Work-around: Docker Volumes on Windows without File and Print Sharing

We encountered an issue where a developer was trying to use Docker Desktop for Windows and kept getting a message about being unable to share their local volume. Company security policy disabled File and Printer Sharing at the firewall level which left us with some trouble for people trying to develop in docker on Windows Desktop.

To see the helper script, head over to the github repo

Windows 10: Disable persistent WiFi Auto-connect

I had an issue where WiFi auto-connect could not be disabled for a corporate WPA2-E network ("Connect automatically when in range" setting was not persisted). This can be an issue if you want to minimize your exposure to WiFi phishing attacks a-la WiFi Pineapple. Searching around I found a way that seems to let me disable the auto-connect.

How to set a pre-existing docker container to start on boot

Sometimes I forget to set the --restart=always on docker containers that should be persistent. Fortunately for me the creators of docker anticipated my use case and provide a quick way for me to rectify the issue.

Work-around for poor handling of High DPI screens in VMWare Workstation 14 (Kali Linux)

VMWare Workstation 14 does a poor job of handling High DPI screens. Linux VMs running on a laptop with a HiDPI screen don't display at the expected full-size. One way to work around this is using xrandr and display scaling from within the Virtual machine.

Lock down AWS Fargate networking when using ECR as an image repository

We setup an 'internal only' Fargate task the other day that locked down all outbound egress traffic. This required more effort than anticipated and I want to have some reference I can look back on in case I run into this issue again.

Updated: September 2019 to include notes on how other VPC Endpoints can impact Fargate tasks

Bitlocker asks to verify recovery key after switch to/from legacy boot

We ran out of disk space on an old Dell Latitude E5530 and wanted to upgrade without reinstalling Windows and applications. Clonezilla and an external SATA/USB drive enclosure were used to duplicate the disk.

Once the new disk was installed we had an issue where windows would not boot without validating the bitlocker encryption key. Unfortunately for us we hadn't backed up the recovery key. Fortunately, we were able to get around this issue.

WIFI from the CLI in Linux using wpa_supplicant

I rarely need to configure a wireless connection from the CLI, but when I do it seems like I can't find a concise set of notes on how to it. This page shows some notes I've found on how to successfully configure wifi using the linux CLI.

Troubleshooting Graphics Issues with Kali Linux 2019.2 on an Inspiron 11 3180 (AMD A6-9220e Radeon R4)

It's time to refresh Kali on the systems I take down to DEF CON each year and I was surprised to see Kali didn't "just work" out of the box on my inspiron 3180 like it has in the past. In troubleshooting the issue it appears that there is kernel issue that can cause graphical issues like freezing, flickering and black screen in Linux kernel 4.19 (used by Kali 2019.2).

Extract an APK From Android Devices using ADB

While working on a side project I had a need to extract an APK from my Android phone. This post briefly describes the process on how to do that.

Equipment used: Samsung phone with Android 9, Laptop running Ubuntu 18.04

Golang Implementation of AWS STS Auth Using Kerberos + ADFS

We leverage kerb-sts to authenticate developers to use the Amazon AWS API/CLI. kerb-sts is cross-platform and uses kerberos tickets generated as part of MS AD Domain authentication that Devs use to login to their workstations anyway. This use of kerberos makes it easy to track the identity of users across the environment.

Last week I ran into a rare instance where kerb-sts stopped functioning. 'Something' had changed in our environment which I could not easily determine and that left me in a bind. While I was able to figure out and solve the problem I realized that I needed to improve my depth of understanding around kerberos/ADFS and AWS STS, so I wrote a tool that attempts to perform this authentication in Golang.

If you want to cut to the chase and see the code, head on over to gkerb-sts to take a look