Detecting CVE-2021-44228 aka Log4Shell
I wrote a script that will scan a list of IPs/Domains for CVE-2021-44228 (the recent Log4J exploit). Enjoy!
Tag bash
List all Public IP Addresses Across All of your AWS Accounts
How to Ingest Okta SIEM logs in to Graylog (Without Enterprise)
Learn step by step how to export and import Okta SIEM logs in to your open source Graylog! After many failed attempts to import Okta SIEM logs in to Graylog (using Okta Documentation and some PowerShell scripts I found online)…
Bulk Lookup Owner of IP Address
To perform a bulk whois lookup of a list of IP addresses use the following script: Bulk whois lookup while read ip; do if [ ! -z “$ip” ]; then echo -n “$ip – ” && whois $ip 2>/dev/null grep…
Querying McAfee ePo on End User Machines
Code loop through a range of IPs and query McAfee epo on client machines # Loop through IP address 10.0.0.10 – 10.0.0.20 and print out # the computer name and the agent version echo “” > output; for ((i=10;i<=20;i++)) do…
Script to Backup Alienvault OSSIM Master Server
Script to backup AlienVault OSSIM master server
diff two files and output lines not seen in file 2
Problem You need two diff two files and only output what is unique to file one. text file 1 contains: 1 2 3 4 5 text file 2 contains: 6 7 1 2 3 4 Solution $ awk ‘FNR==NR{a[$0]++;next}!a[$0]’ file1…
kill orphaned httpd processes
to kill orphaned httpd processes create a script called killhttpd.sh with the following code #!/bin/bash for pid in `ps -C httpd|sed -e ‘s/^\ \+//g’ | grep httpd|awk ‘{print $1}’` do kill $pid done