Routing with multiple VPNs Static Routers Routing Rules
see: forum.openwrt.org/t/interfaces-basics-logic/162280
see: forum.openwrt.org/t/interfaces-basics-logic/162280
Author: Ed Itor
Route based on source IP or Interface
Some discussion by the inhabitants over at OpenWrt forum forum.openwrt.org/t/set-different-upstream-for-specific-source-ip/132090
Network Testing, packet loss and jitter
Top Public Recursive Name Servers
mutin-sa has the list gist.github.com/mutin-sa/5dcbd35ee436eb629db7872581093bc5
Time to consider TIME, in due time
Monitor DNS for device identification.
Here are some popular DNS domains for time
*.pool.ntp.org time.google.com time.apple.com time.android.com api.rokutime.com time.cloudflare.com time.windows.com time.nist.gov
A bigger list: gist.github.com/mutin-sa/eea1c396b1e610a2da1e5550d94b0453
Could intercept and redirect to local ntp as described here: forum.openwrt.org/t/redirect-outgoing-ntp-traffic-to-an-internal-ntp-server/161223/8
Here are some popular DNS domains for time
*.pool.ntp.org time.google.com time.apple.com time.android.com api.rokutime.com time.cloudflare.com time.windows.com time.nist.gov
A bigger list: gist.github.com/mutin-sa/eea1c396b1e610a2da1e5550d94b0453
Could intercept and redirect to local ntp as described here: forum.openwrt.org/t/redirect-outgoing-ntp-traffic-to-an-internal-ntp-server/161223/8
Extract Google Authenticator keys
Generally, you can’t. You can only transfer them to a new phone by using export to generate QR code then add them to new phone like you would any other QR code.
However, if you do have root, you can. The talented authors from protectimus have documented how.
Rooting your phone is a bozo no no.
This is a more time and effort consuming way to transfer Google Authenticator key to the other smartphone. It requires you to have root access to the smartphones.
To extract the secret keys manually you need to give adb root access, this is easily done with an app like [root] adbd Insecure if you’ve got stock ROM. And in case you happen to have custom ROM you might already have the necessary root access adb, so no additional apps are needed.
Set adb onto insecure mode with the application or directly, connect the smartphone to your PC or laptop and copy the Google Authenticator databases to the computer using the commands.
This is the pathname:
adb pull /data/data/com.google.android.apps.authenticator2/databases/databases
After the file is copied you can open it and see the keys using these sqlite editor commands:
sqlite3 ./databases
select * from accounts;
Now you have your secret keys and can add them to your new device.
Read more of their post on google authenticator backup. www.protectimus.com/blog/google-authenticator-backup/
However, if you do have root, you can. The talented authors from protectimus have documented how.
Rooting your phone is a bozo no no.
This is a more time and effort consuming way to transfer Google Authenticator key to the other smartphone. It requires you to have root access to the smartphones.
To extract the secret keys manually you need to give adb root access, this is easily done with an app like [root] adbd Insecure if you’ve got stock ROM. And in case you happen to have custom ROM you might already have the necessary root access adb, so no additional apps are needed.
Set adb onto insecure mode with the application or directly, connect the smartphone to your PC or laptop and copy the Google Authenticator databases to the computer using the commands.
This is the pathname:
adb pull /data/data/com.google.android.apps.authenticator2/databases/databases
After the file is copied you can open it and see the keys using these sqlite editor commands:
sqlite3 ./databases
select * from accounts;
Now you have your secret keys and can add them to your new device.
Read more of their post on google authenticator backup. www.protectimus.com/blog/google-authenticator-backup/
VPNAPI.IO Is an IP on VPN, Tor
VPNAPI.IO will report details on an IP Address. It will identify if it is on VPN, TOR, Proxy or Relay as well as GEO and ASN data.
There is a free account that is limited to 1,000 queries per day. As the name implies, it works via an API.
There is a free account that is limited to 1,000 queries per day. As the name implies, it works via an API.
Chromebook sucks, no text editor as guest
I would like to use a chromebook without logging in. This is a problem because to do anything special or extra, you need an extension. To add an extension, you need to login. This gives Google more opportunities to invade your privacy.
Here is a neat trick that lets you just start editing in a browser window. [image: image.png] Unfortunately, you can save the content. Or, open an existing text file.
Some other ideas dev.to/iacons/access-and-update-local-files-from-your-browser-51e0 www.geeksforgeeks.org/how-to-create-text-editor-using-javascript-and-html-dom/ www.geeksforgeeks.org/simple-text-editor-using-file-system-access-api/ www.tiny.cloud/blog/javascript-localstorage-example-rich-text-editor/
Here is a neat trick that lets you just start editing in a browser window. [image: image.png] Unfortunately, you can save the content. Or, open an existing text file.
Some other ideas dev.to/iacons/access-and-update-local-files-from-your-browser-51e0 www.geeksforgeeks.org/how-to-create-text-editor-using-javascript-and-html-dom/ www.geeksforgeeks.org/simple-text-editor-using-file-system-access-api/ www.tiny.cloud/blog/javascript-localstorage-example-rich-text-editor/
OpenWrt 1:1 NAT, multiple external IP
Instead of Nat’ing everything to the router IP you may want to NAT to many IP Addresses.
A couple of tips. In the network config add IP addresses on the WAN interface Configure ‘redirect’ sections in the Firewall config file Specify gateway and DNS on the WAN interface and enable masquerading on the LAN zone.
Links forum.openwrt.org/t/nat-1-1-implementation/159978 forum.openwrt.org/t/1-1-nat-mapping/84422/9 openwrt.org/docs/guide-user/network/wan/multiple_public_ips#configuration_examples
A couple of tips. In the network config add IP addresses on the WAN interface Configure ‘redirect’ sections in the Firewall config file Specify gateway and DNS on the WAN interface and enable masquerading on the LAN zone.
Links forum.openwrt.org/t/nat-1-1-implementation/159978 forum.openwrt.org/t/1-1-nat-mapping/84422/9 openwrt.org/docs/guide-user/network/wan/multiple_public_ips#configuration_examples
Security Tools List
The wolves over at RedPacket Security have an eclectic list of tools.
A few of note: PowerMeUp – Powershell, post exploit Striker C2 Katana crawling and spidering Certwatcher Track cert transparency logs
www.redpacketsecurity.com/category/tools/
A few of note: PowerMeUp – Powershell, post exploit Striker C2 Katana crawling and spidering Certwatcher Track cert transparency logs
www.redpacketsecurity.com/category/tools/