Michal Purzynski mpurzynski
mpurzynski
/ rc.local.pcap.sh
Created
August 10, 2016 10:01
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| rmmod kvm-intel | |
| rmmod kvm | |
| rmmod microcode | |
| rmmod lp | |
| rmmod parport | |
| rmmod 8021q | |
| rmmod mrp | |
| rmmod garp |
mpurzynski
/ interfaces.j2
Last active
August 26, 2016 13:46
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| auto lo | |
| iface lo inet loopback | |
| auto em1 | |
| iface em1 inet manual | |
| bond-master bond0 | |
| bond-primary em1 | |
| auto em2 | |
| iface em2 inet manual |
mpurzynski
/ gist:be8239a308769364f07045b0cea49076
Created
October 6, 2016 13:06
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| michal@fw1:~$ cat /proc/cpuinfo | |
| processor : 0 | |
| vendor_id : GenuineIntel | |
| cpu family : 6 | |
| model : 55 | |
| model name : Intel(R) Celeron(R) CPU J1900 @ 1.99GHz | |
| stepping : 8 | |
| microcode : 0x811 | |
| cpu MHz : 1332.904 | |
| cache size : 1024 KB |
mpurzynski
/ gist:e1591a2c5d80d3b2d73e85d7162b9ed2
Created
October 6, 2016 18:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| nsm16 ➜ ~/i40e-1.5.23/scripts perf stat -e LLC-loads,LLC-load-misses,LLC-stores,LLC-prefetches -C 1 sleep 60 | |
| Performance counter stats for 'CPU(s) 1': | |
| 659135009 LLC-loads (66.67%) | |
| 1372230 LLC-load-misses # 0.21% of all LL-cache hits (66.67%) | |
| 124004599 LLC-stores (66.67%) | |
| <not supported> LLC-prefetches | |
| 60.001419120 seconds time elapsed |
mpurzynski
/ vimrc
Created
October 18, 2016 08:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set encoding=utf8 | |
| syntax enable | |
| colorscheme darkblue | |
| set ruler | |
| set expandtab | |
| set shiftwidth=4 | |
| set tabstop=4 | |
| set nobackup | |
| set directory=~/tmp | |
| "colorscheme elflord |
mpurzynski
/ example2.py
Last active
March 21, 2017 00:01
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def onMessage(self, message): | |
| # here is where you do something with the incoming alert message | |
| if 'summary' in message.keys() : | |
| headers = { | |
| 'Content-type': 'application/json', | |
| } | |
| payload = json.dumps({ | |
| "service_key": "{0}".format(self.options.serviceKey), | |
| "incident_key": "Possible Intrusion", | |
| "event_type": "trigger", |
mpurzynski
/ check_auditd.sh
Created
April 21, 2017 23:16
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #Sample $STATUS output: | |
| #enabled 1 | |
| #failure 1 | |
| #pid 1604 | |
| #rate_limit 1000 | |
| #backlog_limit 32768 | |
| #lost 11652 | |
| #backlog 0 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Sample $STATUS output on Ubuntu 14: | |
| # AUDIT_STATUS: enabled=1 flag=1 pid=7187 rate_limit=1000 backlog_limit=32768 lost=1430139 backlog=7 | |
| # Sample $STATUS output on Ubuntu 16: | |
| # enabled 1 | |
| # failure 1 | |
| # pid 1604 | |
| # rate_limit 1000 | |
| # backlog_limit 32768 |
mpurzynski
/ arista.bro
Created
April 26, 2017 21:17
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| interface Port-Channel20 | |
| description Bro production | |
| ip access-group to_bro_production out | |
| ipv6 access-group to_bro_production6 out | |
| l2 mtu 9000 | |
| switchport mode tool | |
| switchport tool group set to_bro_alert to_bro_alert_log to_bro_alert_log_ipv6 | |
| ipv6 access-list to_bro_production6 | |
| 100 deny udp any any eq syslog |
mpurzynski
/ nothing.json
Created
July 27, 2017 21:04
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {"ts":1501189464.919048,"uid":"CGdqnu17z2FmEpyzh8","id.orig_h":"10.26.78.30","id.orig_p":55027,"id.resp_h":"10.8.74.77","id.resp_p":3128,"version":"TLSv12","cipher":"TLS_RSA_WITH_AES_256_CBC_SHA","server_name":"publicrelay.mig.mozilla.org","resumed":false,"last_alert":"certificate_expired","established":false,"cert_chain_fuids":["FM5AJj13DRXeUPgh81","Fia1ES1rVOVzijK75c"],"client_cert_chain_fuids":["F9x5H410tb6hoLbcPj"]} |