The ramblings of a computer geek
Its always best to be using a user account authenticated via SSO (so you can have additional levels of security, e.g. MFA) on-top, and access AWS resources using a temporary Role (to provide the permissions). For most use cases e.g. interacting with the Web Console, using the CLI or performing development tasks via Cloudformation templates … Read more
We are currently going through a migration from on-premise Microsoft Exchange servers to Microsoft Exchange Online (Microsoft 365). We needed to determine what ActiveSync clients were in use to be able to provide guidance to users of what to do. So I wrote a simple script that retrieves all the mailboxes (that are enabled) and … Read more
Let’s say you’re needing to examine the logs using Splunk to find invalid logins, but perhaps the way the logging works from your application, Splunk is not able to identify the IP Address automatically. This isn’t a problem, you can use a Regex. So let’s say you’re looking for the string “failed login for user … Read more
Just like the testing of SMTP using Telnet, you can also perform the same steps if the target server is using TLS, however because telnet won’t do the job here, you can use OpenSSL instead. Here’s a simple example. Firstly get your Username and Password in Base64 format. You’ll get the Base64 encoded strings outputted … Read more
I was having trouble with the previous theme, it was not fully compatible with PHP 8.1, so I’ve swapped to a new theme for now.
Splunk is a great tool for visualising alerts and events, I’ve been creating a dashboard to aggregate all the failed logon attempts from management interfaces of our network switches, firewalls, storage etc. so that if someone tries to brute force password attempt the interfaces we have some visibility. Obviously the queries you need to use … Read more
Let’s say you have a certificate bundle in PKCS12 format, where you have the Private Key, the Public Key (Certificate Signed by a CA) and the Chain, and you need to break it down into its individual files for use within an application or the like. You can achieve this with the following set of … Read more
If you’re like me you probably have some home projects or CPD (Continuing Professional Development) on the go. Microsoft VSCode has the concept of Workspaces, so in my case I have a workspace for Personal projects and a workspace for Work projects. But it would be nice to be able to just start Microsoft VSCode … Read more
We had a need to upload a large volume of data to AWS S3, obviously we want this to upload as fast as possible, we choose to use the AWS S3 Sync tool; however to get the most performance out of it, you need to perform some tweaks to the configuration. Although you can make … Read more
Here’s a quick example configuration. I’m assuming you already have the AWS CLI packages installed, but if you need to use SSO to login to your AWS Organisation/Account, you can use the following example. AWS CLI Configuration File The AWS configuration file that should be located in: ~/.aws/config, with the contents such as: So let’s … Read more