web

Bookmarks for 22 Apr 2016 through 23 Apr 2016

These are my links for 22 Apr 2016 through 23 Apr 2016:

  • How to use Powershell in an exploit · rapid7/metasploit-framework Wiki
    PowerShell is a scripting language developed by Microsoft. It provides API access to almost everything in a Windows platform, less detectable by countermeasures, easy to learn, therefore it is incredibly powerful for penetration testing during post exploitation, or exploit development for payload execution. Take Metasploit’s windows/smb/psexec_psh.rb module for example: it mimics the psexec utility from SysInternals, the payload is compressed and executed from the command line, which allows it to be somewhat stealthy against antivirus. There’s only less than 30 lines of code in psexec_psh.rb (excluding the metadata that describes what the module is about), because most of the work is done by the Powershell mixin, nothing is easier than that. The command line will automatically attempt to detect the architecture (x86 or x86_64) that it is being run in, as well as the payload architecture that it contains. If there is a mismatch it will spawn the correct PowerShell architecture to inject the payload into, so there is no need to worry about the architecture of the target system.
  • HOWTO use geoiplookup – Fail2ban
    You may be interested in a quick summary of the countries where the attacks come from. This document explains how to find these information.
  • IP Address Details – ipinfo.io – Simple, reliable, and affordable IP geolocation data.
  • Cryptocat – Chat with your friends, privately.Cryptocat is free software with a simple mission: everyone should be able to chat with their friends in privacy.Open source. All Cryptocat software is published transparently.
    Encrypted by default. Every message is encrypted, always.
    Forward secure. Chats can’t be decrypted even if your keys are stolen.
    Multiple devices. All devices linked to your account will receive forward secure messages, even when offline.
    File sharing. Securely share files with friends.
    Group chat. Chat with multiple buddies at once (coming soon).

Bookmarks for 16 Dic 2015 through 21 Dic 2015

These are my links for 16 Dic 2015 through 21 Dic 2015:

  • 29 questions to ask yourself if you’re in devops | www.rohit.io – A few days ago, I had an opportunity to meet and interact with Mike Place, who works as a developer at Saltstack. We had an interesting conversation about devops and how things work in the valley. Mike explained the growing importance of devops in organizations and the rise of devops as a culture that aims to collaboratively deliver systems into production, reliably and effectively.
  • H2O – the optimized HTTP/2 server – H2O is a new generation HTTP server providing quicker response to users when compared to older generation of web servers. The server takes full advantage of HTTP/2 features including prioritized content serving and server push, promising outstanding experience to the visitors of your web site. [ via http://onethingwell.org/post/135440804989 ]
  • Mattermost – Mattermost is modern communication behind your firewall. As an alternative to proprietary SaaS messaging, Mattermost brings all your team communication into one place, making it searchable and accessible anywhere.

Bookmarks for 3 Dic 2015 through 8 Dic 2015

These are my links for 3 Dic 2015 through 8 Dic 2015:

  • minio/mc · GitHub – Minio client (mc) provides a set of tools to work with Amazon S3 compatible cloud storage and filesystems. It has features to resume partial downloads, progress bar and parallel copy. Minio client is written in Golang and released under Apache license v2. [ via http://onethingwell.org/post/134793050379 ]
  • Choosing an HTTP Status Code — Stop Making It Hard | Racksburg – What could be simpler than returning HTTP status codes? Did the page render? Great, return 200. Does the page not exist? That’s a 404. Do I want to redirect the user to another page? 302, or maybe 301.
  • Spinnaker: Global Continuous Delivery – Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence. It provides two core sets of features: cluster management and deployment management. Below we give a top-level overview of these features. [ via http://cloudacademy.com/blog/netflix-spinnaker/ ]

Bookmarks for 25 nov 2015 through 2 dic 2015

These are my links for 25 nov 2015 through 2 dic 2015:

  • ipfs/ipfs · GitHub – IPFS (the InterPlanetary File System) is a new hypermedia distribution protocol, addressed by content and identities. IPFS enables the creation of completely distributed applications. It aims to make the web faster, safer, and more open. IPFS is a distributed file system that seeks to connect all computing devices with the same system of files. In some ways, this is similar to the original aims of the Web, but IPFS is actually more similar to a single bittorrent swarm exchanging git objects. You can read more about its origins in the paper IPFS – Content Addressed, Versioned, P2P File System. IPFS is becoming a new major subsystem of the internet. If built right, it could complement or replace HTTP. It could complement or replace even more. It sounds crazy. It is crazy. [ via http://blog.quintarelli.it/2015/12/ipfs-davvero-figo.html ]
  • SSL Library mbed TLS / PolarSSL: Download for free or buy a commercial license – mbed TLS (formerly known as PolarSSL) makes it trivially easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) products, facilitating this functionality with a minimal coding footprint.
  • Wox – An effective launcher for windows A full-featured launcher, access programs and web contents as you type. Be more productive ever since. Wox is free for use and open-sourced at Github, Try it now!

Bookmarks for 16 nov 2015 through 17 nov 2015

These are my links for 16 nov 2015 through 17 nov 2015:

  • Dkron – Distributed, fault tolerant job scheduling system – Dkron is a system service that runs scheduled jobs at given intervals or times, just like the cron unix service but distributed in several machines in a cluster. If a machine fails (the leader), a follower will take over and keep running the scheduled jobs without human intervention. Dkron is Open Source and freely available.
  • apache tuneup – Important to understand, this apache servers only one static image we use for the BI team. It does recieve and log a huge cookie and sends a 43 byte 1×1.gif image. Atention: It may not work right for dynamic web servers, as I use the mod_cache.
  • Gogs – Go Git Service – a painless self-hosted Git service – A painless self-hosted Git service. The goal of this project is to make the easiest, fastest, and most painless way of setting up a self-hosted Git service. With Go, this can be done with an independent binary distribution across ALL platforms that Go supports, including Linux, Mac OS X, Windows and ARM.

Bookmarks for 3 nov 2015 through 11 nov 2015

These are my links for 3 nov 2015 through 11 nov 2015:

  • GPO to push out local administrators across a domain. – Spiceworks – This how to will walk you through using Restricted groups to put users in the local admin group on all PCs. It will also add them to the Remote Desktop user's group. The usefulness in this is keeping as many people out of the domain admin group as possible while allowing the techs to work.
  • xkcd Password Generator – The button below will generate a random phrase consisting of four common words. According to yesterday’s xkcd strip, such phrases are hard to guess (even by brute force), but easy to remember, making them interesting password choices.
  • welaika/wordmove · GitHub – Wordmove is a nice little gem that lets you automatically mirror local WordPress installations and DB data back and forth from your local development machine to the remote staging server. SSH and FTP connections are both supported. Think of it like Capistrano for WordPress, complete with push/pull capabilities.
  • How to send svn diff to meld | Thomas Cokelaer’s blog – On one hand meld provides a nice GUI to visualise the differences between 2 files. On the other hand, with SVN diff command, you can obtain the differences between 2 versions of the same file so you end up with one file.

Bookmarks for 21 set 2015 through 24 set 2015

These are my links for 21 set 2015 through 24 set 2015:

  • IOWait. (Sysadmin’s bedtime horror story) – […] hope this helps someone out there. The last 3 days, I have had my server crash on me every 2-3 hours. At first I thought it would be a spike in the traffic, since I couldn’t find any crash reports from Apache, and there was a spike in the traffic at this time. So I increased the resources on the server. It crashed again, every 2-3 hours […] It wasn't my case but… who knows in the future?
  • Apache mod_deflate and mod_cache issues | Devon Hillard’s Digital Sanctuary – The Problem: Using Apache mod_deflate and mod_disk_cache (or other mod_cache) together can create far too many cached files. The Background: Apache is a web server with many different modules you can load in to enhance it. Two common ones are mod_deflate and mod_cache (or mod_disk_cache).
  • haskellcamargo/skype-unofficial-client · GitHub – (unofficial) Skype client built on top of node webkit [ via http://www.lffl.org/2015/09/skype-web-client-linux.html ]
  • dfletcher/tsws · GitHub – TSWS, A Totally Simple Web Server
  • Home | Lattice – Lattice aspires to make clustering containers easy. Lattice includes a cluster scheduler, http load balancing, log aggregation and health management. Lattice containers can be long running or temporary tasks which get dynamically scaled and balanced across a cluster. Lattice packages components from Cloud Foundry to provide a cloud native platform for individual developers and small teams.

Bookmarks for 15 giu 2015 through 16 giu 2015

These are my links for 15 giu 2015 through 16 giu 2015:

Bookmarks for 29 mag 2015 through 10 giu 2015

These are my links for 29 mag 2015 through 10 giu 2015:

  • My Blog: AWS EC2 Auto Scaling: Basic Configuration – Our goal: Create an Auto Scaling EC2 Group in a single Availability Zone and use a HTTP status page as a Health Monitor for our Load Balancer and the Auto Scaling group instances. This exercise will show us some Auto Scaling basics and will be useful to understand the concepts beneath but the Auto Scaling Group will not automatically "scale" responding to external influence like Average CPU Usage or Total Apache Connections (This aspect is covered in this post: AWS EC2 Auto Scaling: External CloudWatch Metric). With the Auto Scaling configuration described here, we will obtain a web server cluster that can be increased and decreased in members with a simple Auto Scaling API call and we will transfer the monitoring role to the ELB to automatically replace failed EC2 instances or web servers.
  • Autoscaling with custom metrics « That’s Geeky – One of the appeals of cloud computing is the idea of using what you need when you need. One of the ways that Amazon provides for this is through autoscaling. In essence, this allows you to vary the number of (related) running instances according to some metric that is being tracked. In this article, we look at how you can trigger a change in the number of running instances using a custom Cloudwatch metric – including the setup of said metric, and a brief look at the interactions between the various autoscaling commands used.
  • Painless AWS Auto Scaling With EBS Snapshots And Capistrano – Boom – AWS (Amazon Web Services) auto scaling is a simple concept on the surface: You get an AMI, set up rules, and the load balancer takes care of the rest. However, actually getting it done is more complicated. Some choices are worse than others: you could bake an AMI (Amazon Machine Image) before you deploy, but that could add 10 minutes or more to each deployment. Some are dangerous: you could create an AMI after each deploy, but you run the risk that an auto scale even happens before your AMIs are done. Plus, you have a whole variety of AMIs deployed in at any given time. Some are similar to what we propose in this tutorial: you could push your code to S3 on each deploy and have user-data scripts that pull it down on each auto scaling event. However you slice it, to get auto scaling to fit into your development work flow in a transparent way takes careful thought and planning. We recently rolled out the following solution at CodePen. It keeps our AMIs static and our application ready for scaling on EBS (Elastic Block Store) snapshots. We can push code using Capistrano and let a few scripts distribute the ever-changing code base to our fleet of servers. I’d like to share the steps required to make it work. This series of posts will walk you through the steps required to build an auto-scaling infrastructure that stays out of your way.
  • coderwall.com : establishing geek cred since 1305712800 – Did you accidentally set node.normal[:foo][:bar] = 'something bad' in your chef recipe? Then you found that the node's normal attributes persisted between chef runs, and you really wanted to use the default attribute precedence level in your cookbook's attributes/default.rb file?

Bookmarks for 18 mag 2015 through 22 mag 2015

These are my links for 18 mag 2015 through 22 mag 2015:

  • kanbanik – Free and open source kanban board – Google Project Hosting – Kanbanik is a free and open source kanban board which can be used for personal kanban as well as for managing of small teams.
  • Kanboard – Simple and open source visual task board – Kanboard is not for everybody, it's made for people who want to manage their projects efficiently and simply.
  • POSHChef/POSHChef · GitHub – POSHChef has been built as a native chef client on Windows using PowerShell. Although support for Windows platforms in Chef is continually expanding the way it is implemented means that developers and system administrators need to understand Ruby in order to correctly write recipes and cookbooks. In addition it is not easy to test any PowerShell code that has been written as it is passed to a Chef recource, which is running under Ruby, and then it is executed using a call to 'powershell.exe'.
  • active directory – Group Policy installation failed error 1274 – Server Fault – I'm trying to deploy an MSI via the Group Policy in Active Directory. But these are the errors I'm getting in the System event log after logging in: The assignment of application XStandard from policy install failed. The error was : %%1274 The removal of the assignment of application XStandard from policy install failed. The error was : %%2