Older posts
14
10
25
 Leave a comment

Recording and decrypting LDAPS traffic

Posted by | Network and Internet | Tagged |

Capturing LDAPS traffic with keylog file

sudo apt  install tcpdump
sudo tcpdump -i any -w ldaps.pcap 'tcp port 636' &
export SSLKEYLOGFILE=/home/dmitriano/dev/work/sslkeys.log
ldapsearch -H ldaps://$localhost:636 -x -D $ad_user -w $ad_password -b "DC=my,DC=local"
ll

-rw-r--r-- 1 tcpdump   tcpdump   246320 Oct 14 13:50 ldaps.pcap
-rw-r--r-- 1 dmitriano dmitriano    176 Oct 14 13:47 sslkeys.log
(more…)
10
10
25
 Leave a comment

Checking LDAPS logs on a domain controller

Posted by | Windows | Tagged |

Directory Service logs

I set Verbose level:

(Get-ItemProperty "HKLM:\SYSTEM\CurrentControlSet\Services\NTDS\Diagnostics")."16 LDAP Interface Events"

0

Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\NTDS\Diagnostics" -Name "16 LDAP Interface Events" -Value 5
(more…)
08
10
25
 2 Comments

How to remove terribly annoying English/Russian keyboard layout

Posted by | Windows |
(more…)
06
10
25
 2 Comments

Investigating cobalt::generator

Posted by | C++ | Tagged |

Standard C++ generator

The code below demonstrates how standard C++23 synchronous generator works:

#include <boost/cobalt.hpp>
#include <iostream>
#include <generator>

namespace cobalt = boost::cobalt;

std::generator<int> numbers()
{
    for (int i = 1; i <= 5; ++i)
    {
        co_yield i;
    }
}
(more…)
01
10
25
 5 Comments

Building boost::cobalt with MSVC 2022

Posted by | C++ | Tagged | 
cd C:\dev\repos\boost_1_89_0

set OPENSSL_ROOT_DIR=C:/dev/libs/OpenSSL
set OPENSSL_USE_STATIC_LIBS=ON
 
bootstrap.bat

b2 cxxstd=20 install --with-system --with-thread --with-cobalt --prefix=C:/dev/libs/boost_1_89_0 --toolset=msvc-14.3 -s _WIN32_WINNT=0x0A00 link=static runtime-link=static variant=release address-model=64
b2 cxxstd=20 install --with-system --with-thread --with-cobalt --prefix=C:/dev/libs/boost_1_89_0 --toolset=msvc-14.3 -s _WIN32_WINNT=0x0A00 link=static runtime-link=static variant=debug address-model=64
(more…)
01
10
25
 1 Comment

Nginx TCP proxy with SSL Termination

Posted by | Nginx, Ubuntu |

Obtaining the certificates

Obtain private and public keys from exported pfx file:

openssl pkcs12 -in ldaps.pfx -nocerts -nodes -out ldap.key
openssl pkcs12 -in ldaps.pfx -clcerts -nokeys -out ldap.crt
(more…)
30
09
25
 2 Comments

Enabling LDAP over SSL

Posted by | Windows | Tagged |

Add Certificate Manager role

Enable probably something like Certificate Manager role on DC:

(more…)
25
09
25
 Leave a comment

Fixing my routing table to make Hyper-V visible from the host machine

Posted by | Network and Internet | 
Get-NetIPAddress -AddressFamily IPv4 | Format-Table InterfaceIndex, InterfaceAlias, IPAddress, PrefixLength

InterfaceIndex InterfaceAlias                      IPAddress       PrefixLength
-------------- --------------                      ---------       ------------
             8 vEthernet (External Virtual Switch) 169.254.119.152           16
            55 vEthernet (WSL (Hyper-V firewall))  172.29.208.1              20
            42 vEthernet (Default Switch)          172.28.176.1              20
             9 Local Area Connection* 2            169.254.188.32            16
            23 Local Area Connection* 1            169.254.77.99             16
            16 Ethernet                            192.168.0.145             24
            21 Wi-Fi                               192.168.0.170             24
             1 Loopback Pseudo-Interface 1         127.0.0.1                  8
(more…)
19
09
25
 1 Comment

I lost the connection to my Windows 11 laptop

Posted by | Network and Internet |

RDP disconnected and “Internet Protocol Version 4 (TCP/IPv4)” became disabled:

(more…)
18
09
25
 2 Comments

Increasing MaxConcurrentApi Kerboros parameter on a Domain Controller

Posted by | Windows |

I increased MaxConcurrentApi value of type DWORD in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\Kerberos\Parameters:

(more…)
Older posts