Tuesday, May 31, 2022
Show HN: Shale – a Ruby object mapper and serializer for JSON, YAML and XML https://ift.tt/lAp3Yxh
Show HN: Shale – a Ruby object mapper and serializer for JSON, YAML and XML https://ift.tt/1CfgKnQ May 31, 2022 at 01:06PM
Show HN: Form Builder, Reimagined https://ift.tt/pIS8wWm
Show HN: Form Builder, Reimagined https://www.formcan.com May 31, 2022 at 01:03PM
Show HN: Todool, a full blown environment for managing large trees of task lists https://ift.tt/Ov1ZuJl
Show HN: Todool, a full blown environment for managing large trees of task lists Currently an alpha is available in their Discord server. I'm not the creator, if you have any questions about the program feel free to join the Discord server. https://ift.tt/fWM3wcy May 31, 2022 at 10:41AM
Show HN: Query Google Sheet data using PostgreSQL clients https://ift.tt/oWbqm1R
Show HN: Query Google Sheet data using PostgreSQL clients https://ift.tt/9XqTWgp May 31, 2022 at 07:24AM
Show HN: Fullstack web should be easy https://ift.tt/38wbtLk
Show HN: Fullstack web should be easy https://ift.tt/xjPWt5g May 31, 2022 at 02:29AM
Show HN: Resumecreator.io – I built a simple resume builder https://ift.tt/kVaB8mu
Show HN: Resumecreator.io – I built a simple resume builder Hi HN! I'm a developer who noticed that I haven't done much experimentation lately. I decided I wanted to change that this year. This month I built a simple resume builder with the main goal of practicing front-end development, and to scratch an itch I had when updating my resume. :) After it was functional enough, I casually shared with some friends to express my enjoyment of crafting something just for the sake of having some fun. To my surprise they ended up asking how they could send to others. So I went one step further, due to my pure excitement, and hosted it on Netlify to make publicly available. In case you're curious, I used the React component library Mantine[1] in this project. I loved it, so I definitely recommend to check it out for your next React project. Have thoughts to share? I would love to know! :) If you're postponing starting that project you have been thinking of, just do it. Right now. Just create a new dir, load up your framework of choice and start it, even a couple of lines are enough to get you started. We should never forget that to play around is awesome. -- [1] https://mantine.dev https://ift.tt/C7D8hJS May 31, 2022 at 12:50AM
Monday, May 30, 2022
Show HN: Multiplayer sudoku. Race to fill in the most squares https://ift.tt/3M9RAGc
Show HN: Multiplayer sudoku. Race to fill in the most squares https://sudokurace.io is a free, real time multiplayer sudoku board. Invite your friends and race to fill the most squares. All feedback is welcome. MVP was built over the last ~4 days. Lmk what you think! You can play with as many people as you'd like at the same time May 30, 2022 at 02:08AM
Show HN: Bugfruit – a simple embedded key-value store https://ift.tt/4BDEzRr
Show HN: Bugfruit – a simple embedded key-value store Hey HN! I work on a database for my day-job and I realized I had never written one from scratch, so I wrote bugfruit! Once I was mostly satisfied with it, I looked up some benchmarks to compare my simple database to other brand name key-value stores. I was surprised to see that mine held up fairly well on the subset of benchmarks I replicated. So I used the Pavlo Database Naming System [0] to name it and open-sourced the code. I'd love to hear any feedback you might have on it! [0] https://ift.tt/SP39GCw... https://ift.tt/KWIMJbT May 30, 2022 at 12:14AM
Show HN: A Simple and Free Cloud List DB https://ift.tt/vrGnp9g
Show HN: A Simple and Free Cloud List DB https://arraylist.org May 29, 2022 at 10:45PM
Show HN: NetBird – A P2P Network with WebRTC, WireGuard, SSO, and Zero Trust https://ift.tt/CV1TQGj
Show HN: NetBird – A P2P Network with WebRTC, WireGuard, SSO, and Zero Trust Hey folks! We have just released NetBird. It is a big update so I decided to share it here and get your feedback :) NetBird creates an overlay peer-to-peer network connecting machines automatically regardless of their location (home, office, data center, container, cloud, or edge environments) unifying virtual private network management experience. It uses ICE protocol (WebRTC) to negotiate p2p connections and WireGuard (kernel module, when possible) to create a fast and encrypted tunnel between machines, falling back to relay (TURN) in case a p2p connection isn't possible. Pretty much just a client application installation is needed, the rest is done by the software! Sharing the project with you wasn't the only purpose of the post. I wanted to discuss the future and vision behind it. I'm pretty sure that in a few years, such seamless connectivity without the hassle of configuring firewalls, managing IPs, manual key rotations, centralized gateways, etc. will become a commodity and the majority won't be talking about traditional VPNs. But what we think is becoming more relevant is advanced network security. We've seen the rise of Zero Trust with its ZTNA solutions in the past years. There are big vendors like ZScaler or Palo Alto already offering advanced network security features that leverage ML or contextual access controls to allow/block access based on context, not just identity. Why can't this be open-source and built on top of universal connectivity that works anywhere? That is what we are setting as a mission for our project - to bring seamless connectivity and advanced network security together in a single open-source solution. What do you think about it? We welcome contributors and if your excited of what we are building, feel free to reach out to us! P.S. We've been previously know as Wiretrustee :) https://ift.tt/gJV0kpR May 29, 2022 at 09:48PM
Show HN: Spanish Basic https://ift.tt/N4A7tSj
Show HN: Spanish Basic https://ift.tt/PhZBVIW May 29, 2022 at 10:08PM
Sunday, May 29, 2022
Show HN: Small CLI to export/backup Spotify playlists to plain text files https://ift.tt/KT4St5i
Show HN: Small CLI to export/backup Spotify playlists to plain text files https://ift.tt/7j2TnGh May 29, 2022 at 07:14PM
Show HN: WebRTC Nuts and Bolts, A holistic way of understanding how WebRTC runs https://ift.tt/s8iVnuC
Show HN: WebRTC Nuts and Bolts, A holistic way of understanding how WebRTC runs Hi HN! I’m so excited to show my first open-source project and first post here. I initially started this project to learn Go language, it is an experimental project. The main goal is to track the adventure of a WebRTC stream from start to finish, by debugging the project or tracking the output at console. By trying out this project, you will deep dive into the steps which are taken while starting up a WebRTC session, and more. It consists of a web UI (TypeScript) and a server back-end (Golang) projects. They can run on Docker containers, in development mode or production mode, you can find details in the README file. After some progress on the development, I decided to pivot my experimental work to a walkthrough document. Because although there are lots of resources that exist already on the Internet, they cover small chunks of WebRTC concepts or protocols atomically. And they use the standard way of inductive method which teaches in pieces then assembles them. But my style of learning leans on the deductive method instead of others, so instead of learning atomic pieces and concepts first, going linearly from beginning to the end, and learning an atomic piece on the time when learning this piece is required. I know it’s in a very niche technical domain, but hope you will like my project. Please check it out and I’d love to read your thoughts! https://ift.tt/KBYDPnE https://ift.tt/KBYDPnE May 29, 2022 at 01:27PM
Saturday, May 28, 2022
Show HN: A CLI for finding out of sync comments https://ift.tt/FEMfD2T
Show HN: A CLI for finding out of sync comments https://ift.tt/sgxy4n0 May 28, 2022 at 02:19AM
Show HN: HTTPS-DNS - Rust-based minimal DNS-over-HTTPS (DoH) client https://ift.tt/yx1Foat
Show HN: HTTPS-DNS - Rust-based minimal DNS-over-HTTPS (DoH) client https://ift.tt/PazblqO May 28, 2022 at 01:37AM
Exposed Kubernetes Clusters, Kubelet Ports Can Be Abused in Cyberattacks
Organizations must ensure their kubelets and related APIs aren’t inadvertently exposed or lack proper access control, offering an easy access point for malicious actors.
Show HN: Quickly find sensitive files in your GitHub repo https://ift.tt/uZyG960
Show HN: Quickly find sensitive files in your GitHub repo https://ift.tt/H1rjTKP May 27, 2022 at 07:50PM
Exposed Kubernetes Clusters, Kubelet Ports Can Be Abused in Cyberattacks
Organizations must ensure their kubelets and related APIs aren’t inadvertently exposed or lack proper access control, offering an easy access point for malicious actors.
source https://www.darkreading.com/dr-tech/exposed-kubernetes-clusters-kubelet-ports-can-be-abused-in-cyberattacks
source https://www.darkreading.com/dr-tech/exposed-kubernetes-clusters-kubelet-ports-can-be-abused-in-cyberattacks
Space Force Expands Cyber Defense Operations
Space Force's Delta 6 cyber-defense group adds squadrons, updates legacy Satellite Control Network.
Show HN: I'm building a personal web search engine https://ift.tt/oTHvMCy
Show HN: I'm building a personal web search engine https://ift.tt/ouCzrX3 May 27, 2022 at 11:13PM
Friday, May 27, 2022
Microsoft Unveils Dev Box, a Workstation-as-a-Service
Microsoft Dev Box will make it easier for developers and hybrid teams to get up and running with workstations already preconfigured with required applications and tools.
Broadcom Snaps Up VMware in $61B Deal
Massive merger will put Broadcom's Symantec and VMware's Carbon Black under one roof.
Microsoft Unveils Dev Box, a Workstation-as-a-Service
Microsoft Dev Box will make it easier for developers and hybrid teams to get up and running with workstations already preconfigured with required applications and tools.
source https://www.darkreading.com/dr-tech/microsoft-unveils-dev-box-a-workstation-as-a-service
source https://www.darkreading.com/dr-tech/microsoft-unveils-dev-box-a-workstation-as-a-service
Lacework Announces Layoffs, Restructuring
The cloud-security company blames "seismic" market shifts for shakeup.
Third-Party Scripts on Websites Present a 'Broad & Open' Attack Vector
Nearly half of the world's largest websites use externally generated JavaScript that makes them ripe targets for cyberattackers interested in stealing data, skimming credit cards, and executing other malicious actions.
Show HN: Froebel–a strictly typed utility library for Deno, Node, and Browsers https://ift.tt/Mjnw0sT
Show HN: Froebel–a strictly typed utility library for Deno, Node, and Browsers https://ift.tt/uUIE93g May 26, 2022 at 11:31PM
Thursday, May 26, 2022
Forescout Launches Forescout Frontline to Help Organizations Tackle Ransomware and Real Time Threats
New threat hunting and risk identification service provides organizations with an enterprise-wide baseline of their threat landscape and risk exposure.
Is Your Data Security Living on the Edge?
Gartner's security service edge fundamentally changes how companies should be delivering data protection in a cloud and mobile first world.
Show HN: Justmove.fun – AR-based motion-gaming for live, P-v-P action gaming https://ift.tt/lhd2pun
Show HN: Justmove.fun – AR-based motion-gaming for live, P-v-P action gaming https://justmove.fun May 25, 2022 at 10:18PM
Interpol's Massive 'Operation Delilah' Nabs BEC Bigwig
A sprawling, multiyear operation nabs a suspected SilverTerrier BEC group ringleader, exposing a massive attack infrastructure and sapping the group of a bit of its strength.
Show HN: ZenML – Portable, production-ready MLOps pipelines https://ift.tt/fiCdUeW
Show HN: ZenML – Portable, production-ready MLOps pipelines https://ift.tt/MYiNZ8t May 25, 2022 at 07:28PM
Wednesday, May 25, 2022
Microsoft Elevation-of-Privilege Vulnerabilities Spiked Again in 2021
But there was a substantial drop in the overall number of critical vulnerabilities that the company disclosed last year, new analysis shows.
New Attack Shows Weaponized PDF Files Remain a Threat
Notable new infection chain uses PDF to embed malicious files, load remote exploits, shellcode encryption, and more, new research shows.
Show HN: My free course for learning Imba https://ift.tt/uJSlvMH
Show HN: My free course for learning Imba Today I launched an Imba course for Scrimba.com. Imba is an amazing language for building web applications, that deserves more attention. Watch my announcement video: https://www.youtube.com/watch?v=CDSIsvZJhow Take the course (it's free): https://ift.tt/qAPS6aG Some context: I fell in love with the Imba programming language a couple years ago and quit my job to spend all my time building projects with Imba. The first one being TaskTXT ( https://www.tasktxt.com ), a plaintext notepad with built-in timers. It's full of UI details that were a joy to build with Imba. Trying to build things like this with React in the past honestly made me feel dumb. Imba ( https://www.imba.io ) is a language that compiles to Javascript, like TypeScript or JSX. Imba's syntax diverges much more from Javascript, looking more like Python or Ruby. It's compatible with Javascript and Typescript and NPM modules. It also has fantastic VSCode tooling and even supports TypeScript types. I like Imba syntax better than JS, but the real selling point is the built-in features for building web UI. Imba has first-class support for html tags, css styles, and custom web components. Those are all parts of the language. For me, Imba has replaced Javascript, HTML, CSS and React. Imba's "Memoized DOM" model for updating the UI is an order of magnitude faster than virtual DOM approaches. This allows for simple state management, because you can pretty much re-render the whole UI whenever you want and Imba manages to do that very efficiently. There's an older article about this here ( https://ift.tt/FEKd6ux... ) if you want to dig into the technical details. People often ask for examples of things made with Imba, and the most prominent one is the learn-to-code site, Scrimba.com and its interactive editor. Scrimba was was built by Sindre (creator of Imba) and the Scrimba team. The fact that Scrimba's editor was made with Imba grabbed my attention when I first learned about the language. It's one of the most impressive web applications I've ever seen. Sindre originally built Scrimba to share Imba, but until now there's not been a real Imba course on Scrimba! So, I'm pleased to be fixing that today. I know Imba looks strange to a lot of people. Imba programmers are used to people looking at it and declaring it to be stupid and wrong. An open mind is required. Imba doesn't have to be for everyone, but for a certain type of developer who values design, and wants to build expressive UI quickly, it's pure magic. https://ift.tt/6AOz47g May 24, 2022 at 06:21PM
DeFi Is Getting Pummeled by Cybercriminals
Decentralized finance lost $1.8 billion to cyberattacks last year — and 80% of those events were the result of vulnerable code, analysts say.
source https://www.darkreading.com/attacks-breaches/defi-pummeled-by-cybercriminals
source https://www.darkreading.com/attacks-breaches/defi-pummeled-by-cybercriminals
DeFi Is Getting Pummeled by Cybercriminals
Decentralized finance lost $1.8 billion to cyberattacks last year — and 80% of those events were the result of vulnerable code, analysts say.
Tuesday, May 24, 2022
Multiple Governments Buying Android Zero-Days for Spying: Google
An analysis from Google TAG shows that Android zero-day exploits were packaged and sold for state-backed surveillance.
Show HN: A game that teaches Git https://ift.tt/RwXIsAO
Show HN: A game that teaches Git https://ift.tt/DVxtf85 May 24, 2022 at 12:10AM
Malicious Python Repository Package Drops Cobalt Strike on Windows, macOS & Linux Systems
The PyPI "pymafka" package is the latest example of growing attacker interest in abusing widely used open source software repositories.
source https://www.darkreading.com/application-security/malicious-package-python-repository-cobalt-strike-windows-macos-linux
source https://www.darkreading.com/application-security/malicious-package-python-repository-cobalt-strike-windows-macos-linux
Malicious Python Repository Package Drops Cobalt Strike on Windows, macOS & Linux Systems
The PyPI "pymafka" package is the latest example of growing attacker interest in abusing widely used open source software repositories.
Show HN: Bitetales - Short stories written together https://ift.tt/Oc7svUn
Show HN: Bitetales - Short stories written together https://bitetales.com May 23, 2022 at 08:19PM
Monday, May 23, 2022
Show HN: Search Query, How to Find Exposed HFS HTTP File Server https://ift.tt/sD5CBzA
Show HN: Search Query, How to Find Exposed HFS HTTP File Server How to find exposed HFS HTTP File Server with analysis report on malicious code site on a chinese HFS HTTP Filer Servers. https://ift.tt/jkDr5Oi May 23, 2022 at 08:56AM
Show HN: Coming Soon Kit – 50+ coming soon pages built with tailwind CSS https://ift.tt/6uGiHbU
Show HN: Coming Soon Kit – 50+ coming soon pages built with tailwind CSS https://ift.tt/6jDdhus May 23, 2022 at 12:18AM
Show HN: Quizdle – 5 daily quiz questions https://ift.tt/Xsvl6eB
Show HN: Quizdle – 5 daily quiz questions https://ift.tt/S9AvQiI May 22, 2022 at 05:27PM
Sunday, May 22, 2022
Show HN: Portfolio of Machine Learning Projects https://ift.tt/Ts4pM7U
Show HN: Portfolio of Machine Learning Projects https://www.vevesta.com May 22, 2022 at 09:45AM
Show HN: Resolve Git Conflicts Automatically https://ift.tt/RSFgnAw
Show HN: Resolve Git Conflicts Automatically https://ift.tt/5a2ofOm May 22, 2022 at 02:35AM
Show HN: Enable element transformation between containers https://ift.tt/fTZbewy
Show HN: Enable element transformation between containers https://ift.tt/7ohqZ9z May 21, 2022 at 09:37PM
Show HN: AccentQuest – get better at understanding Indian accents https://ift.tt/4qtf2z3
Show HN: AccentQuest – get better at understanding Indian accents https://ift.tt/xrwHeLb May 21, 2022 at 11:59PM
Show HN: AWS Should Be Easy https://ift.tt/9V8Mg5p
Show HN: AWS Should Be Easy https://ift.tt/yUEbWDP May 22, 2022 at 12:10AM
Show HN: TypeManager.TS – Transform plain JSON into JavaScript model classes https://ift.tt/URfn24b
Show HN: TypeManager.TS – Transform plain JSON into JavaScript model classes https://ift.tt/io6LEm3 May 21, 2022 at 10:42PM
Saturday, May 21, 2022
Show HN: Chipotle nutritional calculator using form builder plus rules engine https://ift.tt/l53VUZp
Show HN: Chipotle nutritional calculator using form builder plus rules engine https://ift.tt/rshanFu May 21, 2022 at 12:57AM
Show HN: A simpler infrastructure as code specification https://ift.tt/nIkywZX
Show HN: A simpler infrastructure as code specification https://ift.tt/yUEbWDP May 21, 2022 at 12:37AM
Show HN: Releasing Vulnerabilities of Open Source Software https://ift.tt/Buh7HGi
Show HN: Releasing Vulnerabilities of Open Source Software Thrilled to announce that very soon The List Of Vulnerabilities collected from multiple platforms including ( npm, Maven, Go, NuGet, PyPI, RubyGems, crates.io, Packagist, Linux, OSS-Fuzz ) will be live at https://ift.tt/C0uv5ix. In short we are making sure that no vulnerability is left unreported and your software/service is always protected from unexpected attacks. Who doesn’t know Vulert Yet: Vulert, without any integration, notifies you if a Security Issue is found in any of the open-source software you are relying upon. HOW DOES VULERT PROTECT YOU ? PRIVACY: You don't need to share your codebase or integrate anything, all you need to do is to upload the list of open-source software you use. IMPROVED SECURITY: Existing solutions check the Current Security of your software. Unlike them we track your application not only for current but also for Future Security Issues. ECONOMICAL: You don’t need security staff just to keep track of your dependencies, Vulert can do it efficiently and it's very economical. HOW DOES VULERT WORK ? We keep an eye on open source code, our security team analyzes changes in the open source software. On an hourly basis, we gather the security advisories of the Vendors / Security Researchers. In case we find any security advisory for a software used by our customers, We notify them. Feel free to give feedback or ask any query, to contact info@vulert.com May 20, 2022 at 11:14PM
Friday, May 20, 2022
More Than 1,000 Cybersecurity Career Pursuers Complete the (ISC)² Entry-Level Cybersecurity Certification Pilot Exam
New professional certification program establishes a pathway into the workforce for students and career changers by demonstrating their foundational knowledge, skills and abilities to employers.
Deadbolt Ransomware Targeting QNAP NAS Devices
QNAP is urging customers of its NAS products to update QTS and avoid exposing the devices to the Internet.
Show HN: Trybsync – A Social RSS Aggregator https://ift.tt/fPz7i8A
Show HN: Trybsync – A Social RSS Aggregator https://ift.tt/3edY7pJ May 19, 2022 at 11:55PM
More Than 1,000 Cybersecurity Career Pursuers Complete the (ISC)² Entry-Level Cybersecurity Certification Pilot Exam
New professional certification program establishes a pathway into the workforce for students and career changers by demonstrating their foundational knowledge, skills and abilities to employers.
source https://www.darkreading.com/operations/more-than-1-000-cybersecurity-career-pursuers-complete-the-isc-entry-level-cybersecurity-certification-pilot-exam
source https://www.darkreading.com/operations/more-than-1-000-cybersecurity-career-pursuers-complete-the-isc-entry-level-cybersecurity-certification-pilot-exam
Deadbolt Ransomware Targeting QNAP NAS Devices
QNAP is urging customers of its NAS products to update QTS and avoid exposing the devices to the Internet.
source https://www.darkreading.com/cloud/deadbolt-ransomware-targeting-qnap-nas-devices
source https://www.darkreading.com/cloud/deadbolt-ransomware-targeting-qnap-nas-devices
Thursday, May 19, 2022
Show HN: Comtrya – Configuration Management for Localhost https://ift.tt/2tJz7rQ
Show HN: Comtrya – Configuration Management for Localhost https://ift.tt/j0wm9G2 May 19, 2022 at 02:23AM
MITRE Creates Framework for Supply Chain Security
System of Trust includes data-driven metrics for evaluating the integrity of software, services, and suppliers.
MITRE Creates Framework for Supply Chain Security
System of Trust includes data-driven metrics for evaluating the integrity of software, services, and suppliers.
source https://www.darkreading.com/application-security/mitre-creates-framework-for-supply-chain-security
source https://www.darkreading.com/application-security/mitre-creates-framework-for-supply-chain-security
CISA to Federal Agencies: Patch VMWare Products Now or Take Them Offline
Last month attackers quickly reverse-engineered VMWare patches to launch RCE attacks. CISA warns it's going to happen again.
source https://www.darkreading.com/attacks-breaches/cisa-patching-new-vmware-bugs-is-a-full-on-emergency
source https://www.darkreading.com/attacks-breaches/cisa-patching-new-vmware-bugs-is-a-full-on-emergency
CISA to Federal Agencies: Patch VMWare Products Now or Take Them Offline
Last month attackers quickly reverse-engineered VMWare patches to launch RCE attacks. CISA warns it's going to happen again.
How Pwn2Own Made Bug Hunting a Real Sport
From a scrappy contest where hackers tried to win laptops, Pwn2Own has grown into a premier event that has helped normalize bug hunting.
Wednesday, May 18, 2022
Show HN: Hyper: A bookmarklet and web application to optimize reading speed https://ift.tt/jmqM3FN
Show HN: Hyper: A bookmarklet and web application to optimize reading speed https://ift.tt/2mgtcuE May 18, 2022 at 01:24AM
FBI: E-Tailers, Beware Web Injections for Scraping Credit-Card Data, Backdoors
Law enforcement is warning about a wave of Web injection attacks on US online retailers that are successfully stealing credit-card information from online checkout pages.
Critical VMware Bug Exploits Continue, as Botnet Operators Jump In
A critical VMware bug tracked as CVE-2022-22954 continues to draw cybercriminal moths to its remote code-execution flame, with recent attacks focused on botnets and Log4Shell.
source https://www.darkreading.com/application-security/critical-vmware-bug-exploits-continue-as-botnet-operators-jump-in
source https://www.darkreading.com/application-security/critical-vmware-bug-exploits-continue-as-botnet-operators-jump-in
New Venture Capital Fund Focuses on Emerging Cybersecurity Tech
The founders behind more than 90 cybersecurity firms have set up a $300 million investment fund.
Tuesday, May 17, 2022
RF Technologies Releases Safe Place Staff Protection for Healthcare Settings
RFT is expanding the Safe Place hospital market security system to include staff protection.
Show HN: Securely collect and send emails directly to Web3 wallets addresses https://ift.tt/Oyzia58
Show HN: Securely collect and send emails directly to Web3 wallets addresses https://ift.tt/pIg0mu8 May 16, 2022 at 11:16PM
50% of Orgs Rely on Email to Manage Security
Even with dedicated identity management tools at their disposal, many companies — smaller ones especially — are sticking with email and spreadsheets for handling permissions.
source https://www.darkreading.com/tech-trends/50-of-companies-rely-on-email-to-manage-security
source https://www.darkreading.com/tech-trends/50-of-companies-rely-on-email-to-manage-security
50% of Companies Rely on Email to Manage Security
Even with dedicated identity management tools at their disposal, many companies — smaller ones especially — are sticking with email and spreadsheets for handling permissions.
iPhones Open to Attack Even When Off, Researchers Say
Wireless chips that run when the iPhone iOS is shut down can be exploited.
Monday, May 16, 2022
Show HN: Bash scripts to create Nginx sites proxied by Cloudflare https://ift.tt/80uhPSC
Show HN: Bash scripts to create Nginx sites proxied by Cloudflare https://ift.tt/7bE9Ogr May 16, 2022 at 06:18AM
Show HN: Poppy I/O, a system for sending data between web apps client side https://ift.tt/5zUXiB6
Show HN: Poppy I/O, a system for sending data between web apps client side https://ift.tt/9eTH8Om May 15, 2022 at 11:57PM
Show HN: Receive and send money through GitHub comments https://ift.tt/CdaYpjS
Show HN: Receive and send money through GitHub comments https://ift.tt/cVSdkMN May 16, 2022 at 12:39AM
Show HN: KittenDNS – easy to setup, rule engine, LetsEncrypt compatible https://ift.tt/JEbrc0i
Show HN: KittenDNS – easy to setup, rule engine, LetsEncrypt compatible My goal was to create a DNS server as simple as the LDAP server I've been contributing to (glauth) and here it is: https://ift.tt/i6S4IHQ A few things to know about it: - It is easy to configure using a Toml file - I am using it to bail my coredns/etcd instances when under attack - (yes, it also works as a service location server) - It comes with a simple, plain English, rule engine that doesn't do much at this point - It can be used with LetsEncrypt. I use it to retrieve certificates for my home servers. - RFC: all the nice ones :) Anyway, feedback is welcome. May 16, 2022 at 12:34AM
Show HN: Simple Financial Planner https://ift.tt/V9SoWJZ
Show HN: Simple Financial Planner https://ift.tt/neS5DXT May 15, 2022 at 09:36PM
Sunday, May 15, 2022
Show HN: Security for Developers: A Personal Drama in 3 Acts [Free Mini-eBook] https://ift.tt/bEBZu6j
Show HN: Security for Developers: A Personal Drama in 3 Acts [Free Mini-eBook] https://ift.tt/wzBtYJ3 May 15, 2022 at 03:03PM
Show HN: I Made a Tinder for Audiobooks https://ift.tt/DlYT1EA
Show HN: I Made a Tinder for Audiobooks https://bookbeagle.io May 15, 2022 at 02:14PM
Show HN: OSS Python library for detecting silent ML model failure https://ift.tt/c37fQ2j
Show HN: OSS Python library for detecting silent ML model failure https://ift.tt/D439Gce May 15, 2022 at 11:50AM
Show HN: I created a stencil-sharing platform for UX designers using Linux https://ift.tt/K1sUZNd
Show HN: I created a stencil-sharing platform for UX designers using Linux https://ift.tt/EBgSQeY May 14, 2022 at 08:50PM
Show HN: I made a body-interactive music app https://ift.tt/YP8o9KV
Show HN: I made a body-interactive music app I made this iPhone app called "Affine Tuning" which is a collection of body-interactive musical pieces: https://ift.tt/VSXAkcs It uses body tracking (Motion Capture from RealityKit) to shape dynamic compositions. The app is completely free and will be updated in the future with more songs and other interactive features. May 14, 2022 at 11:04PM
Show HN: A collaborative pixel drawing game for when you're bored (Attempt #2) https://ift.tt/SjL3N7H
Show HN: A collaborative pixel drawing game for when you're bored (Attempt #2) Previous thread: https://ift.tt/OJmXEgt Hello again HN! It's been 3 months since I last submitted this project and the back-end server software melted down. I was really bummed that many people didn't get to play, so I've spent most of my spare time since that last post completely rewriting the back-end server software using small, carefully selected dependencies (C99, sqlite, mongoose.ws & cJSON) I've done some basic performance testing and I'm cautiously optimistic that it can now handle up to ~1000 concurrent users. If you have any ideas for improvements, do let me know! Bots are permitted, but try and do something creative instead of just filling the canvas with junk :^) You can view the source code for the new back-end here: https://ift.tt/LZIvSa4 You can also check out a recent time-lapse here: https://www.youtube.com/watch?v=FUmnUvTqn6M The time-lapse gets generated from the server log output using this tool: https://ift.tt/8odZ13H (Note to HN staff: It wouldn't let me repost this unless it had a 'slightly different url', hence the sneaky redirect there. If this is a big no-no, I apologize, otherwise feel free to swap out the URL to the redirected one :^)) https://ift.tt/JrU4Mwn May 14, 2022 at 10:56PM
Saturday, May 14, 2022
Show HN: Fast Hacker News app for the addicted ones https://ift.tt/INpKkLv
Show HN: Fast Hacker News app for the addicted ones https://ift.tt/iaX5fvV May 14, 2022 at 02:11PM
US Agrees to International Electronic Cybercrime Evidence Swap
The Budapest Convention is a multinational coalition that agrees to share electronic evidence across international jurisdictions to track down cybercriminals.
CISO Shares Top Strategies to Communicate Security's Value to the Biz
In a keynote address at Black Hat Asia in Singapore this week, CISO and former NASA security engineer George Do discussed his go-to model for measuring security effectiveness – and getting others in the organization to listen.
Friday, May 13, 2022
5 Years That Altered the Ransomware Landscape
WannaCry continues to be a reminder of the challenges that organizations face dealing with the ransomware threat.
3 Predictors of Cybersecurity Startup Success
Before investing, venture capitalists should consider a trio of business characteristics that seem to correlate with commercial success, based on meetings with over 2,000 cybersecurity startups.
source https://www.darkreading.com/edge-articles/3-predictors-of-cybersecurity-startup-success
source https://www.darkreading.com/edge-articles/3-predictors-of-cybersecurity-startup-success
Apple, Google, Microsoft Move Closer to a Password-free Future
Tired of remembering multiple words you created six months ago with at least 8 characters, one capital letter, one number, and a special character? The move toward passwordless authentication is getting closer.
Google Will Use Mobile Devices to Thwart Phishing Attacks
In an effort to combat phishing, Google will allow Android phones and iPhones to be used as security keys.
Thursday, May 12, 2022
Threat Actors Are Stealing Data Now to Decrypt When Quantum Computing Comes
The technique, called store-now, decrypt later (SNDL), means organizations need to prepare now for post-quantum cryptography.
PlainID Debuts Authorization-as-a-Service Platform
Platform powered by policy-based access control (PBAC).
source https://www.darkreading.com/cloud/plainid-debuts-authorization-as-a-service-platform
source https://www.darkreading.com/cloud/plainid-debuts-authorization-as-a-service-platform
Ready, IAM, Fire: How Weak IAM Makes You a Target
Proper identity and access management configuration serves as an effective starting point for organizations looking to secure their cloud infrastructure.
Show HN: Automated Capital https://ift.tt/Je4N9SQ
Show HN: Automated Capital https://ift.tt/DHnPK5v May 11, 2022 at 06:46PM
Wednesday, May 11, 2022
US Pledges to Help Ukraine Keep the Internet and Lights On
US State Department outlines coordinated government effort to provide Ukraine with cybersecurity intelligence, expertise, and resources amid invasion.
Show HN: Layer – Inspect Container Layers https://ift.tt/EPIjQgO
Show HN: Layer – Inspect Container Layers https://ift.tt/gMHdC6Y May 10, 2022 at 11:40PM
US Pledges to Help Ukraine Keep the Internet and Lights On
US State Department outlines coordinated government effort to provide Ukraine with cybersecurity intelligence, expertise, and resources amid invasion.
source https://www.darkreading.com/risk/us-pledges-to-help-ukraine-keep-the-internet-on
source https://www.darkreading.com/risk/us-pledges-to-help-ukraine-keep-the-internet-on
Show HN: Privaxy – Like uBlock but through a MitM proxy and no browser extension https://ift.tt/RihgqYo
Show HN: Privaxy – Like uBlock but through a MitM proxy and no browser extension https://ift.tt/2Fzhbwq May 10, 2022 at 10:49PM
Show HN: Peridot – A functional language based on two-level type theory https://ift.tt/uzcsTpw
Show HN: Peridot – A functional language based on two-level type theory https://ift.tt/3G0nlK4 May 10, 2022 at 01:56PM
Tuesday, May 10, 2022
Costa Rica Declares State of Emergency Under Sustained Conti Cyberattacks
Conti's ransomware attack cripples Costa Rica's Treasury, sparking the US to offer a $15M bounty on the group.
Costa Rica Declares State of Emergency Under Sustained Conti Cyberattacks
Conti's ransomware attack cripples Costa Rica's Treasury, sparking the US to offer a $15M bounty on the group.
source https://www.darkreading.com/attacks-breaches/costa-rica-declares-state-of-emergency-under-sustained-conti-cyberattacks
source https://www.darkreading.com/attacks-breaches/costa-rica-declares-state-of-emergency-under-sustained-conti-cyberattacks
Show HN: I'm transitioning from software into the arts. Here's the gist https://ift.tt/Yc6fIDh
Show HN: I'm transitioning from software into the arts. Here's the gist https://ift.tt/EK2SUi5 May 9, 2022 at 11:30PM
Monday, May 9, 2022
On the Edge with 5G? Automation’s Never Been More Necessary (or Attainable)
Automation, virtualization, and networking slicing will allow enterprises to deploy 5G services in a cost-effective manner, changing legacy workflows and processes.
Show HN: Making a Falling Sand Simulator https://ift.tt/iFnRBNo
Show HN: Making a Falling Sand Simulator https://ift.tt/1QNFqor May 9, 2022 at 04:36AM
Sunday, May 8, 2022
Show HN: Thanks to BeAware, Deaf iPhone users have a free alerting device (OSS) https://ift.tt/ueNpasn
Show HN: Thanks to BeAware, Deaf iPhone users have a free alerting device (OSS) https://ift.tt/xwYPKcv May 8, 2022 at 11:42AM
Show HN: C2html – HTML Syntax highlighting for snippets of C code https://ift.tt/nEvtp5B
Show HN: C2html – HTML Syntax highlighting for snippets of C code https://ift.tt/w9xKBv3 May 8, 2022 at 04:42AM
Show HN: I Dissected an iPhone Battery https://ift.tt/lPY7fmZ
Show HN: I Dissected an iPhone Battery Peeled off layer by layer to see how the fruit tasted inside. (DON'T do it at home. I had protection) https://www.youtube.com/watch?v=rWYAA5NMLMg May 8, 2022 at 05:29AM
Show HN: Pipe Watch split screen demo https://ift.tt/UMEvgQX
Show HN: Pipe Watch split screen demo https://ift.tt/zSUFv6a May 8, 2022 at 03:20AM
Show HN: Jira to Gitlab Issue Migration Tool https://ift.tt/2jCBpcJ
Show HN: Jira to Gitlab Issue Migration Tool $DAYJOB needed to migrate from JIRA to Gitlab due to business reasons (not related to the recent outage), so I wrote this issue migration tool [1] to help us preserve our historical data. This tool will copy issues from various JIRA projects to mirrored Gitlab projects (e.g. A jira project named JIRA-PROJECT1 will have its issues migrated to a gitlab project GL-PROJECT1). The tool also migrates issue comments to Gitlab notes and will recreate the existing issue links. YMMV, but this is working well for us. Comments welcomed. 1: https://ift.tt/G45CWil May 8, 2022 at 03:01AM
Show HN: Using Wave Function Collapse to create a 2D map https://ift.tt/tzgTQrL
Show HN: Using Wave Function Collapse to create a 2D map https://ift.tt/isKV0xP May 8, 2022 at 12:23AM
Saturday, May 7, 2022
Show HN: Refactor – Duplicate Code Finder https://ift.tt/aGyUOch
Show HN: Refactor – Duplicate Code Finder https://ift.tt/icbWFtJ May 7, 2022 at 07:55AM
Show HN: Ask Deeply, a social game for small talk haters https://ift.tt/ItGaogl
Show HN: Ask Deeply, a social game for small talk haters I hate small talks, I build a social game to help me deepen my relationships and connect with people beyond the shallow levels. I want your feedback, maybe inspire me with questions you would like to see popping in the game. https://askdeeply.com/ May 7, 2022 at 07:59AM
Show HN: Sonse, a note-taking CLI for plaintext enthusiasts https://ift.tt/f7tSZmn
Show HN: Sonse, a note-taking CLI for plaintext enthusiasts https://ift.tt/TkcHnmb May 7, 2022 at 05:23AM
Post-Quantum Cryptography Set to Replace RSA, AES, ECC
In the next 10 years, public-key encryption needs to be replaced by post-quantum techniques that can stand up to the new challenges.
Show HN: Tamagui Beta https://ift.tt/FP3tmK9
Show HN: Tamagui Beta https://ift.tt/4a7gySw May 6, 2022 at 08:47PM
Post-Quantum Cryptography Set to Replace RSA, AES, ECC
In the next 10 years, public-key encryption needs to be replaced by post-quantum techniques that can stand up to the new challenges.
source https://www.darkreading.com/tech-trends/post-quantum-cryptography-set-to-replace-rsa-aes-ecc
source https://www.darkreading.com/tech-trends/post-quantum-cryptography-set-to-replace-rsa-aes-ecc
Friday, May 6, 2022
Microsoft, Apple, and Google Promise to Expand Passwordless Features
The passwordless future just became closer to reality, as Microsoft, Apple, and Google pledged to make passwordless possible across operating systems and browsers.
Heroku: Cyberattacker Used Stolen OAuth Tokens to Steal Customer Account Credentials
The same attack that allowed a threat actor to steal data from private Heroku GitHub repositories also resulted in the compromise of customer credentials, the company now says.
Show HN: Interactive Circle of Fifths https://ift.tt/4prXcnB
Show HN: Interactive Circle of Fifths https://ift.tt/52FBgUw May 5, 2022 at 10:49PM
Heroku: Cyberattacker Used Stolen OAuth Tokens to Steal Customer Account Credentials
The same attack that allowed a threat actor to steal data from private Heroku GitHub repositories also resulted in the compromise of customer credentials, the company now says.
source https://www.darkreading.com/endpoint/heroku-cyberattacker-stolen-oauth-token-customer-account-credentials
source https://www.darkreading.com/endpoint/heroku-cyberattacker-stolen-oauth-token-customer-account-credentials
Thursday, May 5, 2022
Show HN: Free open-source admin template for Chakra UI and React https://ift.tt/nbSIpdx
Show HN: Free open-source admin template for Chakra UI and React https://ift.tt/7qp5KFl May 5, 2022 at 09:23AM
Show HN: Benchmarks for Programming Languages https://ift.tt/0vxy2bt
Show HN: Benchmarks for Programming Languages https://ift.tt/5NeF8kZ May 5, 2022 at 04:22AM
Show HN: Schedulist – The Effortless Productivity Platform https://ift.tt/WyLmX4t
Show HN: Schedulist – The Effortless Productivity Platform https://ift.tt/e1zfnOJ May 5, 2022 at 01:42AM
Show HN: I compiled a list of resources for becoming a smart contract auditor https://ift.tt/o016A9r
Show HN: I compiled a list of resources for becoming a smart contract auditor https://ift.tt/crzxNSf May 5, 2022 at 12:37AM
GitHub to Developers: Turn on 2FA, or Lose Access
All active GitHub users who contribute code will be required to enable at least one form of two-factor authentication by the end of 2023.
GitHub to Developers: Turn on 2FA, or Lose Access
All active GitHub users who contribute code will be required to enable at least one form of two-factor authentication by the end of 2023.
source https://www.darkreading.com/dr-tech/github-to-developers-turn-on-2fa-or-lose-access
source https://www.darkreading.com/dr-tech/github-to-developers-turn-on-2fa-or-lose-access
Wednesday, May 4, 2022
Syxsense Enterprise Unifies Endpoint Security and IT Management for Real-Time Vulnerability Monitoring and Remediation
IT Teams can now manage, detect, and secure all endpoints with 100% visibility across desktop, laptop, server, and mobile devices.
API Security Company Traceable AI Lands $60 Million Series B
Latest round led by IVP values the company at $450 million.
Syxsense Enterprise Unifies Endpoint Security and IT Management for Real-Time Vulnerability Monitoring and Remediation
IT Teams can now manage, detect, and secure all endpoints with 100% visibility across desktop, laptop, server, and mobile devices.
source https://www.darkreading.com/remote-workforce/syxsense-enterprise-unifies-endpoint-security-and-it-management-for-real-time-vulnerability-monitoring-and-remediation
source https://www.darkreading.com/remote-workforce/syxsense-enterprise-unifies-endpoint-security-and-it-management-for-real-time-vulnerability-monitoring-and-remediation
SolarWinds Attackers Gear Up for Typosquatting Attacks
The same infrastructure traced back to Russian-speaking threat group Nobelium is being used to set up misspelled domain names, presaging impersonation attacks bent on credential harvesting, analysts say.
API Security Company Traceable AI Lands $60 Million Series B
Latest round led by IVP values the company at $450 million.
source https://www.darkreading.com/application-security/api-security-company-traceable-ai-lands-60-million-series-b
source https://www.darkreading.com/application-security/api-security-company-traceable-ai-lands-60-million-series-b
Unpatched DNS-Poisoning Bug Affects Millions of Devices, Stumps Researchers
The security vulnerability puts wide swaths of industrial networks and IoT devices at risk of compromise, researchers warn.
Tuesday, May 3, 2022
Show HN: How to create a hologram effect using SVG https://ift.tt/kC9JZdv
Show HN: How to create a hologram effect using SVG https://ift.tt/92vXpQ6 May 3, 2022 at 12:06AM
Show HN: Everyone Everywhere All at Once https://ift.tt/mt46IOB
Show HN: Everyone Everywhere All at Once https://ift.tt/L7mONvW May 2, 2022 at 11:53PM
Show HN: Run WASM in Containerd https://ift.tt/MfrATQm
Show HN: Run WASM in Containerd I've been working with a partner team to integrate wasm workloads with existing container toolchains with the goal of enabling wasm workloads anywhere, be it on the edge, in kubernetes, or wherever. To that end, this project implements a containerd shim which runs those wasm workloads. It is designed as a library to bring your own host implementation, but also includes an implementation for WASI. Right now the library assumes you are using wasmtime, which is embedded in. It works either standalone (run with containerd directly) or in kubernetes. Kubernetes networking and storage are wired into the wasm host and the wasm can run side by side with native workloads on the same machine. Wasm pods can be exposed as a service like any other pod. https://ift.tt/WvszhtM May 2, 2022 at 11:47PM
Google Offers $1.5M Bug Bounty for Android 13 Beta
The security vulnerability payout set bug hunters rejoicing, but claiming the reward is much, much easier said than done.
source https://www.darkreading.com/vulnerabilities-threats/google-issues-1-5m-android-13-beta-bug-bounty
source https://www.darkreading.com/vulnerabilities-threats/google-issues-1-5m-android-13-beta-bug-bounty
Monday, May 2, 2022
Show HN: I made a JavaScript library to turn MPA to SPA https://ift.tt/JSeclLu
Show HN: I made a JavaScript library to turn MPA to SPA I've always been fascinated by projects like Turbo Drive (formerly turbolinks), which attempt to bring Single Page (SPA) like navigation to Multi Page (MPA) web applications. I recently shared my work on Million.js (https://ift.tt/X7mFs3R), which is a modern take on Virtual DOM. Since Million.js internally uses a diffing algorithm, I decided to try and see if I could implement my own version of Turbo Drive, based on another diffing algorithm (micromorph). Here's me integrating into an existing open source project: https://ift.tt/N5nycvF It supports anchor tags, form submission, prefetching, and we're currently exploring more advance techniques with web workers and FLIP here! https://ift.tt/h0sw4QK I'm just really excited about this topic and I thought I'd share it to HN to see if any of you all have any suggestions :) May 2, 2022 at 11:26AM
SHOW HN: Newspaper for 21st Century https://ift.tt/ncMymaB
SHOW HN: Newspaper for 21st Century https://nsource.news May 2, 2022 at 06:07AM
Show HN: Everything I Know Wiki https://ift.tt/AyY74Qt
Show HN: Everything I Know Wiki https://wiki.nikiv.dev/ May 1, 2022 at 10:30PM
Show HN: How did I live without Pipe Watch? https://ift.tt/Z7xshg9
Show HN: How did I live without Pipe Watch? https://ift.tt/lWZzLTc May 2, 2022 at 09:43AM
Show HN: Web Tool for Training Music Soft-Skills https://ift.tt/Ov7T2qG
Show HN: Web Tool for Training Music Soft-Skills https://ift.tt/34cfiZt May 2, 2022 at 12:23AM
Show HN: Async Fundraising – Raise your seed round from Slack https://ift.tt/jduID1V
Show HN: Async Fundraising – Raise your seed round from Slack https://ift.tt/PDbnZC9 May 1, 2022 at 08:16PM
Sunday, May 1, 2022
Show HN: A Web-Based Modular Drum Machine for You to Play With https://ift.tt/4BtaxMh
Show HN: A Web-Based Modular Drum Machine for You to Play With https://ift.tt/8HKhqRQ May 1, 2022 at 05:54PM
Show HN: How to Professionally Say https://ift.tt/aiVLUdn
Show HN: How to Professionally Say https://ift.tt/0niz4y9 May 1, 2022 at 04:50PM
Show HN: Userscript to make HN @usernames clickable https://ift.tt/9Qc7HPI
Show HN: Userscript to make HN @usernames clickable https://ift.tt/Uyz7D05 May 1, 2022 at 11:34AM
Show HN: Turn GitHub repos into tutorials with code that can be edited and run https://ift.tt/AQCXnlh
Show HN: Turn GitHub repos into tutorials with code that can be edited and run https://io.livecode.ch/ May 1, 2022 at 01:25PM
Show HN: I'm building the “chess.com” of speed cubing https://ift.tt/I8cweid
Show HN: I'm building the “chess.com” of speed cubing https://ift.tt/YZpny3J May 1, 2022 at 06:23AM
Show HN: Telegram to Notion Bot https://ift.tt/Fq6BvOK
Show HN: Telegram to Notion Bot https://ift.tt/RESd1kl April 30, 2022 at 07:03PM
Subscribe to:
Posts (Atom)