Skip to content

Instantly share code, notes, and snippets.

View webframp's full-sized avatar

Sean Escriva webframp

View GitHub Profile
  • There is debate around whether Kyber-512 provides adequate security compared to the AES-128 benchmark. NIST claims it meets this level factoring in memory access costs, but others argue the analysis is uncertain.

  • NIST's analysis added 40 bits of estimated security to Kyber-512's post-quantum security level due to memory costs, bringing it above the AES-128 threshold. Critics question this calculation.

  • NTRU provides greater flexibility than Kyber in supporting a wider range of security levels. At some levels it also has better performance and security than Kyber options.

  • The security of lattice-based cryptosystems like Kyber and NTRU is not fully understood, and there is a risk of better attacks being discovered in the future.

  • Standardizing a system like Kyber-512 that may have limited security margin could be reckless given lattice cryptanalysis uncertainties.

@webframp
webframp / flake.nix
Last active October 6, 2023 05:43
trying out a team tooling flake
{
description = "some nix based tooling";
inputs = {
# Default to nixpkgs unstable channel - ensure we have access to latest tools
nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
# Pure Nix flake utility functions, can simplify some tasks
flake-utils.url = "github:numtide/flake-utils";
};
@webframp
webframp / kerberos_attacks_cheatsheet.md
Created September 13, 2021 20:56 — forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks

Kerberos cheatsheet

Bruteforcing

With kerbrute.py:

python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>

With Rubeus version with brute module:

@webframp
webframp / darwin-configuration.nix
Created November 9, 2020 20:48
nix-darwin experiments
{ config, lib, pkgs, ... }:
{
# Enable User Setup
# https://rycee.gitlab.io/home-manager/index.html#sec-install-nix-darwin-module
imports = [ <home-manager/nix-darwin> ];
home-manager.useGlobalPkgs = true;
networking.hostName = "megatron";
@webframp
webframp / darwin-configuration.nix
Created October 9, 2020 02:10
Getting started with nix-darwin
{ config, lib, pkgs, ... }:
{
# Enable User Setup
# https://rycee.gitlab.io/home-manager/index.html#sec-install-nix-darwin-module
imports = [ <home-manager/nix-darwin> ];
home-manager.useGlobalPkgs = true;
# System settings
# Explained: https://gist.github.com/MatthewEppelsheimer/2269385
@webframp
webframp / README.md
Created August 21, 2020 19:32 — forked from dnozay/README.md
Collection of useful stuff for interacting with gitlab.

Reset root/admin password

Lost the root/admin password? You can reset it using the command-line. Recipe adapted from gitlab issue #308.

# start the console
sudo gitlab-rails console
@webframp
webframp / CVE-2019-19781-firstresponse.md
Last active January 18, 2020 01:00
CVE-2019-19781 - Live Response First Steps from @darkQuassar

CVE-2019-19781 Response steps - Have I been compromised?

Critical Exposure in Citrix ADC (NetScaler) – Unauthenticated Remote Code Execution

Credit: Suggested steps taken from twitter post by @darkQuassar

Just converted to copy/pastable gist for easy access

Check the root user command history

@webframp
webframp / config.el
Created November 12, 2019 17:09
doom emacs config dir .doom.d
;;; ~/.doom.d/config.el -*- lexical-binding: t; -*-
;; To modify or add binding for existing modules use add-hook! or after! macros
;; https://github.com/hlissner/doom-emacs/wiki/Customization#reconfigure-packages
;; HOTFIX for Emacs 26.1 and gnutls 3.6 - no longer needed?
;; https://www.reddit.com/r/emacs/comments/cdf48c/failed_to_download_gnu_archive/
;; (setq gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3")
;;; UI
@webframp
webframp / test.md
Created September 24, 2019 00:56
a sample md file

Title

Subheading

a url A site was established by CNAME record domain DNS.

A list of long items

  • Create: a really long command line tool example that goes to far past the 80 character limit
@webframp
webframp / zsh_to_fish.py
Created September 4, 2018 22:11 — forked from dvdbng/zsh_to_fish.py
Migrate zsh history to fish
import os
import re
def zsh_to_fish(cmd):
return (cmd.replace('&&', '; and ')
.replace('||', '; or '))
def is_valid_fish(cmd):