This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The entirety of this guide assumes your WAN port is eth0. Make sure to adjust accordingly. | |
Get certs, run the mfg_dat_decode tool. You should end up with 3 certs: CA_*.pem, Client_*.pem and PrivateKey_PKCS1_*.pem, as well as a a wpa_supplicant.conf file | |
Edit wpa_supplicant.conf to add the full path /config/auth/ to all 3 files, and make sure the MAC address matches the one you're going to spoof: | |
--- | |
network={ | |
ca_cert="/config/auth/CA_xxxxxx.pem" | |
client_cert="/config/auth/Client_xxxxxx.pem" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
*Important note to pay attention to* | |
You'll most likely use eth0 on a USG and eth2 or eth3 on a USG-Pro, edit the files accordingly. Do not run the supplicant on virtual interfaces (e.g. eth0.0), as it will not work. | |
*Pre-requisites* | |
Get certs, run the mfg_dat_decode tool. You should end up with 3 certs: CA_*.pem, Client_*.pem and PrivateKey_PKCS1_*.pem, as well as a a wpa_supplicant.conf file | |
In the archive generated by the tool, edit wpa_supplicant.conf to add the full path /config/auth/ to all 3 files: | |
network={ | |
ca_cert="/config/auth/CA_xxxxxx.pem" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[Unit] | |
Description=Unbound recursive Domain Name Server | |
After=syslog.target network.target network-online.target | |
After=unbound-keygen.service | |
Wants=network-online.target | |
Wants=unbound-keygen.service | |
Wants=unbound-anchor.timer | |
Before=nss-lookup.target | |
Wants=nss-lookup.target |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@echo off | |
:make somewhat hidden MyCompany directory | |
mkdir C:\ProgramData\MyCompany\ | |
:copy Slack Installer | |
copy \\myshare.mycompany.com\Applications\Slack\SlackSetup.exe C:\ProgramData\MyCompany\ | |
:load default registry hive for all new users | |
REG LOAD HKU\TEMP "C:\Users\Default\NTUSER.DAT" | |
:add required RunOnce value | |
REG ADD HKU\TEMP\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce /v Slack /t REG_SZ /d "C:\ProgramData\MyCompany\SlackSetup.exe -s" /f | |
:unload hive |