 2014/01/28 21:49:45 ossec-testrule: INFO: Reading local decoder file. | |
| 2014/01/28 21:49:46 ossec-testrule: INFO: Started (pid: 31034). | |
| ossec-testrule: Type one log per line. | |
| Nov 8 13:57:02 poop rsyslogd: rsyslogd's userid changed to 101 | |
| **Phase 1: Completed pre-decoding. | |
| full event: 'Nov 8 13:57:02 poop rsyslogd: rsyslogd's userid changed to 101' |
jrossi
/ gist:6481583
Created
September 8, 2013 03:25
NOt much but first variable decoder name works.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| dalek :: ossec-hids-main/src/analysisd % echo "Sep 7 23:19:59 dalek sudo: jrossi : TTY=pts/3 ; PWD=/home/jrossi/src/ossec-hids-main/src/analysisd ; USER=root ; COMMAND=/usr/bin/less /var/log/auth.log" | sudo ./ossec-logtest | |
| 2013/09/07 23:23:19 ossec-testrule: INFO: Reading local decoder file. | |
| 2013/09/07 23:23:19 ossec-testrule: INFO: Started (pid: 10105). | |
| ossec-testrule: Type one log per line. | |
| **Phase 1: Completed pre-decoding. | |
| full event: 'Sep 7 23:19:59 dalek sudo: jrossi : TTY=pts/3 ; PWD=/home/jrossi/src/ossec-hids-main/src/analysisd ; USER=root ; COMMAND=/usr/bin/less /var/log/auth.log' | |
| hostname: 'dalek' |
jrossi
/ zcurve-poc.c
Created
March 13, 2013 01:07
— forked from hintjens/zcurve-poc.c
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Proof of concept CurveCP handshake over 0MQ. | |
| // | |
| // Demonstrates a confidential, authenticated connection between | |
| // two 0MQ peers (two DEALER sockets in this example). See the | |
| // curvecp.org website for details of the security design. | |
| // | |
| // This is a flat walk-through in code with minimal abstraction. | |
| // The next version of this code will be more packaged. | |
| // | |
| // IMPORTANT NOTE: this code has not been reviewed by security experts |
jrossi
/ txredns.py
Created
February 4, 2013 04:32
— forked from fcoury/txredns.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Python/Twisted/Redis backed DNS server - resolves from NAME to IP addrs | |
| # fallback to google or any other DNS server to resolv domains not present on Redis | |
| # to set a new domain on redis, just issue a SET domain.tld ip_addr | |
| # run with twistd -ny txredns.tac | |
| # gleicon 2011 | |
| from twisted.names import dns, server, client, cache | |
| from twisted.application import service, internet | |
| from twisted.internet import defer | |
| from twisted.python import log |
jrossi
/ dns-update.clj
Created
January 31, 2013 00:46
— forked from jbarber/dns-update.clj
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ; Clojure example for updating a DNS zone using dnsjava 2.1.1: | |
| ; http://www.xbill.org/dnsjava/ | |
| ; Tested against named 9.3.6 from Red Hat on RHEL5.4 | |
| ; Run using: java -cp clojure.jar:dnsjava-2.1.1.jar clojure.main dns-update.clj | |
| (import '(org.xbill.DNS Update Name Type TSIG SimpleResolver)) | |
| (defn replaceArec [resolver zone host ip ttl] | |
| (let [update (Update. zone)] | |
| (do | |
| (. update replace |
jrossi
/ gist:4540675
Created
January 15, 2013 18:17
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [2013-01-15 18:12:12.777200] I [monitor(monitor):80:monitor] Monitor: ------------------------------------------------------------ | |
| [2013-01-15 18:12:12.777440] I [monitor(monitor):81:monitor] Monitor: starting gsyncd worker | |
| [2013-01-15 18:12:12.908483] I [gsyncd:354:main_i] <top>: syncing: gluster://localhost:gfs-02 -> ssh://georep01@sho-if-gfs-01::gfs-02 | |
| [2013-01-15 18:12:23.217516] I [master:284:crawl] GMaster: new master is dffa84a1-47b2-4bf5-bcae-b37c96f67f0a | |
| [2013-01-15 18:12:23.217943] I [master:288:crawl] GMaster: primary master with volume id dffa84a1-47b2-4bf5-bcae-b37c96f67f0a ... | |
| [2013-01-15 18:13:13.227413] I [monitor(monitor):21:set_state] Monitor: new state: OK | |
| [2013-01-15 18:13:43.70007] E [repce:188:__call__] RepceClient: call 18001:139926830573312:1358273623.06 (xtime) failed on peer with OSError | |
| [2013-01-15 18:13:43.70956] E [syncdutils:184:log_raise_exception] <top>: FAIL: | |
| Traceback (most recent call last): | |
| File "/usr/lib/glusterfs/glusterfs/python/syncdaemon/gsyncd.py", line 115, in main |
jrossi
/ XMLtoJSON.py
Created
November 30, 2012 23:57
— forked from smihica/XMLtoJSON.py
Xml to JSON parser-converter in Python.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python -S | |
| # -*- coding: utf-8 -*- | |
| import sys | |
| import re | |
| import xml.sax | |
| import io # for 2.6 | |
| import StringIO # for 3.0 | |
| # | |
| # ** If your python is 2.x and xml-cording is utf-8 set follows. |
jrossi
/ gist:1909779
Created
February 25, 2012 17:57
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import splicetee | |
| import os | |
| import socket | |
| s = 10000 | |
| pipe1 = os.pipe() | |
| #pipe2 = os.pipe() | |
| f1 = open('inf','r') | |
| f2 = open('outf','w') |
jrossi
/ txredns.py
Created
January 19, 2012 04:51
— forked from fcoury/txredns.py
Python/Twisted/Redis backed DNS server.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Python/Twisted/Redis backed DNS server - resolves from NAME to IP addrs | |
| # fallback to google or any other DNS server to resolv domains not present on Redis | |
| # to set a new domain on redis, just issue a SET domain.tld ip_addr | |
| # run with twistd -ny txredns.tac | |
| # gleicon 2011 | |
| from twisted.names import dns, server, client, cache | |
| from twisted.application import service, internet | |
| from twisted.internet import defer | |
| from twisted.python import log |
jrossi
/ gist:601734
Created
September 28, 2010 20:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def options(ctx): | |
| ctx.add_option("--with-zmq", action="store_true", default=False, | |
| dest="with_zmq", help="Compile ZeroMQ Support") | |
| def configure(ctx): | |
| ctx.check_tool("compiler_cc") | |
| ctx.check_cfg(atleast_pkgconfig_version='0.0.0') | |
| if ctx.options.with_zmq: |