anthro_packets - Network

Starting to dial in on my gluten- and dairy-free sandwich bread. The crumb is a bit tighter than I would like and the psyllium husk gives...

Starting to dial in on my gluten- and dairy-free sandwich bread.

The crumb is a bit tighter than I would like and the psyllium husk gives it a weird grayish-brown color, but it is still loads better than store-bought. Bigger too.

I might be a convert.

#glutenfree #dairyfree #bread

Ok, so it took me more than 10 minutes to figure out the right Caddyfile syntax for a reverse-proxy with TLS using DNS challenge from...

Ok, so it took me more than 10 minutes to figure out the right Caddyfile syntax for a reverse-proxy with TLS using DNS challenge from Cloudflare.

Caddy is great, and generally it is super easy, but this particular case was not.

So in the interest of saving some other poor frazzled soul like myself from digging through the interwebs, I'm throwing an example up on my blog. Hope it saves someone a few.

https://christopherbauer.org/blog/caddy-rev-proxy/

#homelab #caddy #reverseproxy

I'm just a frazzled dad and homeprodder sick of trying to get into docker containers. So have a little post on my journey into new-to-me...

I'm just a frazzled dad and homeprodder sick of trying to get into docker containers.

So have a little post on my journey into new-to-me tools that ease docker log retrieval/viewing. Happy sshing!

https://christopherbauer.org/blog/docker-trouble/

#selfhosted #selfhosting #docker #homelab

Transitioning my blog #Jekyll to #11ty came with some obstacles. I wrote up a few python scripts to practice my python skills and...

Transitioning my blog #Jekyll to #11ty came with some obstacles. I wrote up a few python scripts to practice my python skills and facilitate some of the drudgery. Well that was the goal, it was more like practicing my #regex skills.

It won't help everyone in the same situation but maybe it'll inspire:

https://christopherbauer.org/blog/migrating_jekyll/

I woke up this morning and realized I'm coddling my #k8s cluster in my #homelab just like the way I care for my houseplants. I decline to...

I woke up this morning and realized I'm coddling my #k8s cluster in my #homelab just like the way I care for my houseplants.

I decline to self-reflect on the meaning of these revelations.

I've rebuilt my blog using 11ty! I'd been using Jekyll with Github Pages previously and it was becoming clear that it was time to move on. ...

I've rebuilt my blog using 11ty!

I'd been using Jekyll with Github Pages previously and it was becoming clear that it was time to move on. My realization came when I recently upgraded my home machine and had to install backports on Debian to obtain a load of outdated software and dependencies just to recreate the local build flow.

Also, I never got ruby. 11ty has shown more flexibility around markdown's hybrid forms and I'm familiar with npm and node to a limited extent.

The migration was challenging. I wrote up a python script to translate image and frontmatter markdown syntax into nunjucks to migrate my old posts to the new theme I'm using. Who knew #python regex sub could accept the regex object's groups? Now this guy knows.

Jekyll was good to me but all things must change.

Built with the 11ty-wisp theme by @adjb.

And of course thanks to @zachleat and @eleventy.

#11ty #StaticWebsites

https://christopherbauer.org

Welp, I've written up the niche-y-est of niche posts. I'm sure it'll win me the gold star of obscurity Pointers on installing Graylog on...

Welp, I've written up the niche-y-est of niche posts. I'm sure it'll win me the gold star of obscurity

Pointers on installing Graylog on Proxmox with client config via Ansible.

#graylog #selfhosting #selfhosted

https://christopherbauer.org/2025/01/24/graylog.html

On my disorderly and belated absorption of good sysadmin habits, and a bit on creating a vsftp server as well...

On my disorderly and belated absorption of good sysadmin habits, and a bit on creating a vsftp server as well (non-Docker):

https://christopherbauer.org/2025/01/07/vsftpd.html

#selfhosting #selfhosted

M. R. Carey pulls off a masterful balancing act in the latest dilogy of Infinity Gate and Echo of Worlds. Somehow macro and micro scales,...

M. R. Carey pulls off a masterful balancing act in the latest dilogy of Infinity Gate and Echo of Worlds. Somehow macro and micro scales, engineering and combat, unit cohesion and teen dynamics, all make appearances while spinning a riveting scfi yarn. He has an uncanny way of capturing a lot of scifi trends all at once in a seemless way.

Carey is new to me, but I will be seeking out the back catalog for sure. Well done!

#bookstodon #scifibooks

New to me, the Sophos Active Adversary Report for H1 2024 says dell times are down to 5 days and in 43% of their investigations victims...

New to me, the Sophos Active Adversary Report for H1 2024 says dell times are down to 5 days and in 43% of their investigations victims didn’t have MFA. It wasn’t all reasons for gloom though:

“there are signs along the way that can alert defenders to a potential danger lurking in the network. Immediately detecting an intruder on an Active Directory server can mean stopping an attack in less than 24 hours. Spotting a data exfiltration event can prevent an even more devastating outcome”

#cybersecurity

https://news.sophos.com/en-us/2024/04/03/active-adversary-report-1h-2024/?amp=1

Just getting around to the Sophos H1 2024 report. A lot of interesting stuff, but I can’t read the following lines seriously because the...

Just getting around to the Sophos H1 2024 report. A lot of interesting stuff, but I can’t read the following lines seriously because the #talkingheads kick in as soon as I hit the question mark:

“RDP abuse has reached new heights, with 90% of attacks using it for internal lateral movement and 20% for external remote access. As for the 18% of organizations who still have RDP exposed to the internet, you should ask yourself, “My God, what have I done?””

“Letting the days go by….”

For those pentesters earlier on their career track like me, I wrote up a few steps on DACL abuse in AD with PowerView. I've run across...

For those pentesters earlier on their career track like me, I wrote up a few steps on DACL abuse in AD with PowerView.

I've run across a few DACL fumbles using Bloodhound Community Edition of late, and always used net.exe for much glorys.

Bloodhound is adamant on PowerView for opsec however and the instructions weren't too clear (not Bloodhound's fault).

Hope this can clear things up a tad and be a help to others' studies.

https://christopherbauer.org/2024/12/12/pv-dacl-mods.html

#penetrationtesting #pentesting #AD #Bloodhound

TIL that for some a role of Cyber Security Analyst Junior should have an experience requirement of "a minimum of 3 years in a mid-level...

TIL that for some a role of Cyber Security Analyst Junior should have an experience requirement of "a minimum of 3 years in a mid-level role."

What do words even mean anymore?

Hello kind people of Mastodon! Mastodon is a big part of my life, so I'm going to give finding work here a go as well.I'm looking...

Hello kind people of Mastodon! Mastodon is a big part of my life, so I'm going to give finding work here a go as well.

I'm looking for a junior penetration tester or cyber security analyst role. Should you have any leads, or simply be able to provide info, please reach out.

To give you a thumbnail background sketch: I'm a former Lecturer in Anthropology pivoting to Cyber Security. I recently passed the #OSCP and loved it. I have interests in writing and advising to make pentesting more accessible, IoT pentesting, and purple team work.

While I am looking for a first role, I'm open to freelance, contract, and part-time roles. I'm located in Seattle, though remote is welcome.

Boosts will be noted and the favor returned in due course!

Thanks everyone.

#fedihireme #fedihire #fedijobs #getfedhired #jobhunt #gethired

I'm really digging #Readeck after having been a Wallabag user for many years and a Shiori user after that. It's got a number of...

I'm really digging #Readeck after having been a Wallabag user for many years and a Shiori user after that. It's got a number of similar features and it's been a breeze to use. I really dig the annotations, that seems to be a feature that is difficult to find.

Not trying to throw shade on Wallabag - I got involved with it back in its pre-container days. I had to learn how to compile it as a total noob. It was just one of those pieces of software that you use as you are learning how computers work, wasting untold hours, and then can never go back to no matter the merits. There should be a german word for that kind of thing.

Anyway, if you're looking for an alternative, its a youngish app but its been good so far.

Thanks @readeck

#selfhosted #selfhosting

Whoops, must have configured echofeed wrong on my last post, the automatic notification didn't include a link to the blog. I'll...

Whoops, must have configured echofeed wrong on my last post, the automatic notification didn't include a link to the blog. I'll post a proper announcement in a minute.

Hey everyone, here is my fifth post on the Ansible config and my final post on OpenVPN for Orange Cyber Defense's Game of Active...

Hey everyone, here is my fifth post on the Ansible config and my final post on OpenVPN for Orange Cyber Defense's Game of Active Directory on bare-metal Proxmox. Hope you like lots of screencaps and written instructions!

With that, I can call this a success and wrap up my take on installing GOAD in an on prem home-lab. As always, I have to recognize Mayfly277's initial path-breaking work in providing the original guide.

Winter is coming. Happy pentesting!

https://christopherbauer.org/2024/11/18/goad-ansible.html

https://christopherbauer.org/2024/11/23/goad-vpn.html

#selfhosting #pentesting #proxmox #GOAD #GOADv2

Whoops, must have configured #echofeed wrong on my last post, the automatic notification didn't include a link to the blog. I'll...

Whoops, must have configured #echofeed wrong on my last post, the automatic notification didn't include a link to the blog. I'll post a proper announcement in a minute.

This is part 6 of my series on Orange Cyberdefense’s Game of Active Directory(GOAD) on Proxmox VE. In the fifth installment I covered how...

This is part 6 of my series on Orange Cyberdefense’s Game of Active Directory
(GOAD) on Proxmox VE. In the fifth installment I covered how to use Ansible to
configure the final domain layout and individual Windows VMs. In this post we’ll
setup the VPN server on pfSense to simulate an assumed breach. #Infosec # Anthropology

Hey all, here are my third and fourth posts on installing Orange CyberDefense's Game of Active Directory (GOAD). Not too much to...

Hey all, here are my third and fourth posts on installing Orange CyberDefense's Game of Active Directory (GOAD).

Not too much to troubleshoot with Packer and Terraform in these posts, they're relatively straightforward. Still, the install as a whole is complicated enough to justify these posts to contribute to a diversity and abundance of information that I found lacking when I got started.

As I said before, I'm deeply indebted to Mayfly277's OG instructions.

#selfhosting #pentesting #cybersecurity #proxmox #GOAD

https://christopherbauer.org/2024/11/14/templates.html

https://christopherbauer.org/2024/11/17/goad-terraform.html