###how to install elasticsearch with kibana
#if you use the "docker WSL 2 enngine" then run the 3 command bellow, 1 at the time:
sysctl -w vm.max_map_count=262144
wsl -d docker-desktop
exit
Jonathan Todd jt0dd
jt0dd
/ gist:2040ed4451146af5fd2d21a23adf4e60
Last active
January 22, 2025 17:18
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "criteria": { | |
| "fact_check_qa": { | |
| "status": "recommended", | |
| "description": "The fact check questions and answers.", | |
| "value": [ | |
| { | |
| "question": "What is the name of the suspicious process?", | |
| "options": [ | |
| "cmd.exe", |
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "criteria": { | |
| "fact_check_qa": { | |
| "status": "recommended", | |
| "description": "The fact check questions and answers.", | |
| "value": [ | |
| { | |
| "question": "What is the name of the suspicious process?", | |
| "options": [ | |
| "cmd.exe", |
jt0dd
/ gist:2bfa02c420f75b286e40be9da6202d66
Created
January 22, 2025 17:15
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "criteria": { | |
| "fact_check_qa": { | |
| "status": "recommended", | |
| "description": "The fact check questions and answers.", | |
| "value": [ | |
| { | |
| "question": "What is the name of the suspicious process?", | |
| "options": [ | |
| "cmd.exe", |
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "criteria": { | |
| "fact_check_qa": { | |
| "status": "recommended", | |
| "description": "The fact check questions and answers.", | |
| "value": [ | |
| { | |
| "question": "What is the name of the suspicious process?", | |
| "options": [ | |
| "cmd.exe", |
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "criteria": { | |
| "fact_check_qa": { | |
| "status": "recommended", | |
| "description": "The fact check questions and answers.", | |
| "value": [ | |
| { | |
| "question": "What is the name of the suspicious process?", | |
| "options": [ | |
| "cmd.exe", |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| https://192.168.191.31:8006/ | |
| $i="$env:USERPROFILE\Desktop\EricZimmermanTools"; (New-Object Net.WebClient).DownloadFile('https://f001.backblazeb2.com/file/EricZimmermanTools/Get-ZimmermanTools.zip',"${i}.zip"); Expand-Archive "$i.zip" -DestinationPath $i; Remove-Item "$i.zip"; PowerShell "$i\Get-ZimmermanTools.ps1" -Dest "$i\Tools" | |
| & "$i\Tools\net6\PECmd.exe" -d "C:\Windows\Prefetch" --json "$i\Outputs" --csv "$i\Outputs" | |
| & "$i\Tools\net6\TimelineExplorer\TimelineExplorer.exe" | |
| & "$i\Tools\net6\EvtxECmd\EvtxECmd.exe" -d "C:\Windows\System32\winevt\Logs" --json "$i\Outputs" --csv "$i\Outputs" |
jt0dd
/ polling.js
Created
April 8, 2024 17:23
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| async function executeCommands(ssh, commands) { | |
| let commandOutput = ''; // Collect command output | |
| let currentIndex = 0; // Track the current command index | |
| let outputs = [] | |
| // Function to write the next command if available | |
| const writeNextCommand = () => { | |
| if (currentIndex < commands.length) { | |
| console.log('Executing command:', commands[currentIndex], 'of commands', commands); |
jt0dd
/ vagrant output.txt
Created
April 18, 2022 06:22
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| PS E:\red_team_attack_lab-main> vagrant up | |
| Bringing machine 'dc01' up with 'virtualbox' provider... | |
| Bringing machine 'win2022-1' up with 'virtualbox' provider... | |
| Bringing machine 'win2019-adcs' up with 'virtualbox' provider... | |
| Bringing machine 'win2019-1' up with 'virtualbox' provider... | |
| Bringing machine 'win10-1' up with 'virtualbox' provider... | |
| Bringing machine 'win10-2' up with 'virtualbox' provider... | |
| Bringing machine 'win11-1' up with 'virtualbox' provider... | |
| Bringing machine 'win10-dev' up with 'virtualbox' provider... | |
| Bringing machine 'win7-1' up with 'virtualbox' provider... |
jt0dd
/ how to install elasticsearch with kibana.md
Created
March 31, 2022 01:17
— forked from ionutale/how to install elasticsearch with kibana.md
a small guide to install elasticsearch stack on WSL 2 docker engine
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // my project is built with a framework I built called Manifest.JS, almost every file looks just like this: | |
| // creates a webpage element, the first two arguments are all you need to understand to complete this work: | |
| const elem = new Element('div', settingsObj) | |
| elem.appendTo(document.body) | |
| // to decide what happens in the element, settingsObj looks like this and every property is optional (empty settings would create an empty element): | |
| { | |
| name: 'hi', // helps debugging, just a name | |
| traits: { |
NewerOlder