Site Tools


Hotfix release available: 2024-02-06a "Kaos". upgrade now! [55.1] (what's this?)
New release available: 2024-02-06 "Kaos". upgrade now! [55] (what's this?)
onny:notizen

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
onny:notizen [2022/06/14 14:48] 10.25.0.100onny:notizen [2024/02/21 09:38] (current) – [cups] 127.0.0.1
Line 1: Line 1:
-===== kernel ===== 
- 
-grep kernel config running system 
-<code bahs> 
-zcat /proc/config.gz | grep VDSO 
-</code> 
- 
-===== fish ===== 
- 
-unset history 
-<code> 
-fish --private 
-</code> 
  
 ===== bash ===== ===== bash =====
Line 101: Line 88:
 chmod +x $FILE chmod +x $FILE
 $FILE "$@" $FILE "$@"
-</code> 
-==== sed ==== 
-Mit sed inplace eine Zeile zu einer Datei hinzufügen: 
-<code bash> 
-sed -i '9i#include <algorithm>' liboffsetfinder64/vmem.cpp 
-</code> 
-add to end of file  
-<code bash> 
-sed -i -e '$aretry $@' retry.sh 
-</bash> 
-Comment out specific line matching a string 
-<code bash> 
-sudo sed -e '/pam_securetty.so/ s/^#*/#/' -i delugecontainer/etc/pam.d/login 
-</code> 
-comment out multiple lines / range 
-<code bash> 
-sed -i "28,33 s/# *//" autogen.sh 
-</code> 
-regex parse value of xml tags 
-<code bash> 
-sed -n 's/.*<id>\(.*\)<\/id>.*/\1/p' myfile.txt 
-</code> 
-delete multiple lines 
-<code bash> 
-sed -i '2,3d;5d;8d' file 
 </code> </code>
  
-insert line after match 
-<code bash> 
-sed  '/\[option\]/a Hello World' input 
-</code> 
 ==== grep ==== ==== grep ====
 regex match group regex match group
Line 158: Line 116:
 fd --type f -e doc -e docx -e pdf -i gabriel -x cp --backup=t {} /tmp/gabriel/ fd --type f -e doc -e docx -e pdf -i gabriel -x cp --backup=t {} /tmp/gabriel/
 </code> </code>
-==== rg ==== 
- 
-filter file type 
  
 +find filenames unallowed characters
 <code bash> <code bash>
-rg GPIO_CFG_2MA -g '*.h'+fd '[^A-Z a-züö@0-9._-]remote/200_Archiv/CP_Dont_Touch
 </code> </code>
  
-search file containing multiple strings/words 
  
-<code bash> 
-rg -lU --multiline-dotall 'strictDeps.*onny|onny.*strictDeps' pkgs 
-</code> 
- 
-==== curl ==== 
-post data 
-<code bash> 
-curl --data "UserId=eb8c2ec5352843d3a16ca11c26d3551c&Name=lolorollo&api_key=a5dc4e***9c9e0a***3" "https://turbotux.de/Playlists?UserId=eb8c2ec5352843d3a16ca11c26d3551c&Name=lolorollo&api_key=a5***d***9e0***3" 
-</code> 
-download and extract archive 
-<code bash> 
-curl http://wordpress.org/latest.tar.gz | tar xvz 
-</code> 
-set host header 
-<code bash> 
-torify curl --header "Host: http.pi" blog.project-insanity.org 
-</code> 
-==== tcpdump ==== 
-specific ports 
-<code bash> 
-tcpdump -i eth0 -q '(tcp port 80) or (tcp port 443)' -A 
-</code> 
-exclude specific host 
-<code bash> 
-tcpdump -i eth0 -q '(ip or ip6) and (tcp port 80) or (tcp port 443) and not host ifconfig.co' -A 
-</code> 
 ==== patching ==== ==== patching ====
 === appling === === appling ===
Line 209: Line 138:
 </code> </code>
  
 +==== xargs ====
 +
 +<code>
 +fd . | xargs -I {} rm "{}"
 +</code>
 ===== rsync ===== ===== rsync =====
 custom ssh port custom ssh port
Line 233: Line 167:
 </file> </file>
 ===== networking ===== ===== networking =====
-netcat 
-<code bash> 
-netcat -l 4444 
-</code> 
-<code bash> 
-netcat playground.pi 4444 
-</code> 
 ==== nftables ==== ==== nftables ====
 <code bash> <code bash>
Line 281: Line 208:
 iptables -t nat -A OUTPUT -p tcp --dport 2222 -j DNAT --to 192.168.1.2:22 iptables -t nat -A OUTPUT -p tcp --dport 2222 -j DNAT --to 192.168.1.2:22
 </code> </code>
-</code> 
-==== ip ==== 
-set address 
-<code bash> 
-ip address add dev usb0 172.16.42.1/24 
-ip link set usb0 up 
-</code> 
-route command example 
-<code bash> 
-ip route add 192.168.1.0/24 dev eth0 
-ip route add default via 192.168.1.1 
-</code> 
-flush addresses 
-<code bash> 
-ip addr flush dev enp8s0 
-</code> 
-remove interface 
-<code bash> 
-ip link delete br0 
-</code> 
-delete address 
-<code bash> 
-ip addr del 192.168.178.20/24 dev eth0 
-</code> 
-show only specific interface 
-<code bash> 
-ip a show wg0 
 </code> </code>
  
-change mtu 
-<code bash> 
-ip link set dev eth0 mtu 1400 
-</code> 
 ==== dnsmasq ==== ==== dnsmasq ====
 minimal hostapd and dnsmasq config minimal hostapd and dnsmasq config
Line 366: Line 262:
 compression compression
 <code bash> <code bash>
-convert -density 200x200 -units PixelsPerInch -compress jpeg -quality 70 in.pdf out.pdf+gm convert -density 200x200 -units PixelsPerInch -compress jpeg -quality 70 in.pdf out.pdf
 </code> </code>
 lossless merge lossless merge
Line 422: Line 318:
 </code> </code>
 ===== security ===== ===== security =====
 +
 +==== web discovery ====
 +
 +=== photon ===
 +
 +<code>
 +photon -u test.example.org
 +</code>
  
 ==== lynis ==== ==== lynis ====
Line 437: Line 341:
 ==== wfuzz ==== ==== wfuzz ====
 <code bash> <code bash>
-torify wfuzz -c --hc 404 -w /opt/wfuzz/wordlist/general/megabeast.txt http://www.leeel.de/FUZZ +wfuzz -c --hc 404 -w /opt/wfuzz/wordlist/general/megabeast.txt http://www.leeel.de/FUZZ 
-torify wfuzz -c --hc 404,403 -w /opt/wfuzz/wordlist/general/admin-panels.txt -w /opt/wfuzz/wordlist/general/extensions_common.txt http://www.leeel.de/FUZZFUZ2Z+wfuzz -c --hc 404,403 -w /opt/wfuzz/wordlist/general/admin-panels.txt -w /opt/wfuzz/wordlist/general/extensions_common.txt http://www.leeel.de/FUZZFUZ2Z
 </code> </code>
 Preparing data for LFI scan Preparing data for LFI scan
Line 453: Line 357:
     * https://github.com/maurosoria/dirsearch     * https://github.com/maurosoria/dirsearch
   * wifite wifi auditing tool   * wifite wifi auditing tool
 +
 +sec tools
 +
 +  * dirbuster
 +  * https://mitmproxy.org/
 +  * **tiger** - system sec scanner
 +  * sub domain evaluation
 +    * https://github.com/kpcyrd/sn0int
 +    * https://github.com/OWASP/Amass
 +    * subfinder (passive, external sources)
 +  * vhost scanning
 +    * https://github.com/codingo/VHostScan
 +  * bettercap - wifi network
 +  * iodine dns tunnel https://code.kryo.se/iodine/
 +  * command searchsploit in exploitdb
 +  * NixOS for Pentesting Overview https://github.com/NixOS/nixpkgs/issues/81418
  
 ===== chromium / chrome ===== ===== chromium / chrome =====
Line 460: Line 380:
 </code> </code>
 ===== docker ===== ===== docker =====
-Short example+ 
 +Pull
 <code bash> <code bash>
- sudo systemctl start docker +docker pull ubuntu:22.04 
- gpasswd -a onny docker +docker pull rootlogin/nextcloud:develop
- docker run -d -p 80:80 rootlogin/nextcloud +
- docker run -v /home/onny/projects/nextcloud-app-radio:/opt/nextcloud/apps/radio -d --name nextcloud -p 80:80 rootlogin/nextcloud+
 </code> </code>
 +
 +Run
 +<code bash>
 +docker run -td ubuntu:22.04
 +</code>
 +
 +Executing
 +<code bash>
 +docker exec -it ffffdfdfsdfsdfsfsffsdfs /bin/bash
 +</code>
 +
 +Nextcloud
 +<code bash>
 +docker run -d -p 80:80 rootlogin/nextcloud
 +docker run -v /home/onny/projects/nextcloud-app-radio:/opt/nextcloud/apps/radio -d --name nextcloud -p 80:80 rootlogin/nextcloud
 +</code>
 +
 Debugging it Debugging it
 <code bash> <code bash>
Line 472: Line 408:
  docker exec -i -t e326cbb922aa /bin/bash # exec new shell running container   docker exec -i -t e326cbb922aa /bin/bash # exec new shell running container 
 </code> </code>
 +
 Pull from repository Pull from repository
 <code> <code>
Line 482: Line 419:
  docker run -i -t e326cbb922aa /bin/bash  docker run -i -t e326cbb922aa /bin/bash
 </code> </code>
-Pull specific tagged image +
-<code bash> +
-docker pull rootlogin/nextcloud:develop +
-</code>+
 Build from Dockerfile Build from Dockerfile
 <code> <code>
Line 509: Line 443:
 docker system prune -a docker system prune -a
 </code> </code>
-docker stop all container +
-<code bash> +
-docker stop (docker ps -a -q) +
-</code>+
 prevent from auto start prevent from auto start
 +
 <code bash> <code bash>
 docker update --restart=no client-iaro_db_1 docker update --restart=no client-iaro_db_1
Line 689: Line 621:
 git remote set-url origin gitlab@http-new.pi:onny/web-wikidict.git git remote set-url origin gitlab@http-new.pi:onny/web-wikidict.git
 </code> </code>
-tagging +
-<code bash> +
-git tag -a v0.1 -m 'whackspace wordpress theme init' +
-</code>+
 merge commits from a remote repository merge commits from a remote repository
 +
 <code bash> <code bash>
 git fetch https://github.com/rfc2822/davdroid.git master git fetch https://github.com/rfc2822/davdroid.git master
Line 905: Line 835:
 </code> </code>
   * check spamminess of email server: https://www.mail-tester.com/   * check spamminess of email server: https://www.mail-tester.com/
-  * manual imap login +
-openssl imaps login +
-<code> +
-openssl s_client -connect mail.sexypump.de:993 -crlf +
-A login cypherpunk cypherpunk +
-</code> +
-get quota +
-<code> +
-a GETQUOTAROOT INBOX +
-</code> +
-get msg count of folder +
-<code> +
-a LIST INBOX * +
-* LIST (\HasChildren) "." INBOX +
-* LIST (\HasNoChildren \UnMarked) "." "INBOX.Deleted Messages" +
-* LIST (\HasNoChildren \UnMarked) "." "INBOX.Sent Messages" +
-* LIST (\HasNoChildren \UnMarked \Trash) "." INBOX.Trash +
-* LIST (\HasNoChildren \UnMarked \Sent) "." INBOX.Sent +
-* LIST (\HasNoChildren \UnMarked) "." INBOX.Notes +
-* LIST (\HasNoChildren \UnMarked \Junk) "." INBOX.Junk +
-* LIST (\HasNoChildren \UnMarked \Drafts) "." INBOX.Drafts +
-* LIST (\HasNoChildren \UnMarked) "." INBOX.AntiSpam +
-a OK List completed (0.001 + 0.000 secs). +
-a SELECT INBOX +
-</code>+
 send smtp mail send smtp mail
 <code> <code>
Line 1027: Line 933:
 ngrep -q -W byline "search" host www.google.com and port 80 ngrep -q -W byline "search" host www.google.com and port 80
 </code> </code>
-  * sec 
-    * https://mitmproxy.org/ 
-    * **tiger** - system sec scanner 
-    * sub domain evaluation 
-      * https://github.com/kpcyrd/sn0int 
-      * https://github.com/OWASP/Amass 
-      * subfinder (passive, external sources) 
-    * vhost scanning 
-      * https://github.com/codingo/VHostScan 
-    * bettercap - wifi network 
-    * iodine dns tunnel https://code.kryo.se/iodine/ 
-    * command searchsploit in exploitdb 
   * sys   * sys
     * **usbtop**     * **usbtop**
Line 1282: Line 1176:
  
 <code bash> <code bash>
 +cd nixpkgs
 +nix build -f ./. python310Packages.baserow
 +nix build -f ./. nodePackages.hyperpotamus
 nix-build -E 'with import <nixpkgs> { }; callPackage ./default.nix { nodejs = pkgs."nodejs-10_x"; }' nix-build -E 'with import <nixpkgs> { }; callPackage ./default.nix { nodejs = pkgs."nodejs-10_x"; }'
-nix-build -E 'with import /home/onny/projects/nixpkgs {}; nodePackages.hyperpotamus' 
 nix-build -E 'with import /home/onny/nixpkgs { }; libsForQt5.callPackage ./pkgs/applications/office/shelf/default.nix {}' nix-build -E 'with import /home/onny/nixpkgs { }; libsForQt5.callPackage ./pkgs/applications/office/shelf/default.nix {}'
 +
 </code> </code>
  
Line 1294: Line 1191:
 </code> </code>
  
-quick launch program+run program
  
 <code bash> <code bash>
-nix run nixpkgs.electrum --command electrum+nix run nixpkgs#electrum -- --help 
 +nix run github:TheZombie1999/nixpkgs#upscaly 
 +nix shell nixpkgs#hash-slinger --command tlsa --create example.org
 </code> </code>
  
Line 1324: Line 1223:
  
 <code> <code>
-let  +nixpkgs.config.packageOverrides = pkgs: rec { 
- +  unstable = import unstableTarball { }; 
-  # FIXME +  opensnitch = unstable.opensnitch; 
-  unstableTarball = +};
-    fetchTarball +
-      https://github.com/NixOS/nixpkgs/archive/nixos-unstable.tar.gz; +
- +
-in +
-+
- +
-  disabledModules = [ "programs/firejail.nix" ]; +
- +
-  imports = [ +
-    "${fetchTarball "https://github.com/NixOS/nixpkgs/archive/nixos-unstable.tar.gz"}/nixos/modules/services/security/opensnitch.nix" +
-    /home/onny/projects/nixpkgs2/nixos/modules/services/networking/create_ap.nix +
-  ]; +
-  nixpkgs.config.packageOverrides = pkgs: rec { +
-    unstable = import unstableTarball { }; +
-    opensnitch = unstable.opensnitch; +
-  }+
-  #services.opensnitch.enable = true;+
 </code> </code>
  
Line 1376: Line 1258:
     '';     '';
   });   });
-</code> 
- 
-use local src / source 
- 
-<code> 
-  src = "/home/onny/projects/linux-wifi-hotspot"; 
-  dontUnpack = true; 
-   
-  unpackPhase = ''cp -r --no-preserve=mode $src/* .''; 
 </code> </code>
  
Line 1426: Line 1299:
 </code> </code>
  
-fetchpatch+fetchpatch array
  
 <code> <code>
-  patches = [ +patches = map fetchpatch 
-    ./no-hardcode-fw.diff+  /* This patch is currently necessary for the unit test suite to run correctly. 
 +   * See https://www.mail-archive.com/klee-dev@imperial.ac.uk/msg03136.html 
 +   * and https://github.com/klee/klee/pull/1458 for more information. 
 +   */ 
 +  #{ 
 +  #  name = "fix-gtest"; 
 +  #  sha256 = "F+/6videwJZz4sDF9lnV4B8lMx6W11KFJ0Q8t1qUDf4="; 
 +  #  url = "https://github.com/klee/klee/pull/1458.patch"; 
 +  #}
  
-    Support HBPL1 printers https://www.dechifro.org/hbpl/ +  This patch fixes test compile issues with glibc 2.33+
-    ./hbpl1.patch +  #{ 
- +  #  name = "fix-glibc-2.33"; 
-    Fix "Unimplemented paper codeerror for hbpl1 printers +   sha256 = "PzxqtFyLy9KF1eA9AAKg1tu+ggRdvu7leuvXifayIcc="; 
-    https://github.com/mikerr/foo2zjs/pull/+   url = "https://github.com/klee/klee/pull/1385.patch"; 
-    (fetchpatch { +  #}
-      url = "https://patch-diff.githubusercontent.com/raw/mikerr/foo2zjs/pull/2.patch"; +
-      sha256 = "0lvbryw6ymh0ahwkhqsgmjimg5saa8b1xnxmyyjxrbi3l3a6fbvy"; +
-    }+
- +
-  ];+
 </code> </code>
  
Line 1459: Line 1335:
 <code bash> <code bash>
 QEMU_NET_OPTS="hostfwd=tcp::8080-:80" NIX_PATH=nixpkgs=/home/onny/projects/nixpkgs nixos-shell vm-invoiceplane.nix QEMU_NET_OPTS="hostfwd=tcp::8080-:80" NIX_PATH=nixpkgs=/home/onny/projects/nixpkgs nixos-shell vm-invoiceplane.nix
 +sudo -E QEMU_NET_OPTS="hostfwd=tcp::80-:80" NIX_PATH=nixpkgs=/home/onny/projects/nixpkgs nixos-shell vm-invoiceplane.nix
 </code> </code>
  
Line 1520: Line 1397:
 <code> <code>
 { lib { lib
-mkDerivation+stdenv
 , fetchFromGitLab , fetchFromGitLab
 , cmake , cmake
Line 1530: Line 1407:
 }: }:
  
-mkDerivation rec {+stdenv.mkDerivation rec {
   pname = "pdfmixtool";   pname = "pdfmixtool";
   version = "1.0.2";   version = "1.0.2";
Line 1760: Line 1637:
 } }
 </code> </code>
 +
 +packaging java / jar file
 +
 +<code>
 +  installPhase = ''
 +    mkdir -p $out/{bin,lib}
 +    cp ${src}/briar-desktop.jar $out/lib/
 +    makeWrapper ${openjdk}/bin/java $out/bin/briar-desktop \
 +      --add-flags "-jar $out/lib/briar-desktop.jar"
 +  '';
 +</code>
 +
 ==== nixops ==== ==== nixops ====
  
Line 1814: Line 1703:
 fatlabel /dev/sdb1 "mystick" fatlabel /dev/sdb1 "mystick"
 </code> </code>
 +
 resize extX partition resize extX partition
 +
 <code bash> <code bash>
 sfdisk -l /dev/sdb sfdisk -l /dev/sdb
Line 1899: Line 1790:
 </code> </code>
  
-===== avahi ===== +
-discover local services +
-<code bash> +
-avahi-browse --all --ignore-local --resolve --terminate +
-</code>+
 ===== curlftpfs ===== ===== curlftpfs =====
 <code bash> <code bash>
Line 2053: Line 1940:
 </code> </code>
  
-===== cups ===== 
  
-list printers+===== qemu ===== 
 + 
 +booting armv7 alpinelinux 
 +<code bash> 
 +# download kernel and stuff from here http://dl-cdn.alpinelinux.org/alpine/edge/releases/armv7/netboot/ 
 +qemu-system-arm -M virt -m 512M -cpu cortex-a15 -kernel vmlinuz-lts -initrd initramfs-lts -append "console=ttyAMA0 ip=dhcp alpine_repo=http://dl-cdn.alpinelinux.org/alpine/edge/main/" -nographic 
 +</code> 
 + 
 +===== postgresql ===== 
 + 
 +list all databases 
 +<code bash> 
 +sudo -u postgres psql 
 +# \l 
 +</code> 
 + 
 +drop database 
 +<code bash> 
 +sudo -u postgres psql 
 +# drop database gitlabhq_production; 
 +# drop database gitlabhq_production WITH (FORCE); 
 +</code> 
 + 
 +list tables 
 +<code bash> 
 +sudo -u postgres psql 
 +# \c gitlabhq_production 
 +# \dt 
 +</code> 
 + 
 +create and delete user
 <code> <code>
-$ lpstat -p -d +DROP ROLE gitlab; 
-printer Dell_1250c is idle.  enabled since Tue 28 Dec 2021 09:44:59 AM UTC +CREATE USER gitlab WITH PASSWORD 'test123';
-printer Dell_1250c_USB is idle.  enabled since Tue 28 Dec 2021 09:44:59 AM UTC+
 </code> </code>
  
-print file+grant permissions
 <code> <code>
-lp -d Dell_1250c_USB -o fit-to-page -o media=A4 scared_cat.png+ALTER USER gitlab SUPERUSER; 
 +CREATE DATABASE gitlabhq_production OWNER gitlab; 
 +ALTER DATABASE gitlabhq_production OWNER TO gitlab;
 </code> </code>
  
-list jobs+dump database
 <code> <code>
-$ lpstat +pg_dump -U gitlab gitlabhq_production > /tmp/gitlab.pgsql
-Dell_1250c_USB-2        root            340992   Tue 28 Dec 2021 09:57:08 AM UTC+
 </code> </code>
  
-cancel job+dump all
 <code> <code>
-cancel 1+pg_dumpall > /tmp/dump_file_name.tar
 </code> </code>
  
-===== qemu ===== +import database 
- +<code> 
-booting armv7 alpinelinux +psqlCREATE DATABASE gitlabhq_production; 
-<code bash+psql -U gitlab gitlabhq_production < gitlab.pgsql
-download kernel and stuff from here http://dl-cdn.alpinelinux.org/alpine/edge/releases/armv7/netboot/ +
-qemu-system-arm -M virt -m 512M -cpu cortex-a15 -kernel vmlinuz-lts -initrd initramfs-lts -append "console=ttyAMA0 ip=dhcp alpine_repo=http://dl-cdn.alpinelinux.org/alpine/edge/main/" -nographic+
 </code> </code>
 +
 +
onny/notizen.1655218127.txt.gz · Last modified: 2022/06/14 14:48 by 10.25.0.100