Skip to content

Instantly share code, notes, and snippets.

@timothyham
timothyham / ipv6guide.md
Last active November 19, 2024 00:20
A Short IPv6 Guide for Home IPv4 Admins

A Short IPv6 Guide for Home IPv4 Admins

This guide is for homelab admins who understand IPv4s well but find setting up IPv6 hard or annoying because things work differently. In some ways, managing an IPv6 network can be simpler than IPv4, one just needs to learn some new concepts and discard some old ones.

Let’s begin.

First of all, there are some concepts that one must unlearn from ipv4:

Concept 1

@DavidBuchanan314
DavidBuchanan314 / r1_api.md
Last active September 8, 2024 18:23
Rabbit R1 Unofficial API Docs

The Rabbit R1 uses a few custom APIs to talk to The Cloud™. Almost nothing happens on-device, and all the AI magic happens on servers.

Consequently, you don't really need the physical device.

TLS Client Fingerprinting

In lieu of an authentication scheme, Rabbit's servers attempt to verify device authenticity by checking the TLS client's JA3 fingerprint, presumably enforced by AWS WAF.

If your TLS client doesn't match an expected fingerprint, you'll get HTTP 403 errors. This fingerprint works:

@Cryptiiiic
Cryptiiiic / ios16_downgrading.txt
Created March 1, 2023 00:10
The unfortunate state of iOS downgrading
Unfortunately I have some bad news for downgrading.
Before I explain the bad news at the end of this post, I first need to introduce a background of iOS devices.
In iOS 16, Apple introduced a new firmware component known as Cryptex1. Technically, this is a "virtual" co-processor.
It's purpose is to allow Apple to push RSRs (Rapid Security Responses) which are separate from traditional iOS updates and can be installed much faster.
Like other firmwares, it also has a signing ticket locked to a cryptographic nonce (number-used-once).
We commonly refer to the Apple signing tickets as SHSH blobs.
Meaning the firmware can't be installed without a valid signing ticket as well as a matching nonce.
The "big two" components we deal with signing/nonces are AP and SEP. AP is basically the main device chip (Application Processor).
SEP is the security chip (Secure Enclave Processor).
With regards to APNonce, Apple conveniently gave us the com.apple.System.boot-nonce NVRAM property which we use to set the APNonce generator.
@iiKurt
iiKurt / Mac Terminal.js
Last active February 27, 2024 07:16
Terminal widget inspired by McClockface
// Variables used by Scriptable.
// These must be at the very top of the file. Do not edit.
// icon-color: deep-gray; icon-glyph: terminal;
// Change these to yours
const username = "mobile";
const hostname = "Purple"; // can no longer automatically grab device name in iOS 16
const WINDOW_PREFS = {
bg: Color.dynamic(new Color("#FFFEFF"), new Color("#1E1E1E")),
@leviem1
leviem1 / fangxiao-domains-pihole-blocklist-11-2022
Last active May 6, 2023 11:15
PiHole blocklist for phishing domains used by Fangxiao: bleepingcomputer.com/news/security/42-000-sites-used-to-trap-users-in-brand-impersonation-scheme/
This file has been truncated, but you can view the full file.
0.0.0.0 002sen.cn
0.0.0.0 003bty.cyou
0.0.0.0 005nj7z.cn
0.0.0.0 006ks4g.cn
0.0.0.0 0072875.xyz
0.0.0.0 0099q7e.cn
0.0.0.0 009gfy.cyou
0.0.0.0 00ckpr.cn
0.0.0.0 00cojpj.cn
0.0.0.0 00cvl.cn
@talk2bryan
talk2bryan / AuthyTOTPSeedCodesToSN.md
Last active November 12, 2022 15:39
Importing Authy TOTP seed codes to Standard Notes

Importing Authy TOTP seed codes to Standard Notes

Standard Notes is an application which allows end-to-end encrypted notes. These notes are synchronized through their servers to ensure that you can have your notes on each and all of your devices.

The draw of Standard Notes for me was the end-to-end encryption. No one besides me can see the contents of my notes. It is an open source application that has been well vetted for security, and user privacy.

A feature they provide is software-based 2FA solution. As someone who has used

<Sysmon schemaversion="4.82">
<EventFiltering>
<RuleGroup name="" groupRelation="or">
<FileBlockExecutable onmatch="include">
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">excel.exe</Image>
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">winword.exe</Image>
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">powerpnt.exe</Image>
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">outlook.exe</Image>
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">msaccess.exe</Image>
<Image name="technique_id=T1105,technique_name=Ingress Tool Transfer" condition="image">mspub.exe</Image>
@Lissy93
Lissy93 / Example 1 - Getting Started - conf.yml
Last active November 16, 2024 21:14
Example Config Files for Dashy
---
# Page meta info, like heading, footer text and nav links
pageInfo:
title: Dashy
description: Welcome to your new dashboard!
navLinks:
- title: GitHub
path: https://github.com/Lissy93/dashy
- title: Documentation
path: https://dashy.to/docs
@aaronst
aaronst / unc1878_indicators.txt
Created October 28, 2020 20:20
UNC1878 Indicators
# C2 FQDNs
first seen fqdn
2019-12-11 23:37:10 updatemanagir.us
2019-12-20 17:51:05 cmdupdatewin.com
2019-12-26 18:03:27 scrservallinst.info
2020-01-10 00:33:57 winsystemupdate.com
2020-01-11 23:16:41 jomamba.best
2020-01-13 05:13:43 updatewinlsass.com
2020-01-16 11:38:53 winsysteminfo.com
2020-01-20 05:58:17 livecheckpointsrs.com
@flasozzi
flasozzi / countdown.js
Created October 5, 2020 00:31
Simple countdown widget
// Variables used by Scriptable.
// These must be at the very top of the file. Do not edit.
// icon-color: blue; icon-glyph: calendar-alt;
// CREDITS
// Created by u/flasozzi
// Background image code by u/ben5292001
// READ THE INSTRUCTIONS BELOW