Boundery on Kubernetes with Keycloak

We have 3 clusters running 2 on AWS and 1 on-prem. And to sort out connections for developers and admin the goal is to implement boundary as an access point. To verify the user we use Keycloak and 2FA, Then based on roles we give the different users access to different services inside the cluster. […]

Read

K8s Logs to Elastic with Dynamic ILM from annotations

#fluentd #fluent-bit #kubernetes #elasticsearch #ILM #logpain The time a spent fixing logs problems … From cleaning out logs that eats disk setting up log-rotate and now Elasticsearch ….. I want a easy log system that setups a Elasticsearch ILM with different life time on the logs depending on a annotation that I set on the […]

Read

Gitlab runners in K8s Helm (Working DockerInDocker)

So… I spent alot of time trying to get gitlab runners working in kubernetes. using the helm from gitlab.This is the setup i use now that works for me aand that you dont need to put to mutch inte the build job. Replace so you have your domain and key name the file runners1-values.yaml Apply […]

Read

Vault EKS / AWS to pod The complete guide

I have bean working some time with vault and to deploy it to our EKS cluster and then to get the secrets into our pods.After many hours of searching i have found out that using kube-vault and vault-env. This gude uses tarraform to setup the resources you need in AWS. Then deploy the kubevault with […]

Read

Running Counter-strike 1.6 and CSGO in kubernetes !

Yee so it was a long time ago when I spend days playing counter strike 1.6. And now when i got some more power full servers and some time I was thinking of setting up a some counter-strike server for me and some friends so we can play. I have a nice kubernetes cluster in […]

Read

Modsecurity 3 dos / scaraping protection Working !

Yess this is a brute force that work for modsecurity 3 and its not that many. Spent days searching the net and trying to find out how to get them working. First setup a devoloper box Start by cloning this repo i have https://github.com/Ollebo/modsecurity3 it using the OWASP Modsecurity docker that i run is boxWARNING: […]

Read

Filebeat => logstash => Elasticsearch and working modules

Setting up filbeat modules to work when you are uisng logstash to send logs over to elastic. So i started setting up filbeat to ship my mysql-slow.log and planned to use the filbeat module. The logs started flowing and after some time i got the logs into the correct index. But to my surprise the […]

Read

WordPress + Gatsby = Love

I like the ide of using wordpress as a backend service and then use a static file genertor to fetch the data from wordpress and then generate static files. Its how this blog is now woring with firebase and google cloud. But before i started using firebase a build a small demo project to use […]

Read

Openvas results to json and Elasticsearch and kibana

I have some openvas scanners running but to use the scanners a need the results as json files. Then i can use my ELK stack to visualize and have dashboards over the results from the scan. Before I used vulwisperer to export the result from openvas and to get them into elk. But from the […]

Read

Send Openvas result to Kibana with vulwisperer

Vulwisperer is a tool to read the finding from a openvas scanner and to send them to a other tools. Here i want them to be sent to a elasticsearch and kibana. To do this i first need to start a openvas scan and get some results. – Then use vulwisperer to get the results […]

Read