Scott Stout skout23
skout23
/ google_calendar_events_quick_scanner.py
Created
October 13, 2020 18:53
A very quick/dirty scanner to look for secrets in calendar events
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Futures | |
| from __future__ import print_function | |
| # Built-in/Generic Imports | |
| import datetime | |
| import pickle | |
| import os.path | |
| import re | |
| # Libs |
skout23
/ logs_insights_queries.txt
Created
February 11, 2019 19:48
Scratch Pad ideas for Cloudtrail queries using AWS Cloudwatch Logs Insights
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ``` | |
| filter eventName="ConsoleLogin" | |
| | stats count(*) as eventCount by userIdentity.userName, sourceIPAddress | |
| | sort eventCount desc | |
| filter not sourceIPAddress =~ /^(?i)123.123.123.123/ and userIdentity.userName =~/^(?i)\w/ | |
| | stats count(*) as eventCount by eventName, userIdentity.userName, sourceIPAddress | |
| | sort eventCount desc | |
| filter eventName="ConsoleLogin" |
skout23
/ s3_bucket_sizes.sh
Created
February 1, 2019 19:27
Get the latest size in bytes of all s3 buckets given a list of profiles
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| aws_profile=("default" "otherprofile"); | |
| region="us-east-1" | |
| # setting the expected date() format BSD style (macos) | |
| start_time="$(date -v-2d '+%Y-%m-%d')" | |
| end_time="$(date '+%Y-%m-%d')" | |
| #loop AWS profiles array incase we provide more than 1 profile | |
| for profile in "${aws_profile[@]}"; do |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| Compile with: | |
| afl-gcc -fno-stack-protector -z execstack buffer_overflow.c -o buffer_overflow | |
| gcc -fno-stack-protector -z execstack buffer_overflow.c -o buffer_overflow | |
| */ | |
| #include <stdio.h> | |
| #include <string.h> |
skout23
/ pyenv + virtualenv all the things
Created
July 6, 2016 21:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # should pick up pyenv as dep | |
| brew install pyenv-virtualenv | |
| # add to your .bash_profile or other .profile | |
| eval "$(pyenv init -)" | |
| eval "$(pyenv virtualenv-init -)" | |
| # List available pythons versions | |
| $ pyenv install -l |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| aptitude install suricata | |
| ... | |
| sudo modprobe nfnetlink_queue | |
skout23
/ GeoIP Product Id's
Created
August 14, 2015 00:03
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ProductID Database | |
| 106 GeoIP.dat | |
| 111 GeoIPOrg.dat | |
| 112/115 GeoIPRegion.dat | |
| 117 GeoIPASNum.dat | |
| 119 GeoIPUserType.dat | |
| 121/122 GeoIPISP.dat | |
| 132/133 GeoIPCity.dat | |
| 135 GeoIPAreaCode.dat | |
| 137 GeoIPDMACode.dat |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| # | |
| # quick poc to print out the mario half pyramid | |
| # | |
| # | |
| def pymid(base) | |
| 1.upto(base) do |row| | |
| str = "#" * row |
skout23
/ codewatcher.rb
Created
October 29, 2014 23:33
simple-ish rss atom feed watcher to alert when a code change has taken place
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # script to watch production code commit log and send a diff of if any changes for PCI regulation needs | |
| require 'rss' | |
| require 'openssl' | |
| DEBUG = false | |
| # set the local store for marshalled data | |
| $prod_code_last_reported_date = '/home/someuser/bin/watch_rss/data/last_reported.yml' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| require 'time' | |
| $output = File.open("tstamp.csv",'w') | |
| $input = File.open("dork.in",'r') | |
| def gimmetime(str) | |
| d1 = Time.parse(str) | |
| rm1 = Random.new |
NewerOlder