Systemd enabled services list
systemctl list-unit-files | grep enabled
Dig with trace
For a dig with dns request flow response use
dig hostname.tld +trace
Mikrotik IPsec tunnel site to site
First part of ipsec site2site VPN
This setup is done on Mikrotik (or any similar router side)
Elasticsearch allocation settings
Allocation setting example, work both for cluster setting or index settings
ipsec
check statusipsec status
check connectionsipsec statusall
check certsipsec listcerts
Bash set builtin -> bash debug
Set at the beginning of bash script:
set -Eeuxo pipefail
set -e
The -e option will cause a bash script to exit immediately when a command fails.
Tools
nmap - checking open ports and footprinting
MSF - Metasploit framework
DIRB - enumerate files on webserver
Wireshark - network analytics
Wfuzz - bruteforcing web applications
sqlmap - detection and exploitation of SQL injection flaws
10 Pillars of IT security
10 pillars of IT security:
1. Sanitize Inputs
2. Audit services
3. Backups onsite && ofsite , test backups
4. Principle of least privileges (no one logs as root, ever)
5. Zero trust networks, 2FA
6. Key-based authetification
Remove file from git commit
In case you accidentally commit file you did not want, e.g. .swp from vim use:
git rm unwanted_file.swp
Check if file does not appear anymoregit commit --amend