Cheat sheets, notes, random code bits, tutorials, and projects that I’m working on.


My name is Jayson, and I am a security researcher. I have worked as a penetration tester, tool developer, devops engineer, and system administrator. I successfully completed my BS-CS at UNM in the Summer of 2016, and am very happy to be done with school (for now). I am passionate about penetration testing, security tool development and automating offensive security work. I am also interested in APTs (Advanced Persistent Threats) and understanding the motivations behind nation-state-funded Malware....

January 4, 2015 · Jayson Grace

Password Manager Cheatsheet

Keeper Install CLI client Get the latest version and install the appropriate package: AUTHOR='Keeper-Security' REPO_NAME='Commander' curl -s "${AUTHOR}/${REPO_NAME}/releases/latest" \ | jq -r '.assets[].browser_download_url' Login to Keeper Run this command: keeper login When prompted, enter your email, then your TOTP, and finally your master password. Resource: Get a password using its name This particular example will return the password for the entry called in the vault: My Vault> find-password gmail....

February 28, 2022 · Jayson Grace

Markdown Cheatsheet

Table of Contents You can use this site to generate the code for you. For example: ## Table of Contents - [Prerequisites](#prerequisites) - [Create](#create) --- ## Prerequisites * Stuff * Things --- ## Create * More stuff * More things Resource: Add line break Simply add two spaces after the line that you want to break on. Resource:

January 17, 2022 · Jayson Grace

JQ Cheatsheet

Loop over JSON array This example will print all of the values associated with the name key: sample='[{"name":"foo"},{"name":"bar"}]' for row in $(echo "${sample}" | jq -r '.[] | @base64'); do echo ${row} | base64 --decode | jq -r '.name' done Resource: Get object based on value of JSON variable $ jq '.[] | select(.location=="Stockholm")' json { "location": "Stockholm", "name": "Walt" } { "location": "Stockholm", "name": "Donald" } Resource:

September 1, 2021 · Jayson Grace

ELK Cheatsheet

Elasticsearch Get version of ES curl http://localhost:9200/ Get all indices in a cluster curl http://localhost:9200/_aliases Get all indices in a cluster (pretty) curl http://localhost:9200/_aliases?pretty=true Show index creation time curl http://localhost:9200/_cat/indices?h=health,status,index,id,pri,rep,docs.count,docs.deleted,store.size, Resource: Get number of docs in a cluster curl http://localhost:9200/_cat/count?v Get number of docs in an index curl http://localhost:9200/index/_count Get Roles This is where you can get answers to questions like “what do I have access to?” curl http://localhost:9200/_security/role Resource: https://www....

February 25, 2021 · Jayson Grace

Azure Cheatsheet

Getting Started Install latest version of Azure CLI on Mac brew update && brew install azure-cli Resource: Install latest version of Azure CLI on Linux # YOLO curl -sL | sudo bash Resources: Install PowerShell brew install --cask powershell-preview Run a powershell terminal with: pwsh-preview Update Powershell brew update brew upgrade powershell-preview --cask Uninstall Powershell brew uninstall --cask powershell sudo rm -rf /usr/local/bin/pwsh-preview /usr/local/microsoft/powershell Resource:

February 18, 2021 · Jayson Grace

GCP Cheatsheet

Thanks, I hate it. Getting Started Install gcloud on MacOS First install the SDK: brew install --cask google-cloud-sdk Once that’s done, you’ll be prompted to make some slight modifications to your ~/.zshrc file: echo '\n# Google Cloud' | tee -a ~/.zshrc echo 'source /usr/local/Caskroom/google-cloud-sdk/latest/google-cloud-sdk/' | tee -a ~/.zshrc echo 'source /usr/local/Caskroom/google-cloud-sdk/latest/google-cloud-sdk/' | tee -a ~/.zshrc source ~/.zshrc Install gcloud on Ubuntu echo "deb [signed-by=/usr/share/keyrings/] cloud-sdk main" | sudo tee -a /etc/apt/sources....

January 20, 2021 · Jayson Grace

Javascript Cheatsheet

Submit a POST request via a form without reloading the page As an added bonus, this will also print the response output to the DOM. <!DOCTYPE html> <html lang="en"> <head> <script src=""></script> <script> $(document).ready(function () { // Create a compute node for the specified email and return its public IP address function createCompute() { // Handle the POST request and subsequent response data $.ajax({ type: "POST", email: $("#email").val(), url: "" + $("#userEmail")....

October 12, 2020 · Jayson Grace

Terraform Cheatsheet

Installation on Ubuntu 20.04 sudo apt-get update && sudo apt-get install -y gnupg software-properties-common curl curl -fsSL | sudo apt-key add - sudo apt-add-repository "deb [arch=amd64] $(lsb_release -cs) main" sudo apt-get update && sudo apt-get install -y terraform # Verify it works terraform -v Resource: Commands This is used to download and configure providers in your terraform code: terraform init Resource: Reconfigure state If you need to reconfigure your state, run the following:...

October 1, 2020 · Jayson Grace

IDA Cheatsheet

Find a string Alt+b Once you’ve done this, be sure to encase the string you want to find in “”. For example: "string to find" Open breakpoints window Ctrl + Alt + b Preset breakpoints Click Debugger Debugger options… Set specific options Check the box next to preset BPTs Click OK Debug Android Activity Find an activity in a package that you want to look at Click Debugger -> Debugger options -> Set specific options Set the ADB executable (you can find this with which adb) Click Fill from AndroidManifest....

September 3, 2020 · Jayson Grace