Commit graph

266 commits

Author SHA1 Message Date
Jonathan Hodgson
4d99c42607 The recommended value for x-xss-protection is now 0
The script will now recommend x-xss-protection is set to 0, in line with
the recommendation made by owasp.

https://owasp.org/www-project-secure-headers/#x-xss-protection
2021-03-24 13:48:07 +00:00
Jonathan Hodgson
49c7a32c7f Implements --dry-run for check call
It obviously can't answer a call that isn't coming in, but it creates
the rofi prompt
2021-03-21 13:37:55 +00:00
Jonathan Hodgson
0b4566affc Work on incoming calls
Unlike SXMO, I have opted to use rofi to prompt for an incoming call.
This allows me to have accept and decline buttons easily rather than
multiple notifications.
2021-03-21 13:05:30 +00:00
Jonathan Hodgson
fda4b1a8b4 Stops launcher using -normal-window flag
Still not entirely happy about this, might use dmenu instead of rofi.
Not sure yet
2021-03-21 12:54:12 +00:00
Jonathan Hodgson
9aae1fbcf8 Merge branch 'master' of ssh://git.jonathanh.co.uk:2222/jab2870/dotfiles 2021-03-21 12:48:41 +00:00
Jonathan Hodgson
f9301f1959 Improves power menu
Power menu will now add a suspend option for non-phones. Also, it
correctly calls i3lock if not on my phone
2021-03-21 12:47:31 +00:00
Jonathan Hodgson
830c040a92 Makes reverse shell script work if resize listener isn't available 2021-03-11 15:08:06 +00:00
Jonathan Hodgson
1ab519531c Initial work on modem functionality
Including, checking for incoming calls, missed calls, sms and the start
of a dialer using rofi
2021-03-02 18:35:57 +00:00
Jonathan Hodgson
afb6634bec Makes a start on dialer 2021-03-01 22:28:54 +00:00
Jonathan Hodgson
853f680702 Merge branch 'master' of ssh://git.jonathanh.co.uk:2222/jab2870/dotfiles 2021-03-01 19:09:38 +00:00
Jonathan Hodgson
cbe0fc1500 Update script to reflect renameing of rofi shutdown theme 2021-02-25 10:37:40 +00:00
Jonathan Hodgson
a6e3cd71d4 Fixes rofi shutdown command
I use an alias rather than an expanded variable so I can include an
empty parameter.

The rofi shutdown command now only needs a single click to select an
option
2021-02-25 09:55:11 +00:00
Jonathan Hodgson
4b298ca020 Bin: adds yt script
This script is used to search and view youtube videos in the command
line.
2021-02-22 20:54:21 +00:00
Jonathan Hodgson
c88b6fa18a Fix new message count 2021-02-18 21:17:19 +00:00
Jonathan Hodgson
0b22abd4b4 Start on sms checker script 2021-02-18 21:13:50 +00:00
Jonathan Hodgson
30558c7b2d Stops sms using data flag 2021-02-18 20:43:44 +00:00
Jonathan Hodgson
9fd64e9bb2 Fixes a bug where the modem number isn't correctly identified 2021-02-15 21:36:37 +00:00
Jonathan Hodgson
271c253178 Starts writing modem scripts
Currently, I only have one for sending sms messages.

Inspiration was taken from sxmo's send message script although I prefer
to send a message from a file so I don't have to worry about escaping
quotes etc.

Also, i make use of flags
2021-02-15 21:26:55 +00:00
Jonathan Hodgson
fb93abe720 Add script for turning nessus html to spreadsheet 2021-02-13 20:21:34 +00:00
Jonathan Hodgson
3f5663c362 Checks for an argument before setting a project
This fixes the bug where pushing esc whilst rofi menu is open would set
the project path to the main projects folder
2021-02-13 20:19:21 +00:00
Jonathan Hodgson
940c4e89f9 Adds mailto to linkhandler 2021-02-13 20:18:58 +00:00
Jonathan Hodgson
4fc3d50c1f Removes unnecesary notify-send 2021-02-13 20:18:14 +00:00
Jonathan Hodgson
0368bec228 Folder shell will now default to project path if no termial open 2021-02-13 20:17:01 +00:00
Jonathan Hodgson
5aa76ee721 Add xz to extract function 2021-02-13 20:16:37 +00:00
Jonathan Hodgson
a01eaad4d0 Fix dvd rip, gcd is now part of math 2021-02-13 20:16:07 +00:00
Jonathan Hodgson
aa807c8bad Adds !? and ?! for unicode lookup of introbang 2021-02-13 20:13:21 +00:00
Jonathan Hodgson
66a3424fb5 Merge branch 'master' of ssh://git.jonathanh.co.uk:2222/jab2870/Dotfiles 2021-02-13 20:12:02 +00:00
Jonathan Hodgson
865566dd04 Bin: fixes the lucky13 check
It apparently works with any cbc cipher and doesn't require tls1
2021-02-13 20:11:16 +00:00
Jonathan Hodgson
343f510ad0 Adds a small script for querying package versions in redhat 2021-02-13 20:10:21 +00:00
Jonathan Hodgson
e21b641651 Adds a command gmutt that opens my terminal with mutt loaded
Also adds a desktop file that allows mutt to handle mailto: links
2021-02-13 20:07:03 +00:00
Jonathan Hodgson
0af5b4e4df Changes the volume script to work with pulseaudio-ctl
https://github.com/graysky2/pulseaudio-ctl

using amixer is a pain and this takes a lot of the complexity out of it.

If pulseaudio-ctl isn't available, the script will still use amixer
2021-02-13 19:05:01 +00:00
Jonathan Hodgson
f08de9faf5 Adds phone support to password manager 2021-02-12 19:18:37 +00:00
Jonathan Hodgson
85ba44a508 Changes to rofi shutdown
Changes the icons and temporarily disables lock
2021-02-10 21:19:11 +00:00
Jonathan Hodgson
a3902ac559 Changes rofi shutdown script 2021-02-08 19:47:38 +00:00
Jonathan Hodgson
41082f1f06 Adds a launcher script
This is called from dwm to launch a program by name.

In its current state, it will launch rofi if it's available and dmenu if
not.
2021-02-07 20:54:22 +00:00
Jonathan Hodgson
5ae185e6c1 Add brightness script 2021-02-07 17:27:31 +00:00
Jonathan Hodgson
30dd026965 BIN: analyse-headers: bug fixes
A couple of bug fixes, removed some unnecesary echos and fixed crash if
name is too long to fit in the heading box
2021-01-25 11:14:57 +00:00
Jonathan Hodgson
d8e3b894c0 BIN: Adds lucky13 to verifySSL 2021-01-13 16:39:34 +00:00
Jonathan Hodgson
bd7337926e BIN: Small adjustments to verifySSL
The script now prepends the command that is echoed with a $ in order to
indicate it is a command that is run

Also stops the script showing each cipher that is tested
2021-01-13 16:30:33 +00:00
Jonathan Hodgson
064b53f2bf BIN: adds sweet32 test to verifySSL 2021-01-13 16:27:59 +00:00
Jonathan Hodgson
dd4b8e5161 BIN: makes the verifySSL print progress messages to stderr
I chose to do this because I want to be able to pipe stdout to a file
and use it as evidence. I don't need the progress for that
2021-01-13 16:21:01 +00:00
Jonathan Hodgson
995b2a516e BIN: starts verifySSL script
This will evolve to become a script that can be used to verify the
findings of a tool like testssl

Currently only supports "beast"
2021-01-13 16:09:28 +00:00
Jonathan Hodgson
349963cdad BIN: fix csp check in analyse-headers
the csp function didn't correctly return 1 when a missconfigured csp was
found
2021-01-11 14:09:40 +00:00
Jonathan Hodgson
3f01926ab6 Improve handling of CSP
Although I'd like to re-do the csp handling, this change fixes the
detection of unsafe-inline and unsafe-eval.
2021-01-11 12:16:18 +00:00
Jonathan Hodgson
e77aa36e70 Makes detection of x-frame-options value case insensitive
In other words, sameorigin == SAMEORIGIN == saMeOriGIN

This is in line with the spec for the header:

https://tools.ietf.org/html/rfc7034
2021-01-11 12:07:07 +00:00
Jonathan Hodgson
909a6e5e3c BIN: analyse-headers: improve expect-ct description 2020-12-11 15:38:28 +00:00
Jonathan Hodgson
b49d000408 BIN: analyse-headers: Checks the access-control-allow-origin header
Another suggestion by <Dom Ingram>.

For more details on the null issue, read here:
https://w3c.github.io/webappsec-cors-for-developers/#avoid-returning-access-control-allow-origin-null
2020-12-11 15:26:32 +00:00
Jonathan Hodgson
f669880037 BIN: analyse-headers: fix most shellcheck warnings
The only checks I haven't fixed are the unused variables for colours. I
may use them in the future so haven't removed them
2020-12-11 15:01:53 +00:00
Jonathan Hodgson
2e1dff91a3 BIN: analyse-headers: note on x-frame-options if frame-ancestors present
If the frame-ancestors content security policy is present, the
x-frame-options warning mentions that the content security helps
mitigate against clickjacking although for greater browser support,
x-frame-options should also be used

Thanks <Dom Ingram> for the suggestion
2020-12-09 16:39:11 +00:00
Jonathan Hodgson
1fabc27b79 BIN: analyse-headers: Adds generic version disclosure function
if the header contains the word "version" (case insensitively) it will
flag it as potential information disclosure

Thanks <Dom Ingram> for the suggestion
2020-12-09 16:26:47 +00:00