Skip to content

Instantly share code, notes, and snippets.

View juljeanpierre's full-sized avatar
:electron:
Updates coming soon...

Jean-Pierre J juljeanpierre

:electron:
Updates coming soon...
8 followers · 15 following
View GitHub Profile
@juljeanpierre
juljeanpierre / Block_AWS_S3_SSE-C.md
Last active February 11, 2025 08:46

Disable Amazon S3 SSE-C Encryption

When using SSE-C encryption the key is generated and stored outside your AWS Account (client-side). So if IAM accessKeys were compromised and the keys are associated with permissions to S3, the user could encrypt with SSE-C and hold the data ransom with the encryption key in their possession.

SSE-C

Image generated with ChatGPT.

This RCP contains a statement to DENY/BLOCK the use of SSE-C Encryption on objects in Amazon S3 buckets within your organization.

@juljeanpierre
juljeanpierre / CustomVerificaitonEmail.md
Last active March 22, 2025 19:48
Customize Verification code emails in Amazon Cognito? Using Lambda!

How to customize Verification code emails in Amazon Cognito? Using Lambda!

You can create a lambda function that intercepts Cognito Sync Trigger in order to override the message.

Image

Problem:

If you have e-mail verification enabled in Cognito which in most cases you should have the user copies the received verification code from the e-mail in-order to paste it in your app. This is the same for when a user uses the ForgotPassword feature. The problem is that the e-mails sent from Cognito by default is sent in PLANETEXT.

@juljeanpierre
juljeanpierre / README.md
Last active May 19, 2020 05:37
Enforce MFA for getSigninToken on AWS

Enforce MFA for getSigninToken on AWS

Enabling Custom Identity Broker Access to the AWS Console

You can write and run code to create a URL that lets users who sign in to your organization's network securely access the AWS Management Console. The URL includes a sign-in token that you get from AWS and that authenticates the user to AWS.

Example Code [Python]
@juljeanpierre
juljeanpierre / gcloud_cheat_sheet.md
Created March 26, 2020 13:46 — forked from pydevops/gcloud-cheat-sheet.md
gcp gcloud cheat sheet
@juljeanpierre
juljeanpierre / ca.md
Created February 4, 2019 06:28 — forked from soarez/ca.md
How to setup your own CA with OpenSSL

How to setup your own CA with OpenSSL

For educational reasons I've decided to create my own CA. Here is what I learned.

First things first

Lets get some context first.

@juljeanpierre
juljeanpierre / Spamhaus.py
Last active March 10, 2021 10:39
Extracting sbls from Spamhaus
import os
import urllib.request
import re
from bs4 import BeautifulSoup
# regEx to extract IP, SBL, Date & Time
IPregex = r'\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}'
SBLregex = r'\w{3}\d{6}'
DTregex = r'\d{1,2}\-\w{3}\-\d{4} \d{2}\:\d{2} \w{3}'
@juljeanpierre
juljeanpierre / FootPrint.py
Last active September 28, 2022 12:44
Footprint, An information-gathering script that allows you to find available information about an URL, host name, IP address or domain, including country, state or province, city, name of the network provider, administrator, and technical-support contact information.
import requests
import sys
import socket
from ipwhois import IPWhois
from pprint import pprint
from datetime import datetime
from tld import get_fld
from tld.utils import update_tld_names
update_tld_names()