Watch video on YouTube here: https://youtu.be/Nq0fAwyIql0 by Johnny Netsec
This is a quick and simple video to show how to remove broken VMs from Hyper-V manager. I got this issue due to my D drive died. All VMs and configurations saved on D drive. Since D drive has gone, Hyper-V keeps those broken VMs and there is no way directly remove them from GUI interface. Two PowerShell commands are working well here to clean those broken VMs from Hyper-V manager: 1. get-vm 2. remove-vm -name (VM's name) -force ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/Nq0fAwyIql0 by Johnny Netsec
0 Comments
Run Free Arm-based Oracle Linux with 1 oCPU and 6G Ram
ARM is a RISC architecture. RISC stands for Reduced Instruction Set Computing. This means that the CPU has a limited number of instructions it can use. As a result, each instruction runs in a single cycle and the instructions are simpler. Meanwhile, x86 is a CISC architecture, which stands for Complex Instruction Set Computing. ARM is designed to be smaller, more energy-efficient, and creates less heat. One problem is that x86 programs can’t run on ARM. Most programming languages can target ARM just fine. Any currently-maintained programs should have few problems. Anything written in Assembly will need to be rewritten to work on ARM though. There’s also an issue of speed. Since ARM has fewer instructions, developers need to use more instructions. Choose Oracle Image. Default username is opc System UpdateCheck System Public IP: [root@arm1 ~]# curl https://ip.51sec.org/api 132.145.100.226
Update CentOS 8system to latest:
[root@arm1 ~]# yum upgrade -y && yum update -y Install Docker
dnf install -y dnf-utils zip unzip
dnf config-manager --add-repo=https://download.docker.com/linux/centos/docker-ce.repo
dnf remove -y runc
dnf install -y docker-ce --nobest
# systemctl enable docker.service
# systemctl start docker.service
# systemctl status docker.service
# docker info
# docker version
Install Docker-Compose
sudo yum install -y libffi libffi-devel openssl-devel python3 python3-pip python3-devel
sudo pip3 install docker-compose
Install Portainer
[root@arm1 ~]# docker volume create portainer_data
portainer_data
[root@arm1 ~]# docker run -d -p 9000:9000 --name portainer --restart always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer-ce:latest
Run a Ubuntu 20.04 Desktop
docker run -p 6080:80 fredblgr/ubuntu-novnc:20.04
http://<Public IP>:6080
From Ubuntu terminal, you can install firefox to have a browser for your internet.
apt install firefox -y
References
via Blogger https://ift.tt/2VQDvnI July 19, 2021 at 06:06PM Cloud
This video shows how to integrate your Thycotic SS cloud with your AD and how to do remote password change on AD secret. Thycotic SS Playlist: https://www.youtube.com/playlist?list=PLg7bL1bMpwPVDES-E5aaT8bIef8O4sq9- Thycotic Secret Server Series: 1. Thycotic Secret Server Installation with MS SQL Express DB- https://youtu.be/9judmWvSnAA 2. Licensing and AD integration - https://youtu.be/VcuCxTB9Q64 3. Remove Extra Domain Configuration - https://youtu.be/GpvUurZUb1E 4. Install CA Signed SSL Certificate (IIS) - https://youtu.be/yz0kTd8mvBA 5. Onboarding AD Account - https://youtu.be/SlpNGJFEDm8 6. Onboard Web Password - https://youtu.be/LXbezLg0wEw 7. Session Recording - https://youtu.be/VOYvtoRqgyE 8. Remote Password Changing - https://youtu.be/b4KgDMUn-UE 9. Install TSS with MS SQL Database - https://youtu.be/U5gX2im5COM 10.Linux SSH Key Onboarding and Rotation - https://youtu.be/GiM2mpiqsT0 11.Onboard Cisco Device Credentials - https://youtu.be/0xj2Aw6hXHI 12.Create Password Changer for Cisco User Secret Onboarding - https://youtu.be/WszYctTNrPw 13.Discovery - https://youtu.be/gyA0b9_VwXM 14.Workflow - https://youtu.be/QcuTm8e0SLU 15.Update Thycotic Secret Server is So Easy - https://youtu.be/nPR7c8z4izs 16.Thycotic Free Secret Server Installation - https://youtu.be/4iTifCf4FSQ 17.Free Thycotic Secret Server's Limitations - https://youtu.be/l2lB0LGFo8c 18.SSH Proxy - https://youtu.be/B3H-OIKehME 19.RDP Proxy - https://youtu.be/RSt1ZJW-nxM 20.Distributed Engine - https://youtu.be/7QJf7X23EAA Thycotic Secret Server Cloud Series: 1. Get TSS Cloud Trial - https://youtu.be/L-Gss2HEHZY 2. Local Login and Install Distributed Engine - https://youtu.be/iGIUoHaJ_Sc 3. AD integration and Remote Password Chagne - https://youtu.be/jNe9HPLO5wU ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/jNe9HPLO5wU by Johnny Netsec
This is second video in Thycotic Secret Server cloud series. It shows how to create your local login users and how to download / install distributed engine to your on premise environment. Thycotic SS Playlist: https://www.youtube.com/playlist?list... Thycotic Secret Server Series: 1. Thycotic Secret Server Installation with MS SQL Express DB- https://youtu.be/9judmWvSnAA 2. Licensing and AD integration - https://youtu.be/VcuCxTB9Q64 3. Remove Extra Domain Configuration - https://youtu.be/GpvUurZUb1E 4. Install CA Signed SSL Certificate (IIS) - https://youtu.be/yz0kTd8mvBA 5. Onboarding AD Account - https://youtu.be/SlpNGJFEDm8 6. Onboard Web Password - https://youtu.be/LXbezLg0wEw 7. Session Recording - https://youtu.be/VOYvtoRqgyE 8. Remote Password Changing - https://youtu.be/b4KgDMUn-UE 9. Install TSS with MS SQL Database - https://youtu.be/U5gX2im5COM 10.Linux SSH Key Onboarding and Rotation - https://youtu.be/GiM2mpiqsT0 11.Onboard Cisco Device Credentials - https://youtu.be/0xj2Aw6hXHI 12.Create Password Changer for Cisco User Secret Onboarding - https://youtu.be/WszYctTNrPw 13.Discovery - https://youtu.be/gyA0b9_VwXM 14.Workflow - https://youtu.be/QcuTm8e0SLU 15.Update Thycotic Secret Server is So Easy - https://youtu.be/nPR7c8z4izs 16.Thycotic Free Secret Server Installation - https://youtu.be/4iTifCf4FSQ 17.Free Thycotic Secret Server's Limitations - https://youtu.be/l2lB0LGFo8c 18.SSH Proxy - https://youtu.be/B3H-OIKehME 19.RDP Proxy - https://youtu.be/RSt1ZJW-nxM 20.Distributed Engine - https://youtu.be/7QJf7X23EAA ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/iGIUoHaJ_Sc by Johnny Netsec
This video is to show you how to apply a TSS cloud trial. The process is super simple and easy. You will get 1 month free trial to play with it. It is similar as your local TSS deployment which you can integrate with your on premise infrastructure. Thycotic SS Playlist: https://www.youtube.com/playlist?list... Thycotic Secret Server Series: 1. Thycotic Secret Server Installation with MS SQL Express DB- https://youtu.be/9judmWvSnAA 2. Licensing and AD integration - https://youtu.be/VcuCxTB9Q64 3. Remove Extra Domain Configuration - https://youtu.be/GpvUurZUb1E 4. Install CA Signed SSL Certificate (IIS) - https://youtu.be/yz0kTd8mvBA 5. Onboarding AD Account - https://youtu.be/SlpNGJFEDm8 6. Onboard Web Password - https://youtu.be/LXbezLg0wEw 7. Session Recording - https://youtu.be/VOYvtoRqgyE 8. Remote Password Changing - https://youtu.be/b4KgDMUn-UE 9. Install TSS with MS SQL Database - https://youtu.be/U5gX2im5COM 10.Linux SSH Key Onboarding and Rotation - https://youtu.be/GiM2mpiqsT0 11.Onboard Cisco Device Credentials - https://youtu.be/0xj2Aw6hXHI 12.Create Password Changer for Cisco User Secret Onboarding - https://youtu.be/WszYctTNrPw 13.Discovery - https://youtu.be/gyA0b9_VwXM 14.Workflow - https://youtu.be/QcuTm8e0SLU 15.Update Thycotic Secret Server is So Easy - https://youtu.be/nPR7c8z4izs 16.Thycotic Free Secret Server Installation - https://youtu.be/4iTifCf4FSQ 17.Free Thycotic Secret Server's Limitations - https://youtu.be/l2lB0LGFo8c 18.SSH Proxy - https://youtu.be/B3H-OIKehME 19.RDP Proxy - https://youtu.be/RSt1ZJW-nxM 20.Distributed Engine - https://youtu.be/7QJf7X23EAA ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/L-Gss2HEHZY by Johnny Netsec
This video shows a simple way to use Pi-hole to create a family safe and ads-free network. Pi-hole can run on an old and low performance pc just like what I am using, HP ThinClient T610. Using docker can simplify whole deployment process with just one script to run. Pi-hole can filter ads URL's dns request. Using OpenDNS familysheild DNS servers as Pi-hole's upstream server can help Pi-hole to block four categories websites, which make your home network become family safe network. Related videos: ⚡HP T510 ThinClient Hard Drive and Memory Replacement - https://youtu.be/GgQf-ZZt1mU ⚡Docker playlist - https://www.youtube.com/watch?v=SxtUfoxc0B8&list=PLg7bL1bMpwPVLYIvmb7aBthWszIsIfTOn ⚡OpenWRT Adblock Installation and Configuraiton - https://youtu.be/lzjZ4b5xMwY Related posts: ⚡Docker Usage Introduction (Tips and Tricks) - https://ift.tt/3hH0c51 ⚡Run Pi-hole Docker in my home Ubuntu Server for Family Safe and Ads Blocking - https://ift.tt/2Vhia6P ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/KB8Zf4GlxZI by Johnny Netsec
GNS3 - Create GRE Tunnel Lab Using 3640 IOS
This post is a quick sum up how to get GNS3 VM running in your VMWare environment. A basic GRE tunnel lab has been created for demonstrating the configuration. Download & Start GNS3 VMhttps://ift.tt/3gbeuIN The GNS3 VM is recommended for most situations when you are using Windows or Mac OS. The GNS3 development team have worked hard to create a lightweight, robust way of creating GNS3 topologies that avoids multiple common issues experienced when using a local install of GNS3. It is about 1GB file. After unzipped the file, you will get a "GNS3 VM.ova" file, which you can double click on it to import it into your VMWare workstation. For better performance, I gave this VM 8G Ram and 4 vCoure CPU. Adding Cisco IOS Dynamips RoutersBy default, you can add virtual pcs, switches, hub, frame relay switch, nat cloud, atm switch, etc. You will need to manual add cisco ios routers. Go to preferences -> Dynamips -> Add IOS router template. You can find out which image is best for GNS3: https://ift.tt/3qQgdK9 C3620The c3620 supports up to 2 Network Modules (maximum of 8 Ethernet ports, 32 FastEthernet ports or 8 serial ports). Note that tt shouldn’t be used since the latest available IOS image is very old. IOS version 12.2.26c#File name: c3620-a3jk8s-mz.122-26c.bin MD5: dd34b958ad362ef54ba48b187f4c97b4 Minimum RAM: 64MB Proposed idle-PC value: 0x603a8bac C3640#The c3640 supports up to 4 Network Modules (maximum of 16 Ethernet ports, 32 FastEthernet ports or 16 serial ports). IOS version 12.4.25d (Mainline)#File name: c3640-a3js-mz.124-25d.bin MD5: db9f63ca1b46d18fb835496bfffe608a Minimum RAM: 128MB Proposed idle-PC value: 0x6050b114 From: https://ift.tt/2UskTK0
Create a simple GRE Lab topologyR1 and R2 are 3640. Create vlan in 3640 switch module:R1# vlan databaseR1(vlan)#show R1(vlan)#vlan 3
R1(vlan)#exit
R1(config)# interface fastethernet3/11 R1(config-if)# switchport mode access R1(config-if)# switchport access vlan 3 R1(config-if)# end Basic GRE configuration on R1 router:
@R1
interface Tunnel1
ip address 10.102.255.254 255.255.255.0
ip mtu 1400
tunnel source Ethernet1/0
tunnel destination 192.168.3.2
tunnel path-mtu-discovery
!
interface FastEthernet0/0
ip address 192.168.100.1 255.255.255.0
duplex auto
speed auto
!
interface Ethernet1/0
ip address 192.168.3.1 255.255.255.0
half-duplex
!
ip route 192.168.101.0 255.255.255.0 Tunnel1
The Process for Cisco Router Debugging IP TrafficNote: PLEASE make sure to use this commands very carefully. If there's a lot of traffic between hosts you may crash the router. 1) Turn "on" process switching under both interfaces in the router.Router(config)#interface e1/0 Router(config-if)#no ip route-cache Router(config)#interface f0/0 Router(config-if)#no ip route-cache 2) Create an access-list. Define specific traffic you want to monitor between hosts.For example: Router(config)#access-list 199 permit tcp host x.x.x.x eq Router(config)#access-list 199 permit tcp host y.y.y.y eq 3) If you are in a telnet session into the router turn "terminal monitor" on.Router#term mon If you are in a console session into the router, then the "logging console" command. Router(config)#logging console 4)Finally the debug command.Router#debug ip packet 199 detail Where 199 is the access-list # we created. 5)Use the "un all" command to turn it off.Router#un all Here is a link also where you can find this procedure: Using the Debug Command. http://www.cisco.com/warp/public/63/ping_traceroute.html#usingdbg If you turn on "process switching" on only one interface, you will only be able to debug traffic on that particular interface as well. via Blogger https://ift.tt/3dP6tKP July 06, 2021 at 09:19AM Network
Tycotic DevOps Secrets Vault (DSV)
ProductThycotic’s DevOps Secrets Vault is a high velocity vault that centralizes secrets management, enforces access, and provides automated logging trails. This cloud-based solution is platform agnostic and designed to replace hard-coded credentials in applications, micro-services, DevOps tools, and robotic process automation. This vault ensures IT, DevOps and Security teams the speed and agility needed to stay competitive without sacrificing security. DevOps Secrets Vault is deployed as an API-as-a Service. Organizations can sign-up and create their first secrets in minutes with no infrastructure to manage or maintain. Key Features
Free Version and QuickstartThycotic offers a feature-complete, non-time-limited free version of DevOps Secrets Vault that supports up to 250 Secrets and 2500 API calls a month. Signing up for the free version is the first step in getting a DevOps Secrets Vault tenant even if you plan to upgrade to a paid plan immediately. To get started with guided help, go to the Quick Start section. When you are ready to begin your trial, head here to sign-up for a free tenant: DevOps Secrets Vault Free and download the CLI here: DevOps Secrets Vault CLI
Quick Links (https://ift.tt/3dNIvzw)Thycotic Links
Third-Party Downloads
via Blogger https://ift.tt/3jKN9Cf July 06, 2021 at 09:18AM Thycotic
Raspberry Pi 2 Model B Basic Configuration Part 2 - Install Hypriot OS, Pi-hole etc
This is the second post regarding basic configuration of Raspberry Pi 2. Timezone changeBy default, Raspberry Pi 2 will use UTC time. Command tzselect will give you continent and country selection to pick.
Access the Raspberry Pi DesktopXRDP service will allow you to use remote desktop to access Raspberry Pi GUI through VNC service.
List System Information
HypriotOS/armv7: pirate@black-pearl in ~
$ ls /etc/*release
/etc/os-release
HypriotOS/armv7: pirate@black-pearl in ~
$ cat /etc/os-release
PRETTY_NAME="Raspbian GNU/Linux 10 (buster)"
NAME="Raspbian GNU/Linux"
VERSION_ID="10"
VERSION="10 (buster)"
VERSION_CODENAME=buster
ID=raspbian
ID_LIKE=debian
HOME_URL="http://www.raspbian.org/"
SUPPORT_URL="http://www.raspbian.org/RaspbianForums"
BUG_REPORT_URL="http://www.raspbian.org/RaspbianBugs"
HypriotOS/armv7: pirate@black-pearl in ~
$
Add Cron JobAdd a cron job to halt Raspberry Pi at 23:00 everyday.
Install PortainerDocker and Docker-Compose has been installed. The default credentials for the image are user pirate with password hypriot.
You always can change it from raspi-config menu.
Check docker version and docker-compose version.
HypriotOS/armv7: root@black-pearl in ~
# docker version
Client: Docker Engine - Community
Version: 19.03.12
API version: 1.40
Go version: go1.13.10
Git commit: 48a6621
Built: Mon Jun 22 15:53:41 2020
OS/Arch: linux/arm
Experimental: false
Server: Docker Engine - Community
Engine:
Version: 19.03.12
API version: 1.40 (minimum version 1.12)
Go version: go1.13.10
Git commit: 48a6621
Built: Mon Jun 22 15:47:34 2020
OS/Arch: linux/arm
Experimental: false
containerd:
Version: 1.2.13
GitCommit: 7ad184331fa3e55e52b890ea95e65ba581ae3429
runc:
Version: 1.0.0-rc10
GitCommit: dc9208a3303feef5b3839f4323d9beb36df0a9dd
docker-init:
Version: 0.18.0
GitCommit: fec3683
HypriotOS/armv7: root@black-pearl in ~
# docker-compose version
docker-compose version 1.26.1, build 634eb50
docker-py version: 4.2.2
CPython version: 3.7.3
OpenSSL version: OpenSSL 1.1.1d 10 Sep 2019
HypriotOS/armv7: root@black-pearl in ~
#
Installing Portainer
HypriotOS/armv7: root@black-pearl in ~
# docker volume create portainer_data
portainer_data
HypriotOS/armv7: root@black-pearl in ~
# docker run -d -p 9000:9000 --name portainer --restart always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer-ce:latest
Unable to find image 'portainer/portainer-ce:latest' locally
latest: Pulling from portainer/portainer-ce
651a8e6e1630: Pull complete
56e38df73332: Pull complete
c559aeebeb38: Pull complete
Digest: sha256:79edf1302c9b4fdb06bc23321cc551e9118c29e6d668e12e23d4e58d993ab830
Status: Downloaded newer image for portainer/portainer-ce:latest
7434238c52b5c1a94d3cce7903c005ac7efe07ff3c250201ae7ccb683be4ee37
HypriotOS/armv7: root@black-pearl in ~
#
Install Hypriot OS on Raspberry Pi
An OS with build-In Docker support in Raspbian release
Blog: https://ift.tt/2fz4pdn
Github: https://ift.tt/3wdniWg
Download: https://ift.tt/36gAWgF
Default Credentials: user pirate with password hypriot.
Flashing tool: Etcher for Windows (x86|x64) (Portable) (https://ift.tt/2RsT4e1)
Install Pi-hole
note: https://ift.tt/32CDlku
nano docker-compose.yml
version: "3"
# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
services:
pihole:
container_name: pihole
image: pihole/pihole:latest
ports:
- "53:53/tcp"
- "53:53/udp"
- "67:67/udp"
- "80:80/tcp"
environment:
TZ: 'America/Toronto'
WEBPASSWORD: 'Change-it-to-your-own'
# We'll use host networking simply because it is way easier to setup.
network_mode: host
# Volumes store your data between container upgrades
volumes:
- './etc-pihole/:/etc/pihole/'
- './etc-dnsmasq.d/:/etc/dnsmasq.d/'
# Recommended but not required (DHCP needs NET_ADMIN)
# https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
cap_add:
- NET_ADMIN
restart: unless-stopped
Referencesvia Blogger https://ift.tt/3xiXCc1 July 05, 2021 at 10:05AM Raspberry Pi
This video is a quick demonstrate how to install TSS with MS SQL DB. It is a similar video as my previous one (1. Thycotic Secret Server Installation with MS SQL Express DB - https://youtu.be/9judmWvSnAA) The installation process is very straightforward. Any missing components or pre-requites will be automatically fixed for you by installation program. You will need to reboot once to fix https binding issue though. Other than that, it is just click, click , until done. Thycotic SS Playlist: https://www.youtube.com/playlist?list... Thycotic Secret Server Series: 1. Thycotic Secret Server Installation with MS SQL Express DB- https://youtu.be/9judmWvSnAA 2. Licensing and AD integration - https://youtu.be/VcuCxTB9Q64 3. Remove Extra Domain Configuration - https://youtu.be/GpvUurZUb1E 4. Install CA Signed SSL Certificate (IIS) - https://youtu.be/yz0kTd8mvBA 5. Onboarding AD Account - https://youtu.be/SlpNGJFEDm8 6. Onboard Web Password - https://youtu.be/LXbezLg0wEw 7. Session Recording - https://youtu.be/VOYvtoRqgyE 8. Remote Password Changing - https://youtu.be/b4KgDMUn-UE 9. Install TSS with MS SQL Database - https://youtu.be/U5gX2im5COM 10.Linux SSH Key Onboarding and Rotation - https://youtu.be/GiM2mpiqsT0 11.Onboard Cisco Device Credentials - https://youtu.be/0xj2Aw6hXHI 12.Create Password Changer for Cisco User Secret Onboarding - https://youtu.be/WszYctTNrPw 13.Discovery - https://youtu.be/gyA0b9_VwXM 14.Workflow - https://youtu.be/QcuTm8e0SLU 15.Update Thycotic Secret Server is So Easy - https://youtu.be/nPR7c8z4izs 16.Thycotic Free Secret Server Installation - https://youtu.be/4iTifCf4FSQ 17.Free Thycotic Secret Server's Limitations - https://youtu.be/l2lB0LGFo8c 18.SSH Proxy - https://youtu.be/B3H-OIKehME 19.RDP Proxy - https://youtu.be/RSt1ZJW-nxM 20.Distributed Engine - https://youtu.be/7QJf7X23EAA ==================================================================== If you found this video has some useful information✍, please give me a thumb up ✅ and subscribe this channel ?to get more updates?: ⚡https://www.youtube.com/c/Netsec?sub_confirmation=1 Learning and Sharing - 海内存知己,天涯若比邻 - ⚡http://51sec.org ?
Watch video on YouTube here: https://youtu.be/U5gX2im5COM by Johnny Netsec |
|