More stuff

LICENSE

@@ -0,0 +1,23 @@
+The MIT License (MIT)
+
+Copyright (c) 2018 LIUZHICHAO.COM
+Copyright (c) 2019 DILLONZQ.COM
+Copyright (c) 2020 KHUSIKA.DEV
+Copyright (c) 2024 GOODWILLHACKING.COM
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

README.md

@@ -2,30 +2,33 @@
 Static Site generated with Hugo and hosted on Digitalocean app platform.
 
 ## Theme
-The website relies on the FeelIt theme which can be found [here](https://github.com/khusika/FeelIt). Many thanks to Khusika 
+The website relies on the FeelIt theme which can be found [here](https://github.com/khusika/FeelIt).
+Many thanks to Khusika 
 
 ### Theme documentation
 [FeelIt Documentation](https://feelit.khusika.dev/categories/documentation/)
 
 ## Testing
 
 ### Development mode
-Note: Ensure you are using the extended version of Hugo with Sass/SCSS support,
+***Note: Ensure you are using the extended version of Hugo with Sass/SCSS support.***
+
 ```bash
-    hugo serve --disableFastRender --config hugo.toml
+hugo serve --disableFastRender --config hugo.toml
 ```
 ### Build mode
 Use Docker to locally test website builds
 ```bash
-    hugo --config hugo.toml
+hugo --config hugo.toml
 ```
 
 ## Deploying the App to Digital Ocean
 ```bash
-    doctl app create --spec .do/app.yml
-    
-    doctl apps update <app_id> --spec .do/app.yml 
+doctl app create --spec .do/app.yml
+# Update app spec fter creation
+doctl apps update <app_id> --spec .do/app.yml 
 ```
+
 https://docs.digitalocean.com/products/app-platform/reference/buildpacks/hugo/
 https://docs.digitalocean.com/products/app-platform/reference/app-spec/
 

content/about/index.md

@@ -8,82 +8,17 @@ lightgallery: true
 math:
   enable: true
 ---
+I want to write a brief summary about my blog which is  broadly about IT systems, technology and my 
+experiences with it over the years. I cover topics ranging from Cyber Security, Devops and IT System Engineering. 
+Additionally I write about other topics that interest me such as DIY Home Improvements,  Physical Fitness and BJJ. 
+In my writings - while still reviewing the technical and procedural aspects of any given topic - I strive to also 
+distill and present the philosophical and first principles perspectives that underpin the given topic. I do so by either 
+going over them in the respective post or linking to articles in this blog and across the internet that attempt to do that.  
 
 {{< style "img { height: 1.25rem; }" >}}
 [![GitHub release (latest by date)](https://img.shields.io/github/v/release/khusika/FeelIt?style=flat-square)](https://github.com/khusika/FeelIt/releases)
-[![Hugo](https://img.shields.io/badge/Hugo-%5E0.110.0-ff4088?style=flat-square&logo=hugo)](https://gohugo.io/)
-[![License](https://img.shields.io/github/license/khusika/FeelIt?style=flat-square)](https://github.com/khusika/FeelIt/blob/main/LICENSE)
-[![GitHub stars](https://img.shields.io/github/stars/khusika/FeelIt?style=social)](https://github.com/khusika/FeelIt)
-[![GitHub forks](https://img.shields.io/github/forks/khusika/FeelIt?style=social)](https://github.com/khusika/FeelIt/fork)
+[![Hugo](https://img.shields.io/badge/Hugo-%5E0.127.0-ff4088?style=flat-square&logo=hugo)](https://gohugo.io/)
+[![License](https://img.shields.io/github/license/goodwillhacking/website?style=flat-square)](https://github.com/khusika/FeelIt/blob/main/LICENSE)
+[![GitHub stars](https://img.shields.io/github/stars/goodwillhacking/website?style=social)](https://github.com/goodwillhacking/website)
+[![GitHub forks](https://img.shields.io/github/forks/goodwillhacking/website?style=social)](https://github.com/goodwillhacking/website/fork)
 {{< /style >}}
-
-![Hugo Theme FeelIt](/images/Apple-Devices-Preview.webp "Hugo Theme FeelIt")
-
-### Features
-
-#### Performance and SEO
-
-* :(fa-solid fa-rocket fa-fw): Optimized for **performance**: [99]/[100] on mobile and [100]/[100] on desktop in [Google PageSpeed Insights](https://developers.google.com/speed/pagespeed/insights)
-* :(fa-brands fa-searchengin fa-fw): Optimized SEO performance with a correct **SEO SCHEMA** based on JSON-LD
-* :(fa-brands fa-google fa-fw): **[Google Analytics](https://analytics.google.com/analytics)** supported
-* :(fa-regular fa-chart-bar fa-fw): **[Fathom Analytics](https://usefathom.com/)** supported
-* :(fa-solid fa-chart-line fa-fw): **[GoatCounter Analytics](https://www.goatcounter.com/)** supported
-* :(fa-solid fa-search fa-fw): Search engine **verification** supported (Google, Bind, Yandex and Baidu)
-* :(fa-solid fa-tachometer-alt fa-fw): **CDN** for third-party libraries supported
-* :(fa-solid fa-cloud-download-alt fa-fw): Automatically converted images with **Lazy Load** by [lazysizes](https://github.com/aFarkas/lazysizes)
-
-#### Appearance and Layout
-
-* [:(fa-solid fa-desktop):]/[:(fa-solid fa-mobile):] **Responsive** layout
-* [:(fa-solid fa-sun):]/[:(fa-solid fa-moon):] **[Light]/[Dark]** mode
-* :(fa-solid fa-layer-group fa-fw): Globally consistent **design language**
-* :(fa-solid fa-ellipsis-h fa-fw): **Pagination** supported
-* :(fa-regular fa-list-alt fa-fw): Easy-to-use and self-expanding **table of contents**
-* :(fa-solid fa-language fa-fw): **Multilanguage** supported and i18n ready
-* :(fa-brands fa-css3-alt fa-fw): Beautiful **CSS animation**
-
-#### Social and Comment Systems
-
-* :(fa-regular fa-user fa-fw): **Gravatar** supported by [Gravatar](https://gravatar.com)
-* :(fa-solid fa-user-circle fa-fw): Local **Avatar** supported
-* :(fa-regular fa-id-card fa-fw): Up to **64** social links supported
-* :(fa-solid fa-share-square fa-fw): Up to **28** share sites supported
-* :(fa-regular fa-comment fa-fw): **Disqus** comment system supported by [Disqus](https://disqus.com)
-* :(fa-regular fa-comment-dots fa-fw): **Gitalk** comment system supported by [Gitalk](https://github.com/gitalk/gitalk)
-* :(fa-regular fa-comment-alt fa-fw): **Valine** comment system supported by [Valine](https://valine.js.org/)
-* :(fa-solid fa-comments fa-fw): **Vssue** comment system supported by [Vssue](https://vssue.js.org/)
-* :(fa-regular fa-comments fa-fw): **Facebook comments** system supported by [Facebook](https://developers.facebook.com/docs/plugins/comments/)
-* :(fa-solid fa-comment fa-fw): **Telegram comments** system supported by [Comments](https://comments.app/)
-* :(fa-solid fa-comment-dots fa-fw): **Commento** comment system supported by [Commento](https://commento.io/)
-* :(fa-solid fa-comment-alt fa-fw): **Utterances** comment system supported by [Utterances](https://utteranc.es/)
-
-#### Extended Features
-
-* :(fa-solid fa-search fa-fw): **Search** supported by [Lunr.js](https://lunrjs.com/) or [algolia](https://www.algolia.com/)
-* :(fa-regular fa-grin-tongue-wink fa-fw): **Twemoji** supported
-* :(fa-solid fa-code fa-fw): Automatically **highlighting** code
-* :(fa-regular fa-copy fa-fw): **Copy code** to clipboard with one click
-* :(fa-regular fa-images fa-fw): **Images gallery** supported by [lightgallery.js](https://github.com/sachinchoolur/lightgallery.js)
-* :(fa-brands fa-font-awesome fa-fw): Extended Markdown syntax for **[Font Awesome](https://fontawesome.com/) icons**
-* :(fa-regular fa-sticky-note fa-fw): Extended Markdown syntax for **ruby annotation**
-* :(fa-solid fa-percentage fa-fw): Extended Markdown syntax for **fraction**
-* :(fa-solid fa-square-root-alt fa-fw): **Mathematical formula** supported by [$ \KaTeX $](https://katex.org/)
-* :(fa-solid fa-project-diagram fa-fw): **Diagrams** shortcode supported by [mermaid](https://github.com/knsv/mermaid)
-* :(fa-solid fa-chart-pie fa-fw): **Interactive data visualization** shortcode supported by [ECharts](https://echarts.apache.org/)
-* :(fa-solid fa-map-marked-alt fa-fw): **Mapbox** shortcode supported by [Mapbox GL JS](https://docs.mapbox.com/mapbox-gl-js)
-* :(fa-solid fa-music fa-fw): **Music player** shortcode supported by [APlayer](https://github.com/MoePlayer/APlayer) and [MetingJS](https://github.com/metowolf/MetingJS)
-* :(fa-solid fa-video fa-fw): **Bilibili player** shortcode
-* :(fa-regular fa-bell fa-fw): Kinds of **admonitions** shortcode
-* :(fa-solid fa-align-left fa-fw): **Custom style** shortcode
-* :(fa-brands fa-js-square fa-fw): **Custom script** shortcode
-* :(fa-solid fa-i-cursor fa-fw): **Animated typing** supported by [TypeIt](https://typeitjs.com/)
-* :(fa-solid fa-cookie-bite fa-fw): **Cookie consent banner** supported by [cookieconsent](https://github.com/osano/cookieconsent)
-* ...
-
-### License
-
-FeelIt is licensed under the **MIT** license.
-
-Check the [LICENSE file](https://github.com/khusika/FeelIt/blob/main/LICENSE) for details.
-
-Thanks to the authors of following resources included in the theme:

content/categories/bjj/index.md

@@ -1,3 +1,16 @@
 ---
+weight: 1
 title: "Jiu-Jitsu"
+subtitle: "Goodwill Hacking"
+date: 2019-08-02T11:04:49+08:00
+lastmod: 2020-03-06T21:29:01+08:00
+draft: false
+lightgallery: true
+tags: ["Jiu-Jitsu", "Fitness"]
+categories: ["Jiu-Jitsu"]
+
+toc:
+  auto: false
 ---
+
+# BJJ Post

content/categories/cyber-security/index.md

@@ -1,3 +1,4 @@
 ---
 title: "Cybersecurity"
 ---
+

content/categories/fitness/index.md

@@ -1,3 +1,16 @@
 ---
-title: "Fitnessing"
+weight: 1
+title: "Fitness"
+subtitle: "Goodwill Hacking"
+date: 2019-08-02T11:04:49+08:00
+lastmod: 2020-03-06T21:29:01+08:00
+draft: false
+lightgallery: true
+tags: ["fitness", "kettlebell"]
+categories: ["Fitness"]
+
+toc:
+  auto: false
 ---
+
+# BJJ Post

content/posts/cloud/the-alternate-cloud.md

@@ -0,0 +1,6 @@
+DigitalOcean
+Linode
+OvHCloud
+UpCloud
+Vultr
+

content/posts/cyber-security/cyber-tools.md

@@ -0,0 +1,19 @@
+https://www.ossec.net/
+https://www.ossec.net/docs/docs/manual/installation/index.html
+
+
+https://github.com/greenbone/openvas-scanner
+https://greenbone.github.io/docs/latest/
+
+https://crt.sh/
+https://certificate.transparency.dev/
+
+
+https://virtualize.link/secure/
+
+Repo
+https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master
+
+https://cyclonedx.org/tool-center/
+https://owasp.org/www-project-dependency-track/
+https://dependencytrack.org/

content/posts/cyber-security/dns-over-https.md

@@ -0,0 +1,3 @@
+
+https://youtu.be/Hl0IpoS503A?si=MuT4Ri5QTKcibZnF
+https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Local-DoH

content/posts/cyber-security/dnssec-the-unfulfilled-promise.md

@@ -0,0 +1,5 @@
+https://www.isi.deterlab.net/file.php?file=%2Fshare%2Fshared%2FDNSmaninthemiddleattack
+https://www.potaroo.net/ispcol/2024-05/dnssec-fin.pdf
+https://www.cloudflare.com/dns/dnssec/dnssec-complexities-and-considerations/
+https://www.cloudflare.com/dns/dnssec/how-dnssec-works/
+https://www.cyberciti.biz/faq/unix-linux-test-and-validate-dnssec-using-dig-command-line/

content/posts/cyber-security/ethical-hacking.md

@@ -0,0 +1,30 @@
+---
+weight: 1
+title: "An brief Intro to Incident Response"
+subtitle: "Part x of Y"
+date: 2019-08-02T11:04:49+08:00
+lastmod: 2020-03-06T21:29:01+08:00
+draft: false
+
+toc:
+  auto: false
+---
+This post serves as a brief 
+What is an incident?
+An event that disupts the normal functioning of an IT/OT system 
+Anamolous activity or behavior that is outside the normal functioning of a system. Example: Unexplained Higher memory consumption than normal, 
+high network traffic or fiel read/write activity outside of normal business hours.
+
+Types of Incidents
+https://www.controlglobal.com/home/blog/11344116/malicious-vs-unintentional-cyber-incidents-why-it-is-necessary-to-include-unintentional-incidents
+Malicious:
+
+Unintentional
+
+Responding to incidents
+
+
+Determining type of Incident
+https://sessionize.com/s/phillipsj/do-you-have-a-diagnostic-routine-what-we-can-learn/67030
+
+

content/posts/cyber-security/kerberos-AD-authentication.md

@@ -0,0 +1,8 @@
+https://medium.com/@truvis.thornton/connecting-linux-to-microsoft-windows-server-active-directory-for-management-and-easy-access-ca61d46b79a8
+https://techexpert.tips/ubuntu/ubuntu-kerberos-authentication-active-directory/
+
+https://github.com/Security-Onion-Solutions/securityonion/blob/2.4/main/DOWNLOAD_AND_VERIFY_ISO.md
+
+https://learn.microsoft.com/en-us/sysinternals/downloads/security-utilities
+
+https://github.com/virustotal/yara#js-repo-pjax-container

content/posts/cyber-security/network-architecutre.md

@@ -0,0 +1,8 @@
+https://learn.microsoft.com/en-us/azure/architecture/networking/architecture/hub-spoke?tabs=cli
+https://learn.microsoft.com/en-us/archive/blogs/tip_of_the_day/tip-of-the-day-demystifying-software-defined-networking-terms-the-cloud-compass-sdn-data-flows
+https://learn.microsoft.com/en-us/archive/blogs/tip_of_the_day/tip-of-the-day-demystifying-software-defined-networking-terms-network-isolation-encapsulation-and-addressing
+https://networkengineering.stackexchange.com/questions/18873/what-is-the-meaning-origin-of-the-terms-north-south-and-east-west-traffic
+
+North-south vs East-West traffic 
+Fine grained policies to manage east-west traffic
+Service mesh brokers 

content/posts/cyber-security/reverse-TLS-proxy-with-upstream-TLS.md

@@ -0,0 +1,6 @@
+https://www.digitalocean.com/community/tutorials/how-to-set-up-and-configure-a-certificate-authority-ca-on-ubuntu-20-04
+https://thesecmaster.com/blog/how-to-set-up-a-certificate-authority-on-ubuntu-using-openssl
+https://www.mybluelinux.com/nginx-tls-tcp-proxy-server-for-tcp-upstream-servers/
+
+Reasons not to use a public CA to generate certificates for internal services 
+https://www.reddit.com/r/selfhosted/comments/oos1ia/how_to_configure_nginx_proxy_manager_to_get_certs/?utm_source=share&utm_medium=web3x&utm_name=web3xcss&utm_term=1&utm_content=share_button

content/posts/cyber-security/staying-ontop-of-it-all.md

@@ -0,0 +1,26 @@
+
+Cohesive Security Policy across all technology related domains. 
+BreachReview
+Information Technology (IT) vs. Operational Technology (OT) Cybersecurity
+https://krebsonsecurity.com/2014/02/target-hackers-broke-in-via-hvac-company/
+https://www.dashlane.com/blog/hack-florida-water-treatment-plant-public-sector
+https://www.dashlane.com/blog/real-world-examples-of-hacks-and-breaches-in-the-utilities-and-energy-industry
+https://www.techtarget.com/whatis/feature/Colonial-Pipeline-hack-explained-Everything-you-need-to-know
+Blurring the lines - strict seperation or treat it exactly the same.
+
+IT Security
+OT Security
+DevSecOps
+    Secure development practices
+    Static/Dynamic/Interactive Application Security Testing 
+        https://about.gitlab.com/topics/devsecops/sast-vs-dast/
+    SBOM
+        https://anchore.com/sbom/key-things-to-know-about-sboms-and-sbom-standards/
+        https://www.ntia.doc.gov/files/ntia/publications/sbom_minimum_elements_report.pdf
+    Code Review
+
+
+## Validation
+PenTesting
+Red Team (White hats )
+https://www.crowdstrike.com/cybersecurity-101/red-team-vs-blue-team/

content/posts/cyber-security/the-cyber-gloves-are-off.md

@@ -0,0 +1,3 @@
+https://www.wilsoncenter.org/publication/kennan-cable-no-41-cyber-treaty-russia
+https://alu.spbu.ru/images/US-Russia/US_Russia_Relations_on_Cyber_security_by_poojika_Amarakoon.pdf
+https://www.airuniversity.af.edu/Portals/10/AUPress/Papers/CPP_0003_BARRERA_MULTINATIONAL_CYBER_TREATY.PDF

content/posts/cyber-security/the-tik-toking-of-distraction.md

@@ -0,0 +1,25 @@
+https://www.congress.gov/bill/118th-congress/house-bill/231/text
+
+With news of breach after breach coming out each week -  with victims ranging from 
+
+
+## State Scale footprinting
+Footprinting is a part of reconnaissance process which is used for gathering possible information about a target. Targets can range from individuals, business competitors and computer systems and networks to name a few. 
+Footprinting is conducted
+https://www.tutorialspoint.com/ethical_hacking/ethical_hacking_footprinting.htm
+https://www.watchmycompetitor.com/resources/a-complete-guide-to-whats-a-digital-footprint/
+Hack a major payroll provider such as ADP or Intuit, a Regional utility provider or School District in a region with sensitive sites such a Langley VA (CIA), NewportNews, VA (Newport News Shipyard), Santa Barbabara, CA (Vandenberg Space Force Base) 
+and collect all data of
+
+## Inference Attacks
+https://nordvpn.com/cybersecurity/glossary/inference-attack/
+An inference attack is a data mining technique in which data is inferred from partial information. By analyzing large amounts of data, an attacker can illegally gain knowledge about a database or its contents without actually accessing it. Data 
+is considered trivial only if nothing can be inferred from it. But if an attacker is able to piece together valuable information that should be protected at a higher level, the inference attack is considered successful.
+
+## Alternative Mitigation
+The mitigation approaches suggested assume a robust respect for freedom of speech and the right to . AN understanding that none of the freedom or rights we cherish and rely comes withoout inherent corresponding risks that we as a society must manage 
+and navigate. 
+
+Independent US based proxy provider that sits between the US consumer and TikTok. 
+
+

content/posts/devops/metric-monitoring.md

@@ -0,0 +1 @@
+https://medium.com/ordergroove-engineering/leveraging-prometheus-to-get-mysql-database-insights-619332942cf

content/posts/fitness/double-kettle-dumb-bell-swings.md

@@ -0,0 +1,10 @@
+https://www.youtube.com/watch?v=4Kt5WBQa1sw
+https://www.rdlfitness.com/blog/overhand-underhand-neutral-grips-for-bodybuilding
+https://www.garagestrength.com/blogs/news/power-snatch
+
+## Suitcase Swings
+Greater potential range of shoulder motion, greater recruitment of leg muscle, expose side specific weaknesses and inclinations (grip (hand and forearm), lumbar, imbalances in stance and power chain)
+,drastically improved coordination, improvement in posture (movement mimics recommended practice for good posture)
+
+
+

content/posts/fitness/embracing-the-hands-of-father-time.md

@@ -0,0 +1,16 @@
+
+---
+title: "Adjusting my fitness regiment to the gift of life"
+date: 2019-08-02T11:04:49+08:00
+draft: false
+
+math:
+  enable: true
+---
+The gift of life is a blessing I do not take for granted. 
+
+Each revolution around the sun
+https://web.archive.org/web/20170114063330/http://anunconventionalife.com/better-over-40/
+https://web.archive.org/web/20220524114519/http://anunconventionalife.com/swings-conditioning/
+https://www.dragondoor.com/articles/2000-non-stop-swings-and-foursome-tenants-of-insanity/
+https://web.archive.org/web/20180926054833/http://anunconventionalife.com/2016/08/21/how-to-get-the-perfect-body/

content/posts/fitness/high-rep-training.md

@@ -0,0 +1,2 @@
+https://web.archive.org/web/20240221150317/https://www.t-nation.com/training/the-185-rep-squat-workout/
+https://www.dragondoor.com/articles/2000-non-stop-swings-and-foursome-tenants-of-insanity/

content/posts/homelab/windows11-virtualbox.md

@@ -0,0 +1,3 @@
+https://oofhours.com/2022/07/25/bypassing-windows-11-hardware-requirements-revisited/
+https://oofhours.com/2022/01/22/you-can-bypass-the-windows-11-hardware-requirement-check-but-its-not-a-good-idea/
+https://www.youtube.com/watch?v=5TAGzPeqww8

content/posts/kubernetes/k8-the-lighterway-with-k3d.md

@@ -0,0 +1,2 @@
+https://www.owenrumney.co.uk/zero-to-k3d/
+https://kubernetes.io/docs/reference/using-api/deprecation-guide/?ref=plural.sh

content/posts/privacy/privacy-vs-convenience.md

@@ -0,0 +1 @@
+https://support.apple.com/en-us/102651

content/posts/system-engineering/component-based-design.md

@@ -0,0 +1,2 @@
+https://www.perforce.com/blog/vcs/component-based-development
+

content/posts/system-engineering/tools.md

@@ -0,0 +1,3 @@
+perf
+ebpf
+https://petermalmgren.com/docker-mac-bpf-perf/