Probably one of the easiest things you'll ever do with gpg
Install Keybase: https://keybase.io/download and Ensure the keybase cli is in your PATH
First get the public key
keybase pgp export | gpg --import
Next get the private key
Org Contrib orgcontrib
MrAnde7son
/ Invoke-WMIRestrictions
Last active
March 20, 2024 18:25
Modifies WMI root namespace to deny all access of specific user, in order to mitigate WMI lateral movement of specific privileged users (not supposed to use WMI).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Function Invoke-WMIRestriction | |
| { | |
| <# | |
| .SYNOPSIS | |
| Modifies WMI root namespace ACL to deny all access of specific user, in order to mitigate WMI lateral movement of specific privileged users (not supposed to use WMI). | |
| Author: Itamar Mizrahi (@Zecured) | |
| License: GNU v3 | |
| Required Dependencies: None | |
| Optional Dependencies: None |
webframp
/ keybase.md
Created
July 25, 2017 18:14
Signing git commits on github using keybase.io gpg key
derick-montague
/ sync-github-to-bitbucket.md
Last active
May 6, 2025 07:39
Sync github repo to bitbucket repo
leanderjanssen
/ check-kernel-config.sh
Created
September 22, 2017 09:26
Script to verify kernel configuration
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| set -e | |
| EXITCODE=0 | |
| # bits of this were adapted from lxc-checkconfig | |
| # see also https://github.com/lxc/lxc/blob/lxc-1.0.2/src/lxc/lxc-checkconfig.in | |
| possibleConfigs=( | |
| '/proc/config.gz' |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Snort & Suricata signatures for: | |
| # https://blog.fox-it.com/2018/01/11/mitm6-compromising-ipv4-networks-via-ipv6 | |
| alert udp fe80::/12 [546,547] -> fe80::/12 [546,547] (msg:"FOX-SRT - Policy - DHCPv6 advertise"; content:"|02|"; offset:48; depth:1; reference:url,blog.fox-it.com/2018/01/11/mitm6-compromising-ipv4-networks-via-ipv6/; threshold:type limit, track by_src, count 1, seconds 3600; classtype:policy-violation; sid:21002327; rev:2;) | |
| alert udp ::/0 53 -> any any (msg:"FOX-SRT - Suspicious - WPAD DNS reponse over IPv6"; byte_test:1,&,0x7F,2; byte_test:2,>,0,6; content:"|00 04|wpad"; nocase; fast_pattern; threshold: type limit, track by_src, count 1, seconds 1800; reference:url,blog.fox-it.com/2018/01/11/mitm6-compromising-ipv4-networks-via-ipv6/; classtype:attempted-admin; priority:1; sid:21002330; rev:1;) |
darrenpmeyer
/ open-vm-tools-vmware-ubuntu-sharing.md
Last active
October 7, 2025 22:21
open-vm-tools and VMWare Shared Folders for Ubuntu guests
(NB: adapted from this Ask Ubuntu thread -- tested to work on Ubuntu 16.04 LTS through Ubuntu 22.04 LTS (Jammy).
Unlike using VMWare Tools to enable Linux guest capabilities, the open-vm-tools package doesn't auto-mount shared VMWare folders. This can be frustrating in various ways, but there's an easy fix.
Install open-vm-tools and run:
sudo mount -t fuse.vmhgfs-fuse .host:/ /mnt/hgfs -o allow_other
jerodg
/ windows_and_office_kms_setup.adoc
Last active
October 16, 2025 15:21
Activate Windows and Office Using KMS Server
deviantony
/ README.md
Created
March 8, 2018 01:24
Portainer admin password in a docker-compose environment
This file aims to explain how to deploy Portainer inside a compose file with the admin password already set.
For this example, we'll use the password superpassword.
Use the following command to generate a hash for the password:
MawKKe
/ cryptsetup-with-luks2-and-integrity-demo.sh
Last active
October 1, 2025 19:45
dm-crypt + dm-integrity + dm-raid = awesome!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # | |
| # Author: Markus (MawKKe) [email protected] | |
| # Date: 2018-03-19 | |
| # | |
| # | |
| # What? | |
| # | |
| # Linux dm-crypt + dm-integrity + dm-raid (RAID1) | |
| # |
cecilemuller
/ 2019-https-localhost.md
Last active
September 18, 2025 06:58
How to create an HTTPS certificate for localhost domains
This focuses on generating the certificates for loading local virtual hosts hosted on your computer, for development only.
Do not use self-signed certificates in production ! For online certificates, use Let's Encrypt instead (tutorial).