Karim El-Melhaoui karimelmel
karimelmel
/ gist:55bffa804cdd5399c68e3122aa44e654
Last active
October 30, 2023 12:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import json | |
| import os | |
| def add_secrets_to_environment(github_token, org_or_user, repo_name, environments_file): | |
| with open(environments_file, "r") as json_file: | |
| data = json.load(json_file) | |
| repositories = data.get("repositories", []) | |
| for repository in repositories: |
karimelmel
/ gist:f229d3194592c3cd3f21367204bfa5fa
Created
October 30, 2023 12:03
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import json | |
| import os | |
| def add_secrets_to_environments(github_token, org_or_user, repositories_file): | |
| with open(repositories_file, "r") as json_file: | |
| repos_data = json.load(json_file) | |
| repositories = repos_data.get("repositories", []) |
karimelmel
/ gist:73c0bed3d4bc4692a805aad7a63c7ef0
Last active
October 30, 2023 11:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # add_secrets_to_environment.py | |
| import requests | |
| import os | |
| import json | |
| def add_secrets_to_environment(github_token, org_or_user): | |
| # Load data from the repositories.json file | |
| with open("repositories.json", "r") as json_file: | |
| data = json.load(json_file) |
karimelmel
/ Get-AzureADPSPermissions.ps1
Created
August 10, 2022 11:48
— forked from psignoret/Get-AzureADPSPermissions.ps1
Script to list all delegated permissions and application permissions in Azure AD
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| .SYNOPSIS | |
| Lists delegated permissions (OAuth2PermissionGrants) and application permissions (AppRoleAssignments). | |
| .PARAMETER DelegatedPermissions | |
| If set, will return delegated permissions. If neither this switch nor the ApplicationPermissions switch is set, | |
| both application and delegated permissions will be returned. | |
| .PARAMETER ApplicationPermissions | |
| If set, will return application permissions. If neither this switch nor the DelegatedPermissions switch is set, |
karimelmel
/ cloudformer-cfn.yml
Created
September 26, 2020 17:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| AWSTemplateFormatVersion: 2010-09-09 | |
| Description: >- | |
| AWS CloudFormer Beta - template creation prototype application. This tool | |
| allows you to create an AWS CloudFormation template from the AWS resources in | |
| your AWS account. **Warning** This template creates a single EC2 instance in | |
| your account to run the application - you will be billed for the instance at | |
| normal AWS EC2 rates. | |
| Parameters: | |
| Username: | |
| Description: Username to log in to CloudFormer |
karimelmel
/ Apply-MitigationADV20006.ps1
Last active
March 25, 2020 13:32
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| Apply-MitigationADV20006.ps1 | |
| Implements mitigation for ADV200006 | |
| PowerShell. x64 only. | |
| #> | |
| function Apply-MitigationADV20006 | |
| { | |
| #Set Location to System32 | |
| Set-Location -Path $env:windir"\system32\" | |
| $Exists = Test-Path .\atmfd.dll |
karimelmel
/ ProtectIMDSWinFW.ps1
Last active
February 13, 2021 23:13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $blockPrincipal = New-Object -TypeName System.Security.Principal.NTAccount ("Everyone") | |
| $BlockPrincipalSID = $blockPrincipal.Translate([System.Security.Principal.SecurityIdentifier]).Value | |
| $exceptionPrincipal = New-Object -TypeName System.Security.Principal.NTAccount ("Administrators") | |
| $ExceptionPrincipalSID = $exceptionPrincipal.Translate([System.Security.Principal.SecurityIdentifier]).Value | |
| $PrincipalSDDL = "O:LSD:(D;;CC;;;$ExceptionPrincipalSID)(A;;CC;;;$BlockPrincipalSID)" | |
| New-NetFirewallRule -DisplayName "Block metatdata service for $($blockPrincipal.Value), exception: $($exceptionPrincipal.Value)" ` | |
| -Action Block ` | |
| -Direction Outbound ` | |
| -Protocol TCP ` |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Gathers credentials for connection to VMs. | |
| $VM1Creds = Get-Credential -UserName entmobsec.com\administrator -Message EntMobSec | |
| $VM2Creds = Get-Credential -UserName prod.com\administrator -Message Prod | |
| #EXPORT | |
| #Creates a PSSession to DC in Lab environment. | |
| $VM1session = New-PSSession -VMName "Server 2016" -Credential $VM1Creds | |
| #Backup all GPOs starting with name "Test" in |