- veth device from CNI/CNM plugin: eth0
- tap device that connects to the VM: tap0
tc qdisc add dev eth0 ingress
tc filter add dev eth0 parent ffff: protocol all u32 match u8 0 0 action mirred egress redirect dev tap0
caniszczyk
/ clone-all-twitter-github-repos.sh
Created
October 9, 2012 04:25
Clone all repos from a GitHub organization
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -s https://api.github.com/orgs/twitter/repos?per_page=200 | ruby -rubygems -e 'require "json"; JSON.load(STDIN.read).each { |repo| %x[git clone #{repo["ssh_url"]} ]}' |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package terraformer | |
| import ( | |
| "bytes" | |
| "errors" | |
| "path" | |
| "path/filepath" | |
| "...runtime" | |
| "...store" |
isu3ru
/ laravel-blade-cheetsheet.txt
Last active
June 10, 2024 04:21
Commands for Laravel Blade template engine
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {{ $var }} - Echo content | |
| {{ $var or 'default' }} - Echo content with a default value | |
| {{{ $var }}} - Echo escaped content | |
| {{-- Comment --}} - A Blade comment | |
| @extends('layout') - Extends a template with a layout | |
| @if(condition) - Starts an if block | |
| @else - Starts an else block |
mcastelino
/ tc mirroring.md
Last active
April 29, 2025 12:00
Using tc redirect to connect a virtual machine to a container network
umutbasal
/ m1cat.c
Created
March 26, 2023 05:45
— forked from marcan/m1cat.c
m1cat: a PoC for the M1RACLES covert channel vulnerability in the Apple M1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * m1cat: a proof of concept for the M1RACLES vulnerability in the Apple M1. | |
| * | |
| * This program implements a covert channel that can be used to transmit data | |
| * between two processes when run on the Apple Silicon "M1" CPUs. | |
| * | |
| * The channel is slightly lossy due to (presumably) the scheduler sometimes | |
| * scheduling us on the wrong CPU cluster, so this PoC sends every byte twice | |
| * together with some metadata/framing bits, which is usually good enough. | |
| * A better approach would be to use proper FEC or something like that. |
0xdevalias
/ _deobfuscating-unminifying-obfuscated-web-app-code.md
Last active
May 16, 2025 06:30
Some notes and tools for reverse engineering / deobfuscating / unminifying obfuscated web app code
steven-michaud
/ ThirdPartyKexts.md
Last active
May 13, 2025 05:50
Running Third Party Kernel Extensions on Virtualization Framework macOS Guest VMs
As of macOS 12 (Monterey), Apple's Virtualization framework has nice support for macOS guest virtual machines, but with severe limitations: For example you can't install a macOS guest on Intel Macs, install guests with newer versions of macOS than the host, copy and paste between the host and the guest, or install third party kernel extensions in the guest. As usual for Apple, the functionality they do support is nicely implemented, but they've left out so much that the result is only marginally useful -- at least compared to