Functions/Misc/Misc.ps1
|
function Detect-OS { if ($PSVersionTable.PSVersion.ToString() -gt 6) { if ($IsWindows) { return "Windows" } elseif ($IsMacOS) { return "Mac" } } else { $Platform = [System.Environment]::OSVersion.Platform if ($Platform -like "Win*") { return "Windows" } elseif ($Platform -like "Unix*") { return "Unix" } } } function Combine-Filters { param( [parameter(Mandatory=$true)] $Filters, $Type = "and" ) $combinedFilter = $null $FilterCount = $Filters.Count switch ($Filters.GetType().FullName) { "System.Collections.ArrayList" { foreach ($filter in $Filters) { if ($FilterCount -le 1) { $combinedFilter += $Filter } else { $combinedFilter += $Filter+" $($Type) " } $FilterCount = $FilterCount - 1 } } "System.Object[]" { foreach ($filter in $Filters) { if ($FilterCount -le 1) { $combinedFilter += "$($Filter.Property)$($Filter.Operator)`"$($Filter.Value)`"" } else { $combinedFilter += "$($Filter.Property)$($Filter.Operator)`"$($Filter.Value)`" $($Type) " } $FilterCount = $FilterCount - 1 } } "System.String" { return $Filters } default { Write-Error "Unsupported Filter input" } } return $combinedFilter } function ConvertTo-QueryString { param( [parameter(mandatory=$true)] [System.Collections.ArrayList]$Filters ) $combinedFilter = $null $FilterCount = $Filters.Count foreach ($filter in $Filters) { if ($FilterCount -le 1) { $combinedFilter += $Filter } else { $combinedFilter += $Filter+"&" } $FilterCount = $FilterCount - 1 } $combinedFilter = "?$combinedFilter" return $combinedFilter } function Match-Type { param( [parameter(mandatory=$true)] [bool]$Strict ) if ($Strict) { $MatchType = "==" } else { $MatchType = "~" } return $MatchType } function Convert-CIDRToNetmask { param( [parameter(Mandatory=$true)] [ValidateRange(0,32)] [Int] $MaskBits ) $mask = ([Math]::Pow(2, $MaskBits) - 1) * [Math]::Pow(2, (32 - $MaskBits)) $bytes = [BitConverter]::GetBytes([UInt32] $mask) (($bytes.Count - 1)..0 | ForEach-Object { [String] $bytes[$_] }) -join "." } function Test-NetmaskString { param( [parameter(Mandatory=$true)] [String] $MaskString ) $validBytes = '0|128|192|224|240|248|252|254|255' $maskPattern = ('^((({0})\.0\.0\.0)|' -f $validBytes) + ('(255\.({0})\.0\.0)|' -f $validBytes) + ('(255\.255\.({0})\.0)|' -f $validBytes) + ('(255\.255\.255\.({0})))$' -f $validBytes) $MaskString -match $maskPattern } function Convert-NetmaskToCIDR { param( [parameter(Mandatory=$true)] [ValidateScript({Test-NetmaskString $_})] [String] $MaskString ) $mask = ([IPAddress] $MaskString).Address for ( $bitCount = 0; $mask -ne 0; $bitCount++ ) { $mask = $mask -band ($mask - 1) } $bitCount } $CompositeStateSpaces = @( @{ "Application" = "DFP" "FriendlyName" = "DNS Forwarding Proxy" "AppType" = "1" "Composite" = "9" "Service_Type" = "dfp" }, @{ "Application" = "DNS" "FriendlyName" = "DNS" "AppType" = "2" "Composite" = "12" "Service_Type" = "dns" }, @{ "Application" = "DHCP" "FriendlyName" = "DHCP" "AppType" = "3" "Composite" = "15" "Service_Type" = "dhcp" }, @{ "Application" = "CDC" "FriendlyName" = "Data Connector" "AppType" = "7" "Composite" = "24" "Service_Type" = "cdc" }, @{ "Application" = "AnyCast" "FriendlyName" = "AnyCast" "AppType" = "9" "Composite" = "30" "Service_Type" = "anycast" }, @{ "Application" = "NGC" "FriendlyName" = "NIOS Grid Connector" "AppType" = "10" "Composite" = "34" "Service_Type" = "orpheus" }, @{ "Application" = "MSADC" "FriendlyName" = "MS AD Collector" "AppType" = "12" "Composite" = "40" "Service_Type" = "msad" }, @{ "Application" = "AAUTH" "FriendlyName" = "Access Authentication" "AppType" = "13" "Composite" = "43" "Service_Type" = "authn" }, @{ "Application" = "NTP" "FriendlyName" = "NTP" "AppType" = "20" "Composite" = "64" "Service_Type" = "ntp" } ) | ConvertTo-Json | ConvertFrom-Json function Convert-Int64toIP ([int64]$int) { <# .LINK https://www.powershellgallery.com/packages/Subnet/1.0.14/Content/Private%5CConvert-Int64toIP.ps1 #> (([math]::truncate($int / 16777216)).tostring() + "." + ([math]::truncate(($int % 16777216) / 65536)).tostring() + "." + ([math]::truncate(($int % 65536) / 256)).tostring() + "." + ([math]::truncate($int % 256)).tostring() ) } function Convert-IPtoInt64 ($ip) { <# .LINK https://www.powershellgallery.com/packages/Subnet/1.0.14/Content/Private%5CConvert-IPtoInt64.ps1 #> $octets = $ip.split(".") [int64]([int64]$octets[0] * 16777216 + [int64]$octets[1] * 65536 + [int64]$octets[2] * 256 + [int64]$octets[3]) } function Get-NetworkClass { <# .LINK https://www.powershellgallery.com/packages/Subnet/1.0.14/Content/Public%5CGet-NetworkClass.ps1 #> param( [parameter(Mandatory,ValueFromPipeline)] [string] $IP ) process { switch ($IP.Split('.')[0]) { { $_ -in 0..127 } { 'A' } { $_ -in 128..191 } { 'B' } { $_ -in 192..223 } { 'C' } { $_ -in 224..239 } { 'D' } { $_ -in 240..255 } { 'E' } } } } function New-B1Metadata { param( [Parameter(Mandatory=$true)] [IPAddress]$IP, [Parameter(Mandatory=$true)] [String]$Netmask, [Parameter(Mandatory=$true)] [IPAddress]$Gateway, [Parameter(Mandatory=$true)] [String]$DNSServers, [Parameter(Mandatory=$false)] [String]$DNSSuffix, [Parameter(Mandatory=$true)] [String]$JoinToken, [Parameter(Mandatory=$false)] [String]$LocalDebug ) $CIDR = Convert-NetmaskToCIDR $Netmask $metadata = @( '{' '"instance-id": ""' '}' ) -join "`r`n" $network = @( "ethernets:" " eth0:" " addresses: [ $($IP)/$($CIDR) ]" " dhcp4: False" " gateway4: $($Gateway)" " nameservers:" " addresses: [$($DNSServers)]" " search: [$($DNSSuffix)]" "version: 2" ) -join "`r`n" $userdata = @() $userdata += "#cloud-config" if ($LocalDebug) { $userdata += @( "bootcmd:" "- sed -i '5i -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT' /etc/firewall.d/firewall.4.rules" "- systemctl restart firewalld.service" "- sed -i 's/PermitRootLogin prohibit-password/PermitRootLogin yes/' /etc/ssh/sshd_config" "- sed -i 's/PasswordAuthentication no/PasswordAuthentication yes/' /etc/ssh/sshd_config" "- systemctl enable ssh" "- systemctl --no-block restart ssh" "- echo 'root:$($LocalDebug)' | chpasswd" ) } $userdata += @( "host_setup:" " jointoken: $($JoinToken)" ) $userdataAggr = $userdata -join "`r`n" $Results = @{ "metadata" = $metadata "network" = $network "userdata" = $userdataAggr } return $Results } function New-ISOFile { param( [Parameter(Mandatory=$true)] [String]$Source, [Parameter(Mandatory=$true)] [String]$Destination, [Parameter(Mandatory=$true)] [String]$VolumeName ) $OS = Detect-OS switch($OS) { "Windows" { $typeDefinition = @' public class ISOFile { public unsafe static void Create(string Path, object Stream, int BlockSize, int TotalBlocks) { int bytes = 0; byte[] buf = new byte[BlockSize]; var ptr = (System.IntPtr)(&bytes); var o = System.IO.File.OpenWrite(Path); var i = Stream as System.Runtime.InteropServices.ComTypes.IStream; if (o != null) { while (TotalBlocks-- > 0) { i.Read(buf, BlockSize, ptr); o.Write(buf, 0, bytes); } o.Flush(); o.Close(); } } } '@ if (!('ISOFile' -as [type])) { switch ($PSVersionTable.PSVersion.Major) { {$_ -ge 7} { Write-Verbose ("Adding type for PowerShell 7 or later.") Add-Type -CompilerOptions "/unsafe" -TypeDefinition $typeDefinition } 5 { Write-Verbose ("Adding type for PowerShell 5.") $compOpts = New-Object System.CodeDom.Compiler.CompilerParameters $compOpts.CompilerOptions = "/unsafe" Add-Type -CompilerParameters $compOpts -TypeDefinition $typeDefinition } default { throw ("Unsupported PowerShell version.") } } } try { $image = New-Object -ComObject IMAPI2FS.MsftFileSystemImage -Property @{VolumeName=$VolumeName} -ErrorAction Stop $image.ChooseImageDefaultsForMediaType(13) ## Defaults to DVDPLUSRW_DUALLAYER $image.fileSystemsToCreate = 3 } catch { throw ("Failed to initialise image. " + $_.exception.Message) } if (!($targetFile = New-Item -Path $Destination -ItemType File -Force -ErrorAction SilentlyContinue)) { throw ("Cannot create file " + $Destination + ".") } try { $sourceItems = Get-ChildItem -LiteralPath $Source -Exclude *.iso -ErrorAction Stop } catch { throw ("Failed to get source items. " + $_.exception.message) } foreach($sourceItem in $sourceItems) { try { $image.Root.AddTree($sourceItem.FullName, $true) } catch { throw ("Failed to add " + $sourceItem.fullname + ". " + $_.exception.message) } } try { $result = $image.CreateResultImage() [ISOFile]::Create($targetFile.FullName,$result.ImageStream,$result.BlockSize,$result.TotalBlocks) } catch { throw ("Failed to write ISO file. " + $_.exception.Message) } return $targetFile } "Mac" { hdiutil makehybrid -iso -iso-volume-name "$VolumeName" -joliet -joliet-volume-name "$VolumeName" -o "$Destination" "$Source" } } } function Get-B1ServiceLogApplications { $Result = Query-CSP -Method GET -Uri "$(Get-B1CSPUrl)/atlas-logs/v1/applications" | Select-Object -ExpandProperty applications -WA SilentlyContinue -EA SilentlyContinue $Result += @( [PSCustomObject]@{ "type" = 1000 "label" = "Kube" "container_name" = "k3s.service" } [PSCustomObject]@{ "type" = 1001 "label" = "NetworkMonitor" "container_name" = "host/network-monitor.service" } [PSCustomObject]@{ "type" = 1002 "label" = "CDC-OUT" "container_name" = "cdc_siem_out" } [PSCustomObject]@{ "type" = 1003 "label" = "CDC-IN" "container_name" = "cdc_rpz_in" } ) return $Result } function DevelopmentFunctions { return @( "Query-CSP" "Detect-OS" "Combine-Filters" "ConvertTo-QueryString" "Match-Type" "Convert-CIDRToNetmask" "Test-NetmaskString" "Convert-NetmaskToCIDR" "Convert-Int64toIP" "Convert-IPtoInt64" "Get-NetworkClass" "New-B1Metadata" "New-ISOFile" ) } function DeprecationNotice { param ( $Date, $Command, $AlternateCommand ) $ParsedDate = [datetime]::parseexact($Date, 'dd/MM/yy', $null) if ($ParsedDate -gt (Get-Date)) { Write-Host "Cmdlet Deprecation Notice! $Command will be deprecated on $Date. Please switch to using $AlternateCommand before this date." -ForegroundColor Yellow } else { Write-Host "Cmdlet was deprecated on $Date. $Command will likely no longer work. Please switch to using $AlternateCommand instead." -ForegroundColor Red } } |