SecOps

Check the SHA checksum using shell script.

How to bypass the OpenSSL security level using curl or openssl utility to access legacy services.

Execute non-executable binary file.

Block IP address using Dynamic Firewall Manager.

Enable panic mode to immediately drop incoming and outgoing packets using Dynamic Firewall Manager.

Use Dynamic Firewall Manager to configure a basic zone-based firewall.

Debian Bullseye currently provides Samba 4.13.5. Using BIND as Samba Active Directory DNS backend opens it to the DNS zone transfer.

Inspect mitigations for CPU vulnerabilities.

Export 1Password passwords using a command-line utility on Linux.

Different ways to provide encryption password when using OpenSSL utility.

Install AdGuard Home Network-wide ads & trackers blocking DNS server.

Define IP address inside multi-domain SSL certificate.

Check if the certificate matches DNS name or IP address

Create a multi-domain SSL certificate without a common name.

Use the OpenSSL utility to generate a base64-encoded secret.

Use the native IPsec stack to connect multiple networks over the internet.

Trace packets as they pass through the iptables firewall.

Determine SSL cipher suites supported by the web-server using OpenSSL.

Log every executed command to syslog.

Make iptables configuration persistent using systemd file with additional possibility to disable firewall after defined period of time.

I will show you how to generate a random password using the OpenSSL utility, standard command-line utilities, Password Generator (pwgen), and Automated Password Generator (APG).

A week ago I wrote about a couple of interesting applications that can crack passwords, but they were not as fast as I thought. After investigating this topic further, I ended up using a community-enhanced version of John the Ripper.

Sometimes it a good idea to check or just store contents of the virtual console terminal (/dev/vcs[1-63] device).

Display established TCP connections inside the terminal.