TESTING AZURE MACHINE CONFIGURATION USING POLICY

In my home lab, I have some automation of the configuration of virtual machines. For that configuration I use Ansible. But all of the virtual machines are Linux. This is the first attempt I have on using machine configuration with guest configuration agent and policy, in Azure to configure a VM. I have tried to configure Windows virtual machines earlier using Ansible. Ansible uses some DSC modules for some configurations, and I also use DSC in this configuration.

Mon, Jan 13, 2025 AzureVMconfigmachine configuration

AZURE_PRIVATE_ENDPOINT

Playing with a private endpoint in Azure I had some trouble with a private endpoint earlier this week, so I decided to try to figure out why. The problem was that the private endpoint did not resolve to a private IP address in Azure. The solution was quite easy. The virtual network where the resources are, needs to have the Azure DNS, or else you will need a DNS resolver.

Sat, Sep 28, 2024 Azureprivate endpointnetworkstorage accountvirtual machine

BLOODHOUND - HOW TO SET UP AND GET INFORMATION ABOUT YOUR ACTIVE DIRECTORY

Today, I wanted to try to use BloodHound in an Active Directory environment. I have used it before in pentesting exercises during my education. In this post, I will try to explain how I configured my environment and how you can get some data into BloodHound. From how I created a lot of users, groups and ou’s using the BadBlood repository from GitHub, how to configure BloodHound Community edition in docker using Portainer and install Sharphound to get the data from the AD.

Fri, Mar 29, 2024 ADbloodHoundsharphoundinfoactive directorybadbloodazureterrraformdockerportainer

USE HAVE I BEEN PWNED TO CHECK PASSWORDS IN ACTIVE DIRECTORY

Have I Been Pwned is a site that was created by Troy Hunt. With this site, you can check if your email is one of the emails that have been in one or more known data breaches. You can get different info about what has been leaked. He also has SHA1 and NTLM hashes of all of the passwords that he has found in known data breaches and made them downloadable.

Wed, Mar 27, 2024 haveibeenpawnedactive directorypassword

HUGO WEB SITE ADD SECURITY.TXT

A short post about how to add security.txt to your Hugo web site. A security.txt file is used for displaying information if some security researchers need to get hold of someone in the organisation behind the web page if there is a security incident. How to create security.txt Start with creating a .well-known directory in the root of your static directory in your Hugo site. In the new directory, create a security.

Mon, Mar 4, 2024 security.txtHugoweb-sitesecuritysecuritytxt.org

CREATE VM IMAGES IN AZURE AUTOMATICALLY USING PACKER

Today I wanted to try to create an image in Azure that can be used by virtual machines that I create in Azure. I decided that I was going to use Packer, a software that was created by HashiCorp. More information about Packer can be found at Link to Packer. Prerequisites Initial config Packer config file Packer Source Provisioner Variables Azure DevOps pipeline The result Cost Conclution Prerequisites A Azure account (If you don’t have a free account, this will cost some money) An Azure DevOps account A service connection from Azure DevOps to Azure.

Sun, Mar 3, 2024 packerazurevscodeazure devopspipeline

AI EXTENTION TO VIRTUAL STUDIO CODE

During Christmas time, I did see a post on X (Twitter) where someone used the Continue extension and lmstudio as a copilot-like feature in vscode. I decided that this was something I wanted to try out. One of the features in Continue that I found interesting is that it is possible to use different models for the AI. The local model looked very interesting since you don’t need to have a subscription or something like that to use this tool.

Sun, Jan 7, 2024 copilotaivscodecontinue.devlmstudio.ai

HOME SERVER SSL SETUP

I have had my home server running for multiple years now, and have always used self signed certificates for the services I run on it (none are public available). In my summer hollidays this year it was the time to stop doing that and setup “real” certificates for the services. In this blog post I will show how i did it, with my Home Assistant service. I will be using the following services:

Mon, Aug 7, 2023 Home AssistantSSLcloudflarenpmNginx Proxy Manager

COWRIE HONEYPOT

This was originally a weekend project, but that become a project that I did sink some hours into. Originally I was playing around with Terraform in Azure since I wanted to learn about it. And since I had a virtual machine running, why not use it for something interesting? Data was collected from 12:22 29.01.2023 (UTC) to 08:30 04.02.2023 (UTC). Setup/configuration Connect to the created machine Change port for SSH Update and install packages Add Cowrie user Clone repository Activate virtual environment Redirect port 22 to 2222 Start Stop Result IP’s Username Password Country Login attempts per day Files uploaded Log files Lesson learned Setup/configuration Sources used during the setup/configuration:

Sun, Feb 5, 2023 honeypotcowrieparsingTerraformPower Bi

HOME ASSISTANT - THE BEGINNING

This was a small project for setting up Home Assistant at my house. Nothing crazy to start with, only a pulse sensor for measuring the energy live from the electrical meter, a power measuring sensor for one electric heater oven, and a device to control my air-to-air heat pump. The project started a couple of weekends ago, so it has been running for about two weeks when I am writing this post.

Sun, Nov 6, 2022 Home AssistantRaspberry Piautomationpower consumptionIoT