- Encrypt everthing including /boot and /root
- Enter password once
- Support UEFI
Download NixOS minimal iso and copy to USB stick. For example on Mac OSX
$ diskutil list
$ diskutil unmountDisk /dev/disk1 # Make sure you got right device
ladinu
/ encryptedNixos.md
Last active
April 24, 2025 10:07
NixOS install with encrypted /boot /root with single password unlock
chrisdone
/ gist:02e165a0004be33734ac2334f215380e
Last active
April 16, 2025 07:20
Build and run minimal Linux / Busybox systems in Qemu
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hi All! | |
| I've recently launched a tool that wraps many of the commands here with a user interface. This desktop application is currently available for macOS. There's a roadmap outlining planned features for the near future. | |
| Feel free to request any features you'd like to see, and I'll prioritize them accordingly. | |
| One of the most important aspects of this application is that every command executed behind the scenes is displayed in a special log section. This allows you to see exactly what’s happening and learn from it. | |
| Here's the link to the repository: https://github.com/Pulimet/ADBugger | |
| App Description: | |
| ADBugger is a desktop tool designed for debugging and QA of Android devices and emulators. It simplifies testing, debugging, and performance analysis by offering device management, automated testing, log analysis, and remote control capabilities. This ensures smooth app performance across various setups. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8" standalone="no"?> | |
| <fontconfig> | |
| <dir>~/.fonts</dir> | |
| <match> | |
| <test name="family"> | |
| <string>sans-serif</string> | |
| </test> | |
| <edit binding="strong" mode="prepend" name="family"> | |
| <string>Lucida Grande</string> | |
| </edit> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerView's last major overhaul is detailed here: http://www.harmj0y.net/blog/powershell/make-powerview-great-again/ | |
| # tricks for the 'old' PowerView are at https://gist.github.com/HarmJ0y/3328d954607d71362e3c | |
| # the most up-to-date version of PowerView will always be in the dev branch of PowerSploit: | |
| # https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1 | |
| # New function naming schema: | |
| # Verbs: | |
| # Get : retrieve full raw data sets | |
| # Find : ‘find’ specific data entries in a data set |
braian87b
/ dumb-ap-wired-link.sh
Last active
May 4, 2025 20:09
How to setup a Dumb AP, Wired backbone for OpenWRT / LEDE
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ======================================================== | |
| # Setup a Dumb AP, Wired backbone for OpenWRT / LEDE | |
| # ======================================================== | |
| # Set lan logical interface as bridge (to allow bridge multiple physical interfaces) | |
| uci set network.lan.type='bridge' | |
| # assign WAN physical interface to LAN (will be available as an additional LAN port now) | |
| uci set network.lan.ifname="$(uci get network.lan.ifname) $(uci get network.wan.ifname)" | |
| uci del network.wan.ifname | |
| # Remove wan logical interface, since we will not need it. | |
| uci del network.wan |
braian87b
/ wireless-link-wds.sh
Last active
January 7, 2024 19:31
How to setup Wireless Links to avoid Wired backbone using WDS on Atheros for OpenWRT / LEDE
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ==================================================================================== | |
| # Steps for Main Router (must have connected internet on WAN port) | |
| # ==================================================================================== | |
| # Set your network IP address configuration default is 192.168.1.0/24 | |
| uci set network.lan.ipaddr='192.168.1.1' | |
| # Recommended, to identify on network and when logged on | |
| uci set system.@system[0].hostname='MainRouter' | |
| uci set network.lan.hostname="`uci get system.@system[0].hostname`" |
braian87b
/ relayd-igmpproxy.sh
Last active
October 22, 2023 12:32
How to setup Client Bridged / Client Mode / RelayD and IGMPProxy for OpenWRT / LEDE
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Client Bridged / Client Mode / RelayD and IGMPProxy (It works) | |
| # RelayD is to redirect packages and IGMP is for redirect IGMP packages | |
| # Our network is 192.168.1.0/24 | |
| # Steps: | |
| # Configure WAN as static | |
| # We should edit our wan iface and put static IP | |
| uci set network.wan='interface' | |
| uci set network.wan.proto='static' | |
| uci set network.wan.ipaddr='192.168.1.239' # Main Network IP |
ppmathis
/ debian-stretch-fde.md
Last active
May 21, 2024 04:05
Guide which explains an installation of Debian Stretch with full disk encryption (including "/boot" partition, containing initramfs+kernel) by using Debian Jessie Live.
This documents guides you through the process to install Debian Stretch with Full Disk Encryption. The following requirements exist:
- Mainboard with UEFI-Support
- Debian Stretch Live CD booted from UEFI
- Two unformatted, unpartitioned HDDs/SSDs for Software RAID1 with mdmadm
After following this guide, you will end up with a setup like this:
- Redundant GRUB Standalone EFI installation on both disks
ansulev
/ install-arch-linux-on-btrfs-subvolume-inside-luks
Last active
October 20, 2024 07:09
Install Arch Linux with full encrypted btrfs subvolume inside luks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Install Arch Linux with full encrypted btrfs subvolume inside luks | |
| # Hardware: BIOS system, Intel GPU, Nvidia Optimus, Toshiba SSD, Wifi | |
| # Please adjust for your needs. | |
| # filename: install-arch-linux-on-btrfs-subvolume-inside-luks.txt | |
| # The official guide: https://wiki.archlinux.org/index.php/Installation_Guide | |
| # Download the archiso image from https://www.archlinux.org/download/ | |
| # Copy to a usb-drive | |
| dd bs=4M if=archlinux.iso of=/dev/sdx status=progress oflag=sync # on linux |