- veth device from CNI/CNM plugin: eth0
- tap device that connects to the VM: tap0
tc qdisc add dev eth0 ingress
tc filter add dev eth0 parent ffff: protocol all u32 match u8 0 0 action mirred egress redirect dev tap0
Ludo spiarh
spiarh
/ tc mirroring.md
Created
June 19, 2023 12:49
— forked from mcastelino/tc mirroring.md
Using tc redirect to connect a virtual machine to a container network
spiarh
/ keybase.md
Created
November 20, 2022 16:59
I hereby claim:
- I am spiarh on github.
- I am spiarh (https://keybase.io/spiarh) on keybase.
- I have a public key whose fingerprint is 0E48 FE7E CBF8 48A8 D1E7 66B1 3D0B 8542 94E0 8BC8
To claim this, I am signing this object:
spiarh
/ asd.py
Created
August 29, 2022 19:07
— forked from LiveOverflow/asd.py
C Application Firewall
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import struct | |
| import socket | |
| s = socket.socket() | |
| s.connect(('127.0.0.1', 1337)) | |
| r = s.recv(1024) | |
| s.send("%p,%p,%p\n") | |
| while ',' not in r: | |
| r = s.recv(1024) | |
| start_buf = int(r.split(',')[1], 16)-9 |
spiarh
/ killbutmakeitlooklikeanaccident.sh
Created
July 20, 2022 15:23
— forked from moyix/killbutmakeitlooklikeanaccident.sh
Script to inject an exit(0) syscall into a running process. NB: only x86_64 for now!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| gdb -p "$1" -batch -ex 'set {short}$rip = 0x050f' -ex 'set $rax=231' -ex 'set $rdi=0' -ex 'cont' |
spiarh
/ main.go
Created
March 21, 2022 09:54
— forked from enricofoltran/main.go
A simple golang web server with basic logging, tracing, health check, graceful shutdown and zero dependencies
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "context" | |
| "flag" | |
| "fmt" | |
| "log" | |
| "net/http" | |
| "os" | |
| "os/signal" |
spiarh
/ awk_netstat.sh
Created
September 21, 2021 21:20
— forked from staaldraad/awk_netstat.sh
AWK to get details from /proc/net/tcp and /proc/net/udp when netstat and lsof are not available
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Gawk version | |
| # Remote | |
| grep -v "rem_address" /proc/net/tcp | awk '{x=strtonum("0x"substr($3,index($3,":")-2,2)); for (i=5; i>0; i-=2) x = x"."strtonum("0x"substr($3,i,2))}{print x":"strtonum("0x"substr($3,index($3,":")+1,4))}' | |
| # Local | |
| grep -v "rem_address" /proc/net/tcp | awk '{x=strtonum("0x"substr($2,index($2,":")-2,2)); for (i=5; i>0; i-=2) x = x"."strtonum("0x"substr($2,i,2))}{print x":"strtonum("0x"substr($2,index($2,":")+1,4))}' | |
| # No Gawk | |
| # Local | |
| grep -v "rem_address" /proc/net/tcp | awk 'function hextodec(str,ret,n,i,k,c){ |
spiarh
/ exec.go
Created
July 7, 2021 06:55
— forked from hichihara/exec.go
Golang exec command unit test
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "os/exec" | |
| "strconv" | |
| "strings" | |
| ) | |
| var execCommand = exec.Command |
spiarh
/ 1-to-3-masters.md
Last active
January 27, 2021 09:47
spiarh
/ README.md
Created
June 19, 2020 15:04
— forked from detiber/README.md
Using CFSSL as an external CA for kubeadm
spiarh
/ source-ip-app.yaml
Created
June 15, 2020 12:02
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| generation: 1 | |
| labels: | |
| app: source-ip-app | |
| name: source-ip-app | |
| namespace: default | |
| spec: |
NewerOlder