Sunday, July 31, 2022
Show HN: I made a GH repo to curate remote jobs that don't ask for a location https://ift.tt/tW9KJIB
Show HN: I made a GH repo to curate remote jobs that don't ask for a location https://ift.tt/1O2EHxr July 31, 2022 at 04:37PM
Show HN: DALL-E Chess in Jungle and Dunes https://ift.tt/S2l6JHq
Show HN: DALL-E Chess in Jungle and Dunes https://ift.tt/AaQuTrF July 31, 2022 at 01:25AM
Show HN: Bunny REST Proxy – a HTTP message broker built on top of RabbitMQ https://ift.tt/jTU7OYM
Show HN: Bunny REST Proxy – a HTTP message broker built on top of RabbitMQ https://ift.tt/743NiFf July 30, 2022 at 09:24PM
Saturday, July 30, 2022
AWS Focuses on Identity Access Management at re:Inforce
Identity and access management was front and center at AWS re:inforce this week.
AWS Focuses on Identity Access Management at re:Inforce
Identity and access management was front and center at AWS re:inforce this week.
source https://www.darkreading.com/dr-tech/aws-focuses-on-identity-access-management-at-re-inforce
source https://www.darkreading.com/dr-tech/aws-focuses-on-identity-access-management-at-re-inforce
Attackers Have 'Favorite' Vulnerabilities to Exploit
While attackers continue to rely on older, unpatched vulnerabilities, many are jumping on new vulnerabilities as soon as they are disclosed.
ICYMI: Dark Web Happenings Edition With Evil Corp., MSP Targeting & More
Dark Reading's digest of other "don't-miss" stories of the week — including a Microsoft alert connecting disparate cybercrime activity together, and an explosion of Luca Stealer variants after an unusual Dark Web move.
Friday, July 29, 2022
Show HN: Distributed SQLite on FoundationDB https://ift.tt/Llc9qZS
Show HN: Distributed SQLite on FoundationDB https://ift.tt/PlINZ0F July 28, 2022 at 10:49PM
Show HN: Equities.fyi – Startup valuations based on public company data https://ift.tt/zGcO1nh
Show HN: Equities.fyi – Startup valuations based on public company data With the current down markets, we were wondering what private company valuations looked like when compared to similar public companies. We were inspired by the a16z article ( https://ift.tt/3T4JkKI... ) for calculating valuations and figured out the sales-to-valuation ratio of public companies at the time of the last fundraising round and applied the change in the public market to get the current startup valuation. If things don’t look right, our defaults might be off - please feel free to change those if they’re too different from what you’d expect. https://ift.tt/MowQUCD July 28, 2022 at 08:27PM
Show HN: BestDamnJobs – Best damn jobs updated daily and sorted by new openings https://ift.tt/MEX9IZf
Show HN: BestDamnJobs – Best damn jobs updated daily and sorted by new openings https://ift.tt/NTanUsl July 28, 2022 at 06:01PM
Show HN: Rimoto, control your computer with WebSockets https://ift.tt/csTfPz1
Show HN: Rimoto, control your computer with WebSockets Rimoto allows you to control your computer and show some stats from it like cpu & ram usage with the help of websockets. https://ift.tt/Y096Xlx July 28, 2022 at 06:01PM
Thursday, July 28, 2022
Overcoming the Fail-to-Challenge Vulnerability With a Friendly Face
Ahead of their Black Hat USA talk in August, Simon Pavitt and Stephen Dewsnip explain the value of helping people practice cyber defense via a "malicious floorwalker" exercise.
source https://www.darkreading.com/edge-articles/overcoming-the-fail-to-challenge-vulnerability-with-a-friendly-face
source https://www.darkreading.com/edge-articles/overcoming-the-fail-to-challenge-vulnerability-with-a-friendly-face
Overcoming the Fail-to-Challenge Vulnerability With a Friendly Face
Ahead of their Black Hat USA talk in August, Simon Pavitt and Stephen Dewsnip explain the value of helping people practice cyber defense via a "malicious floorwalker" exercise.
Show HN: Reach your localhost server from the internet with LocalXpose https://ift.tt/zQhKXey
Show HN: Reach your localhost server from the internet with LocalXpose Hi everyone, I'm Ahmed, founder of LocalXpose (ngrok alternative) - a reverse proxy that enables you to expose your localhost to the internet. This is my first SaaS. I created LocalXpose for (developers, DevOps engineers, sys admins or even gamers) to reach their localhost server behind a NAT or firewall with a secure and fast tunnel. Check it out here https://localxpose.io . Bye bye localhost, Hello World. Support me and give me your feedback, please!. https://localxpose.io July 27, 2022 at 10:58PM
Show HN: I made this webcomic with text-to-image AI https://ift.tt/QFIfHAu
Show HN: I made this webcomic with text-to-image AI https://pov.so/ July 27, 2022 at 09:14PM
Wednesday, July 27, 2022
LockBit 3.0: Significantly Improved Ransomware Helps the Gang Stay on Top
Just ahead of its headline-grabbing attack on the Italian tax agency, the infamous ransomware group debuted an improved version of the malware featuring parts from Egregor and BlackMatter.
source https://www.darkreading.com/attacks-breaches/lockbit-3.0-improved-malware-gang-top
source https://www.darkreading.com/attacks-breaches/lockbit-3.0-improved-malware-gang-top
Microsoft Tops Brands Phishers Prefer
Wide use of Microsoft 365 applications by business lets phishers easily launch data theft, BEC, ransomware, and other attacks, new report finds.
Microsoft Tops Brands Phishers Prefer
Wide use of Microsoft 365 applications by business lets phishers easily launch data theft, BEC, ransomware, and other attacks, new report finds.
source https://www.darkreading.com/attacks-breaches/microsoft-tops-brands-phishers-prefer
source https://www.darkreading.com/attacks-breaches/microsoft-tops-brands-phishers-prefer
Economic Downturn Raises Risk of Insiders Going Rogue
Insiders could become more vulnerable to cybercrime recruitment efforts, new report says.
Show HN: The Ultimate C++14 (and later) Enum Library https://ift.tt/0oONe9F
Show HN: The Ultimate C++14 (and later) Enum Library https://ift.tt/eEMaLXz July 26, 2022 at 01:24PM
Tuesday, July 26, 2022
Show HN: PickCode – An educational coding environment for students after Scratch https://ift.tt/ptO2RsG
Show HN: PickCode – An educational coding environment for students after Scratch PickCode is designed for use on desktop and tablet, and supports creating chatbots, visual designs, and 2D games. There is plenty of functionality missing - you can't add media to games for instance, but the current version shows off the foundation of what I'm aiming at. I taught myself to code using MIT's App Inventor, so I have an enormous respect for block based languages like App Inventor, Scratch, Snap!, MakeCode, etc. PickCode is my attempt at adding options for students who want to learn more about programming without making the jump to text, or as an alternative to block coding for beginners coming to programming at an older age. The visual language is meant to lower the barrier to entry to coding but the far more important aspect for me is giving students the ability to make things they're proud of as quickly as possible. A JS/Python API for controlling the chatbot and game engine are in the works. As of now, there are sample programs to play with and an editor which saves your programs to local storage. Full user accounts, tutorials and administrator accounts for teachers to organize assignments are on their way soon. If you're interested in using PickCode in a classroom or want to discuss feedback, send me an email at charlie@pickcode.io https://ift.tt/NDBzGHQ July 25, 2022 at 11:16PM
Show HN: Pipes puzzle (a.k.a. Net) on a hexagonal grid https://ift.tt/VN2OgIR
Show HN: Pipes puzzle (a.k.a. Net) on a hexagonal grid Hello, HN - I wanted to share this puzzle game I made during my vacation. I'm rather fond of the pipes puzzle where your goal is to restore a scrambled network of connections by rotating tiles. It's usually played on a grid of squares and this all started when I decided to make a programmatic solver for that kind of puzzle. Then I realized that with some minor changes the solver could generate new puzzle instances. I thought about what kind of puzzle to make and someone suggested a hexagonal grid. Adapting the generator wasn't too hard but then I had to create a way to play this variant. So I did just that =). I find hexagonal pipes a bit more difficult than the square variant because there's a larger variety of possible tile shapes. For an extra challenge I implemented wrap mode where the board can connect to itself (right to left and top to bottom), so there are no convenient outer walls to start from. The site is made with Svelte Kit, its code is available on github at < https://github.com/gereleth/hexapipes >. Hope you enjoy playing =). https://ift.tt/lPaTGLw July 24, 2022 at 09:50PM
Monday, July 25, 2022
Critical Filewave MDM Vulnerabilities Allow Attackers Full Mobile Device Control
Two previously unknown critical vulnerabilities within FileWave’s multiplatform MDM system could grant malicious actors access to the platform's most privileged user account.
source https://www.darkreading.com/vulnerabilities-threats/critical-filewave-mdm-vulnerabilities-attackers-mobile-device-control
source https://www.darkreading.com/vulnerabilities-threats/critical-filewave-mdm-vulnerabilities-attackers-mobile-device-control
Getting Ahead of Supply Chain Attacks
Attackers are willing to replicate entire networks, purchase domains, and persist for months, not to mention spend significantly to make these campaigns successful.
Show HN: Redirect clicks using a formula https://ift.tt/dxkg457
Show HN: Redirect clicks using a formula Part of my day job requires me to review a report monthly. The URL for July's report looks something like this: fancyreport.com?from=2022-07-01&to=2022-07-31 Typing this URL manually every month was just enough pain for me to put up a simple script on somedomainiown.com/magic that redirected me to the report for the current month by automatically filling in the "from" and "to" values in the URL. This way, I could bookmark one link and always open the latest report with one click. At some point, I figured I should put this behind a UI so that I could share it with my colleagues and maybe HN too. A couple of weeks of hacking, and here we are with an MVP the little imposter inside me finally accepted to post online. P.S. the "formule" implementation gets the job done for me, but is pretty rudimentary. Would love to know if you have a specific use case that'd benefit from other parameters or a more advanced formula system. https://ift.tt/Mh39R6o July 25, 2022 at 12:05AM
Show HN: AI art from text – Express yourself with images https://ift.tt/FtYWifc
Show HN: AI art from text – Express yourself with images https://art.elbo.ai July 25, 2022 at 02:29AM
Show HN: A Hugo Theme – Eternity https://ift.tt/Uc4nKIt
Show HN: A Hugo Theme – Eternity https://ift.tt/03S7i1C July 24, 2022 at 10:04PM
Sunday, July 24, 2022
Show HN: SkillPress – Learn JavaScript via spaced repetition and active recall https://ift.tt/KW87eaG
Show HN: SkillPress – Learn JavaScript via spaced repetition and active recall When I was getting into web development I used a combination of Anki and git to help me quickly learn and retain skills. Figuring there might be demand for a product that uses the same strategy (without the requirement that you already know Anki and git), I created SkillPress. No account is needed to start learning. I would greatly appreciate any feedback or suggestions. https://ift.tt/sIo1lTW July 24, 2022 at 05:18PM
Show HN: Kvass, a personal key-value store https://ift.tt/TPuRwXS
Show HN: Kvass, a personal key-value store https://ift.tt/viOzxK9 July 24, 2022 at 02:05PM
Show HN: Interactive meeting demo with WebRTC and WebSockets https://ift.tt/FrjkLxd
Show HN: Interactive meeting demo with WebRTC and WebSockets Just a little no sign-up demo I threw together of my product. WebRTC is just incredibly powerful. https://ift.tt/yvXVLhB July 23, 2022 at 06:32PM
Show HN: Complete trace of the link of a distributed transaction https://ift.tt/rd2iq74
Show HN: Complete trace of the link of a distributed transaction https://ift.tt/yhujWHF July 24, 2022 at 06:10AM
Show HN: Vssshield, a Rust project to mitigate Windows ransomware https://ift.tt/LPa3Gd8
Show HN: Vssshield, a Rust project to mitigate Windows ransomware https://ift.tt/LGwW6Oh July 23, 2022 at 01:13PM
Saturday, July 23, 2022
Understanding Proposed SEC Rules Through an ESG Lens
Cyber threats are putting environmental, social, and governance discussions at the forefront of board meetings and C-suite discussions around the globe.
source https://www.darkreading.com/edge-articles/understanding-proposed-sec-rules-through-an-environmental-social-and-governance-lens
source https://www.darkreading.com/edge-articles/understanding-proposed-sec-rules-through-an-environmental-social-and-governance-lens
Understanding Proposed SEC Rules Through an ESG Lens
Cyber threats are putting environmental, social, and governance discussions at the forefront of board meetings and C-suite discussions around the globe.
ICYMI: Neopets & the Gaming Problem; SolarWinds Hackers Are Back; Google Ads Abused
Dark Reading's weekly roundup of all the OTHER important stories of the week.
ICYMI: Neopets & the Gaming Problem; SolarWinds Hackers Are Back; Google Ads Abused
Dark Reading's weekly roundup of all the OTHER important stories of the week.
source https://www.darkreading.com/application-security/icymi-neopets-gaming-google-ads-abused-solarwinds-hackers
source https://www.darkreading.com/application-security/icymi-neopets-gaming-google-ads-abused-solarwinds-hackers
Show HN: Hacolyte – a Hacker News reader built with NextJS https://ift.tt/RerF2Tt
Show HN: Hacolyte – a Hacker News reader built with NextJS Long time Hacker News lurker, first time Hacker News poster : ) I built a Hacker News reader app with NextJS and TailwindCSS that pulls item and user data from the hacker news api ( https://ift.tt/OPsbmBx ). This is my first time really building and launching something for users so I'd love any and all feedback. The roughest spots at the moment are the threading of comments and the fetching of posts on a user's page (lots of individual calls (async) for individual items rather than getting them in bulk from an endpoint like /v0/beststories). Let me know what parts of it are Not Good and where I can improve things! https://ift.tt/toZbOgk July 22, 2022 at 11:03PM
Friday, July 22, 2022
Show HN: Next.js, Prisma, Docker Boilerplate that you can reuse https://ift.tt/Tu7INti
Show HN: Next.js, Prisma, Docker Boilerplate that you can reuse https://ift.tt/gij0ERo July 22, 2022 at 01:02PM
Show HN: Scribe, a Go library for writing, running, and generating CI pipelines https://ift.tt/CK0mRd8
Show HN: Scribe, a Go library for writing, running, and generating CI pipelines Hi there. This is a passion project of mine I started after spending many painful hours working on CI pipelines. The general idea is that I wanted to stop making flimsy scripts in build & release pipelines and start writing software. I'm happy to answer any questions. Please let me know what you think of the idea and if there's anything you'd like to see. https://ift.tt/s9nkit7 July 22, 2022 at 12:58AM
Show HN: Project Euler Offline https://ift.tt/3ZkHzbM
Show HN: Project Euler Offline https://ift.tt/HhcGBam July 21, 2022 at 11:24PM
Mysterious, Cloud-Enabled macOS Spyware Blows Onto the Scene
The CloudMensis spyware, which can lift reams of sensitive information from Apple machines, is the first Mac malware observed to exclusively rely on cloud storage for C2 activities.
Thursday, July 21, 2022
Show HN: A better way of version controlling IAC https://ift.tt/8h2jbgJ
Show HN: A better way of version controlling IAC I believe I've reached a point in my career, and used Terraform enough, that I can confidently say that the semver system for managing IAC code bases simply doesn't cut it anymore. I'd love more widespread feedback on how I currently propose we version control our IAC. If the feedback is constructive and forthcoming, I'll move this written piece to a more formal location. This is currently being tested, with extremely positive results, at Cisco (yeah, the networking company.) https://ift.tt/pG9l7K2 July 21, 2022 at 05:11AM
Show HN: I built an all-in-one virtual production platform for indies https://ift.tt/GbSEwWj
Show HN: I built an all-in-one virtual production platform for indies After being frustrated with the budget and learning curve requirements of the big names in the Virtual Production field, I decided to create my own all-in-one platform designed with beginners and less-technical folk in mind. It takes complicated tasks in other engines (tracking, compositing, floor plans, etc.) and makes them two-click solutions. And, with the free companion mobile app, you can track cameras, scan your sets, and (coming soon) do full body motion capture! There's a ton more features that I'm super proud of, and I'm open to any and all feedback! Thanks! Https://SceneForge.app July 21, 2022 at 01:13AM
Cybersecurity Professionals Push Their Organizations Toward Vendor Consolidation and Product Integration
New global study from ESG and ISSA reveals nearly half of organizations are consolidating or plan on consolidating the number of vendors they do business with
source https://www.darkreading.com/cloud/cybersecurity-professionals-push-their-organizations-toward-vendor-consolidation-and-product-integration
source https://www.darkreading.com/cloud/cybersecurity-professionals-push-their-organizations-toward-vendor-consolidation-and-product-integration
Cybersecurity Professionals Push Their Organizations Toward Vendor Consolidation and Product Integration
New global study from ESG and ISSA reveals nearly half of organizations are consolidating or plan on consolidating the number of vendors they do business with
Wednesday, July 20, 2022
Show HN: bashttp - a very (very) simple web server in Bash https://ift.tt/O6RtAvY
Show HN: bashttp - a very (very) simple web server in Bash https://ift.tt/OFwN3rD July 20, 2022 at 05:07AM
Show HN: rqlite, the distributed database built on SQLite – now with ARM support https://ift.tt/jgr2T4A
Show HN: rqlite, the distributed database built on SQLite – now with ARM support https://ift.tt/G8qlX3P July 20, 2022 at 04:26AM
Show HN: Open-source code editor for transforming data and building ML pipelines https://ift.tt/4qSxErl
Show HN: Open-source code editor for transforming data and building ML pipelines https://ift.tt/r6YJ4nt July 20, 2022 at 02:16AM
Show HN: I built a handheld CHIP-8 game console to teach myself embedded systems https://ift.tt/Mkx9gnQ
Show HN: I built a handheld CHIP-8 game console to teach myself embedded systems A while back I wrote a CHIP-8 emulator (which is considered the Hello, World! of emulators and is more accurately a virtual machine since historically CHIP-8 was an interpreted language running on top of the COSMAC VIP to make game programming easier). But a few months ago I got really interested in embedded software, so decided it would be neat to port my emulator to a STM32 MCU and design a console around it as a learning experience, since CHIP-8 never existed as a physical system. I didn't know much about embedded software when I began, and even less about electronics, but I managed to write all the firmware from scratch and even designed my first PCB, resulting in a finished (though not very polished) handheld CHIP-8 console. For those curious, the GitHub repo also has links to my dev blog about the project as well as a build guide. Thanks for looking! https://ift.tt/94RXF53 July 20, 2022 at 12:42AM
Ongoing Magecart Campaign Targets Online Ordering at Local Restaurants
More than 311 local eateries have been breached through online ordering platforms MenuDrive, Harbortouch, and InTouchPOS, impacting 50K records — and counting.
Tuesday, July 19, 2022
NICE Webinar: Overcoming the Entry-Level Job in Cybersecurity Conundrum
Speakers: To be announced. Synopsis: Many headlines capture the crisis as a “cybersecurity skills shortage” or “talent gap”. However, the urgent challenge in front of us is to create better pathways for career-entry into cybersecurity. The NICE Via NIST Events https://ift.tt/0ngPkeA
Retbleed Fixed in Linux Kernel, Patch Delayed
Linus Torvalds says Retbleed has been addressed in the Linux kernel, but code complexity means the release will be delayed by a week to give more time for testing.
Show HN: A simple Twitter-feed-style web RSS reader provided as a container https://ift.tt/EKpnwt8
Show HN: A simple Twitter-feed-style web RSS reader provided as a container https://ift.tt/cSfQsL3 July 18, 2022 at 11:32PM
FBI: Beware of Scam Cryptocurrency Investment Apps
Law enforcement estimates campaign has already bilked cryptocurrency investors out of $42.7 million.
source https://www.darkreading.com/threat-intelligence/fbi-beware-of-scam-crypto-investment-apps
source https://www.darkreading.com/threat-intelligence/fbi-beware-of-scam-crypto-investment-apps
FBI: Beware of Scam Cryptocurrency Investment Apps
Law enforcement estimates campaign has already bilked cryptocurrency investors out of $42.7 million.
Show HN: SVG stroke-dashoffset interactive examples https://ift.tt/3UyptAr
Show HN: SVG stroke-dashoffset interactive examples SVG stroke-dashoffsets have always confused me. I couldn't never figure out which way the line was going to move as I increased or decreased them. So I made some interactive examples to help. https://ift.tt/o2jvIf6 July 18, 2022 at 10:01PM
Monday, July 18, 2022
Show HN: If VS Code had a data-centric IDE sibling, what would that look like? https://ift.tt/tmjzVDM
Show HN: If VS Code had a data-centric IDE sibling, what would that look like? https://ift.tt/wyn71xE July 18, 2022 at 12:09PM
Show HN: A just another Cron alternative but with much more capabilities https://ift.tt/hX5zAGP
Show HN: A just another Cron alternative but with much more capabilities I have created a Cron alternative that runs DAGs (Directed acyclic graph) defined in a simple YAML format. Why not Airflow? Airflow and other similar tools are powerful and valuable, but in most cases, they require writing code to manage workflows. Our ETL pipeline is already hundreds of thousands of lines of complex code in Perl and shell scripts. Adding another layer of Python on top of this might make it difficult to maintain. Instead, we needed a more lightweight solution. So we developed Dagu, which requires no coding, and is easy-to-use and self-contained, making it ideal for smaller projects with fewer people. Any feedback or comments will be very welcomed. Thank you :) https://ift.tt/aDgEeVv July 18, 2022 at 05:46AM
Show HN: Typograms, Markdown-like renderer for ASCII diagrams https://ift.tt/jLJ1z2F
Show HN: Typograms, Markdown-like renderer for ASCII diagrams https://ift.tt/YXhsiVW July 18, 2022 at 04:05AM
Show HN: Netflix Calculator https://ift.tt/7Up1Ftb
Show HN: Netflix Calculator https://ift.tt/3eSWlrw July 17, 2022 at 07:09PM
Sunday, July 17, 2022
Show HN: MechKeebs – Online community to discover your next mechanical keyboard https://ift.tt/oayd9qj
Show HN: MechKeebs – Online community to discover your next mechanical keyboard https://mechkeebs.com/ July 17, 2022 at 02:20PM
Show HN: IOK – an open ruleset and DSL for detecting phishing kits https://ift.tt/mrzBSDk
Show HN: IOK – an open ruleset and DSL for detecting phishing kits https://ift.tt/BmIkeL2 July 17, 2022 at 01:21PM
Show HN: I built a walkthrough of Redis's source code https://ift.tt/IVruBg9
Show HN: I built a walkthrough of Redis's source code https://ift.tt/DKfJ3Ip July 17, 2022 at 06:12AM
Show HN: dpScreenOCR – a program to recognize text on the screen https://ift.tt/lGDo1E2
Show HN: dpScreenOCR – a program to recognize text on the screen In a nutshell, dpScreenOCR can recognize text from the selected screen area, and then can copy it to the clipboard, add it to history, or pass it as an argument to an executable. https://ift.tt/kDiyrwM July 17, 2022 at 04:05AM
Show HN: A compiler and VM for a simple language, in 150 lines of code https://ift.tt/GFatNsy
Show HN: A compiler and VM for a simple language, in 150 lines of code https://ift.tt/5pzhLNP July 16, 2022 at 11:51PM
Show HN: Ex Platform for SWEs https://ift.tt/RuY0jCQ
Show HN: Ex Platform for SWEs Hey guys, just sharing this project that I've been working on. Let me know what you think. This idea came primarily from my own experience in the software industry. After a while, I was feeling discouraged by my job, mostly because I felt expendable (like a code monkey), burned out, and had unchallenging work. It felt like the employers I was working for didn’t have an idea of what was going on or how their employees were feeling. They would talk a lot about the technical challenges, but never did we talk about any mental/emotional challenges. So I started thinking about what could be done to mitigate this problem and came up with this solution. An employee experience platform that tracks multiple psychological dimensions (specifically customized to track problems that can be faced in a software engineering environment) and gives the managers some insights into their teams/employees. I'm still currently working on the MVP but would love to hear what you guys think about the idea and landing page. The MVP should be out in 2-3 weeks from now. https://smartteams.ca/ July 16, 2022 at 10:54PM
Saturday, July 16, 2022
Show HN: A searchable archive of Wikipedia's “Current Events” portal https://ift.tt/4JHa7jE
Show HN: A searchable archive of Wikipedia's “Current Events” portal https://pastevents.org/ July 16, 2022 at 03:26PM
Show HN: WatchThemLive – Legally Watch Your Users' Activities on Your Website https://ift.tt/CrSW2ZA
Show HN: WatchThemLive – Legally Watch Your Users' Activities on Your Website https://watchthem.live/ July 16, 2022 at 11:33AM
Show HN: Owlkettle – A Declarative user interface framework based on GTK 4 https://ift.tt/IOvPC2d
Show HN: Owlkettle – A Declarative user interface framework based on GTK 4 https://ift.tt/fK5jkZc July 16, 2022 at 12:26AM
Show HN: Hacker News Mods - A collection of tools/mods for HN https://ift.tt/qVtpw5y
Show HN: Hacker News Mods - A collection of tools/mods for HN Hey HN! I built Hacker News Mods as a place to collect any tools or sites related to HN. We just started building one mod/tool for HN per week, and I thought it’d be a good idea to showcase all of the tools we’ve created, as well as tools that others have created as well. The site is pretty scrappy, so any feedback is appreciated! Also, please submit any projects that we don’t already have listed! Thanks, Jarren https://ift.tt/tOqKy4f July 15, 2022 at 11:39PM
Show HN: Eesel – Federated search without API integrations https://ift.tt/DQGHLPr
Show HN: Eesel – Federated search without API integrations Hey there! Amogh here from eesel ( https://eesel.app ). eesel filters your browser history to show the docs you need for work, right in your new tab. You can see recent docs, filter by app or search by title or content. We're trying to solve a pretty universal problem. Everyone's work is spread across apps - there's a project brief in Google Docs, issues in Jira, a mockup in Figma, PRs in GitHub - and with this kind of sprawl, it can be a game of trial and error to find the links we need to do our job. Trying keywords in the address bar only works if we remember the title and it's specific enough, search in apps can be slow and noisy, company "knowledge hubs" in Confluence or Google Drive are usually not up to date, and we ultimately just ping each other on Slack to find things. I was struggling with this acutely as a PM at Intercom, and it felt ridiculous that I could search the web faster than my company's docs. It was around this time that I also discovered an Effective Altruism blog post on Operations ( https://ift.tt/Ry5a4Ki ) and how "maximising the productivity of others in the organisation" can have this multiplier effect for your own impact. That's when it clicked - here's an "operations" problem that felt tractable for my skills and I could potentially multiply my impact by solving it. This is what gave the conviction to prototype something on the weekends, and things spun off from there. Let's talk about the solution more. The magical thing about eesel is that we don't use APIs. When it comes to "search across apps", integrating with different APIs is a pretty default way to approach things. That's how we started, but things felt uneasy - could we really build API integrations with _everything_? There's so much out there, and this list is pretty much always changing. If we really did want a search across all work apps, we'd have to play catch up with old and new APIs. You could argue that these were just the schleps ( https://ift.tt/1cAei2b ) we had to overcome, but it was amidst this we realised that uh, the browser exists. We mostly work in the browser, and the great thing about it is that it's built on web standards. From HTTP and URLs to HTML and CSS, all apps in the browser follow the same predictable patterns: documents are accessed via URLs, content lives inside the HTML, there's a page title, there's a favicon, and so on. It's not a perfect replacement for APIs, but it felt good enough. We didn't need to manually integrate with each app, and could instead rely on existing web standards. And that's what we did. eesel works with any app in the browser, including apps without APIs (like that internal company tool), or apps that don't exist yet (the new Product Hunt hit). Not using APIs also meant that we could go an extra step with privacy - eesel works fully locally by default and you don't need to login to _anything_ (even eesel!). Simply install and it works. We want to keep building on this approach and improve how we work in the browser. For instance, eesel uses keywords to automatically organise pages into Folders, and there's Commands to take actions (spoiler: you can customise a JavaScript to inject on a page, like this script that goes to a Notion backlog and clicks the "New" button - https://ift.tt/XQATMuo... ). Alright, that's a lot of writing from us. We have a bunch of ideas, and would love to hear about where you think we should take this next. https://www.eesel.app/ July 15, 2022 at 03:14PM
Friday, July 15, 2022
Bishop Fox Secures $75 Million in Growth Funding From Carrick Capital Partners
Offensive security leader continues to defy market and economic trends with record growth and recognized innovation.
source https://www.darkreading.com/vulnerabilities-threats/bishop-fox-secures-75-million-in-growth-funding-from-carrick-capital-partners
source https://www.darkreading.com/vulnerabilities-threats/bishop-fox-secures-75-million-in-growth-funding-from-carrick-capital-partners
Show HN: Tweedle – A Wordle game for profiles and tweets on Twitter https://ift.tt/s9rXP25
Show HN: Tweedle – A Wordle game for profiles and tweets on Twitter Hey everyone! I wanted to share a game that myself and a couple other colleagues hacked up called Tweedle. We wanted to try something different in the genre of wordle clones, so we decided to build a game that algorithmically generates daily wordle puzzles for any person/profile on Twitter. The idea is that you can play someone’s tweets, guessing a word inside the tweet using wordle style gameplay. If you have an active Twitter profile, the game will generate a puzzle for your profile; this enables anyone on Twitter to have their own wordle game! Here is a game for a popular hacker news bot on twitter: https://ift.tt/Oiv5Vbr If you have a twitter profile, you can play your own game by navigating to https://ift.tt/S4IyvRM The game runs on a pretty standard AWS stack. The backend is designed to dynamically generate puzzles for any new profile. It uses an idempotent heuristic that both selects the daily tweet and daily word for any profile passed to it. We use multiple layers of caching to make this fast. The frontend is a React + Redux SPA. We built some tools to make sharing and link attribution easy so that when you share a game with a friend, we ensure they are able to play the exact same game. For the game’s design, we’re exploring how we can make it more competitive around profiles. IE, who knows a particular profile best. We think that letting you play all the tweets from a profile could be fun as well. We hope you find the game fun to play and would love to hear any feedback or answer questions! (note: we’re not affiliated with Twitter) https://ift.tt/KY3ZVM2 July 15, 2022 at 12:24AM
DHS Review Board Deems Log4j an 'Endemic' Cyber Threat
Vulnerability will remain a "significant" threat for years to come and highlighted the need for more public and private sector support for open source software ecosystem, Cyber Safety Review Board says.
New Phishing Kit Hijacks WordPress Sites for PayPal Scam
Attackers use scam security checks to steal victims' government documents, photos, banking information, and email passwords, researchers warn.
Thursday, July 14, 2022
CyberRatings.org Issues AAA Rating on Forcepoint's Cloud Network Firewall
Forcepoint's test results are second in a series of publications on this new technology.
Report: Financial Institutions Overly Complacent About Current Authentication Methods
New research report finds most financial organizations have experienced a breach due to an authentication weakness, yet only a third took action
Show HN: BentoML goes 1.0 – A faster way to ship your models to production https://ift.tt/K5RudqU
Show HN: BentoML goes 1.0 – A faster way to ship your models to production https://ift.tt/hRBaqv1 July 13, 2022 at 11:46PM
CyberRatings.org Issues AAA Rating on Forcepoint's Cloud Network Firewall
Forcepoint's test results are second in a series of publications on this new technology.
source https://www.darkreading.com/cloud/cyberratings-org-issues-aaa-rating-on-forcepoint-s-cloud-network-firewall
source https://www.darkreading.com/cloud/cyberratings-org-issues-aaa-rating-on-forcepoint-s-cloud-network-firewall
Report: Financial Institutions Overly Complacent About Current Authentication Methods
New research report finds most financial organizations have experienced a breach due to an authentication weakness, yet only a third took action
source https://www.darkreading.com/attacks-breaches/report-financial-institutions-overly-complacent-about-current-authentication-methods
source https://www.darkreading.com/attacks-breaches/report-financial-institutions-overly-complacent-about-current-authentication-methods
Mozilla: EU's eIDAS Proposal Attracts Growing Criticism
In the wrong hands, the changes could enable state-sponsored internet surveillance says Mozilla's Chief Security Officer
Wednesday, July 13, 2022
Microsoft Issues Fixes for 84 Vulnerabilities: Here's What to Patch Now
July's security update included fixes for one actively exploited flaw, more than 30 bugs in Azure Site Recovery, and four privilege escalation bugs in Windows Print Spooler.
Microsoft Issues Fixes for 84 Vulnerabilities: Here's What to Patch Now
July's security update included fixes for one actively exploited flaw, more than 30 bugs in Azure Site Recovery, and four privilege escalation bugs in Windows Print Spooler.
source https://www.darkreading.com/application-security/microsoft-issues-fixes-for-84-vulnerabilities-here-s-what-to-patch-now
source https://www.darkreading.com/application-security/microsoft-issues-fixes-for-84-vulnerabilities-here-s-what-to-patch-now
Tuesday, July 12, 2022
'Luna Moth' Group Ransoms Data Without the Ransomware
Unsophisticated campaigns use off-the-shelf RATs and other tools to exfiltrate data and demand a ransom to keep it private.
Show HN: Run transformers model inference in C/C++ and even assembly https://ift.tt/RNupLYX
Show HN: Run transformers model inference in C/C++ and even assembly https://ift.tt/yAr2paG July 12, 2022 at 12:44AM
'Luna Moth' Group Ransoms Data Without the Ransomware
Unsophisticated campaigns use off-the-shelf RATs and other tools to exfiltrate data and demand a ransom to keep it private.
source https://www.darkreading.com/threat-intelligence/-luna-moth-group-ransoms-data-without-the-ransomware
source https://www.darkreading.com/threat-intelligence/-luna-moth-group-ransoms-data-without-the-ransomware
6 Cloud Monitoring Use Cases and Why You Should Care
End-to-end visibility of application and network performance from on-premises to the cloud is critical for efficient and accurate network monitoring.
Show HN: Namecheap AI business name generator https://ift.tt/17AHDX6
Show HN: Namecheap AI business name generator https://ift.tt/Wp1qoDU July 11, 2022 at 10:45PM
Rethinking Vulnerability Management in a Heightened Threat Landscape
Find out why a vital component of vulnerability management needs to be the capacity to prioritize from Mariano Nunez, CEO of Onapsis and Threatpost Infosec Insiders columnist.
from Threatpost https://ift.tt/2Z5MXSa
via gqrds
from Threatpost https://ift.tt/2Z5MXSa
via gqrds
Monday, July 11, 2022
Show HN: Colorvote.io – ranking all 16,777,216 sRGB web colors by popularity https://ift.tt/rHR9EVN
Show HN: Colorvote.io – ranking all 16,777,216 sRGB web colors by popularity https://ift.tt/fYQodka July 11, 2022 at 12:05PM
Show HN: CANDL, a Replacement for YAML https://ift.tt/pSDmszr
Show HN: CANDL, a Replacement for YAML https://ift.tt/vS1Flzt July 11, 2022 at 09:32AM
Show HN: Typewaiter, the typewriter that doesn't wait https://ift.tt/KA6jEFV
Show HN: Typewaiter, the typewriter that doesn't wait Howdy HN, just recently made this silly typewriter variant and think some of you might enjoy it so thought I'd share. Here the cursor takes no heed of what you're typing and just advances at a steady pace, with the effect that typing something reasonable-looking requires you to type at a very steady rhythm. There's also the bonus that the space character is no longer needed—you can (and kind of have to) just wait—so the keyboard minimalists among us can shave even more space off their devices. Only desktop for now. It's an interesting contrast to the last one I made—which requires you to do all the heavy lifting in moving the cursor position yourself— https://ift.tt/aC6vkbF https://ift.tt/LaNAWOi July 11, 2022 at 01:27AM
Show HN: A USB-Rubber-Ducky Blocker (Clarified) https://ift.tt/OwamdhI
Show HN: A USB-Rubber-Ducky Blocker (Clarified) https://ift.tt/B0daYJE July 10, 2022 at 10:56PM
Show HN: Whatcha – social network for digital media https://ift.tt/vIBZjht
Show HN: Whatcha – social network for digital media Hi all! Christian here, creator of Whatcha, the easiest way to discover, track, discuss, and share movies, shows, books, and podcasts. I created Whatcha because I wanted all the information I needed to decide what I should check out next in one place. If you're like me, you're having multiple conversations with friends on what they're watching, creating watch/read/listen lists on multiple platforms (or just a notes app) that quickly get disorganized, or just have a hard time deciding on what to start next. Whatcha is aiming to solve those problems by bringing everything and everyone together in one place. With the proliferation of media platforms, services, and content, Whatcha has been a great way to organize and share your favorites. I just launched Whatcha on the Apple app store, with an Android version coming soon. Would appreciate any feedback you have on how I can make Whatcha better and more useful for you. Thanks! https://ift.tt/6yIaQH4 July 10, 2022 at 09:57PM
Show HN: Evryca – fractal thinking tool to brainstorm and organize thoughts https://ift.tt/eRd94t5
Show HN: Evryca – fractal thinking tool to brainstorm and organize thoughts Made a tool to organize thoughts. Actually it is a mind tree, but in a more web-friendly form. It has pivoted from what I originally started building at evryca.com. Some years ago I got the idea of fractal conversation, instead of old-school tree/ladder-like comments. I wanted to see only comments related to the current level. I started making "something" with fractal comments. This "something" was a project discussion platform. But it turned out that even I myself don't use it, and the idea of fractal comments stuck there unused. And recently it dawned on me that it may be a conversation with yourself — thinking, brainstorming, taking notes, writing. So made this kind of cork/whiteboard, where one can dive into the subject and, being in the flow, write and see only related notes and rearrange them later. I'm trying to make it flawless and add keyboard shortcuts where it's possible (Ctr+Enter to submit idea, drag-and-drop to rearrange, Esc to jump level up). So finally I've made a tool that I use myself and will update it gradually (sorting, touch devices, ex/import (json, text), boards, more navigation with keyboard and other stuff, and login). https://www.evryca.com/ July 9, 2022 at 12:33PM
Sunday, July 10, 2022
Show HN: Find Snippets from Stackoverflow for VSCode https://ift.tt/y83Qhzx
Show HN: Find Snippets from Stackoverflow for VSCode https://ift.tt/xfj0z9i July 10, 2022 at 01:56PM
Show HN: Ants Sandbox - an ants simulator https://ift.tt/35MgC7R
Show HN: Ants Sandbox - an ants simulator https://ift.tt/DxV78Nj July 10, 2022 at 12:48PM
Show HN: mbtiles-s3-server – serve vector map tiles directly from mbtiles on S3 https://ift.tt/D2OHCyo
Show HN: mbtiles-s3-server – serve vector map tiles directly from mbtiles on S3 https://ift.tt/5DT9JtW July 10, 2022 at 12:24PM
Show HN: Office hours for technical books/frameworks https://ift.tt/HEPIKdk
Show HN: Office hours for technical books/frameworks https://ift.tt/4mENrkd July 9, 2022 at 11:04PM
Show HN: Maze Generation Visualization https://ift.tt/wFcueWg
Show HN: Maze Generation Visualization https://ift.tt/iyAdDLR July 9, 2022 at 11:04AM
Saturday, July 9, 2022
Show HN: Triple Payments – Request crypto from anyone by sharing a link https://ift.tt/eqdR7aC
Show HN: Triple Payments – Request crypto from anyone by sharing a link Hi HN, Kevin and Ben here. Triple Payments is the easiest way to invoice someone and get paid in crypto. Just specify an amount and currency to pay out in, and share the link that we generate. We built Triple Payments to solve one of the most annoying problems we faced as web3 developers – requesting crypto without going back-and-forth on tokens and wallet addresses. When sending large sums of USDC or ETH, we were never 100% sure that our money was going to the right wallets. Under the hood, we let payers send ETH or stablecoins like USDC directly by calling standard transfer methods that work with their web3 wallets. If payers don’t have any of the requested currency, we give them the option to pay with a different token, using the 0x [1] platform and our custom contract to swap tokens behind the scenes. We’d love it if you could try creating a payment request, and look forward to hearing your feedback and suggestions! [1]: https://www.0x.org/ https://triple.xyz/ July 9, 2022 at 02:05AM
Show HN: Nasefa – Sending myself files (via self-hosted NATS) https://ift.tt/IOR312K
Show HN: Nasefa – Sending myself files (via self-hosted NATS) https://ift.tt/R8pVDib July 9, 2022 at 01:01AM
Show HN: Wiby is now free software https://ift.tt/BkIZWtX
Show HN: Wiby is now free software https://ift.tt/ScWb04D July 9, 2022 at 12:13AM
Show HN: I made a small Space Shooter https://ift.tt/G1Jmwgn
Show HN: I made a small Space Shooter Thank you https://opengameart.org for your service. People like me who can't draw or compose music are in your debt. The game, "Glitch and Rush" has been made in a few hours here and there. I've been tinkering in GameDev for years, if not decades, but I never released anything. The goal here was simple: - come up with a core mechanic - implement a single level - add some polishing - RELEASE I hope you'll enjoy it. BTW, my best time is 2min23s (yes, I'm bad at my own game, it's ok, I'm ok). https://ift.tt/QpkRYcw July 8, 2022 at 11:58PM
Show HN: Status Page Status Page Status Page https://ift.tt/RBuMA8b
Show HN: Status Page Status Page Status Page https://ift.tt/cgvPtlx July 8, 2022 at 11:33PM
Friday, July 8, 2022
Cyber Skills Center Launches in Tulsa to Develop Diverse, Local Tech Talent Pipeline
New program offers free tech skills training and paid apprenticeships to make education and career pathways more accessible.
Stealthy Cyber-Campaign Ditches Cobalt Strike for Rival 'Brute Ratel' Pen Test Tool
The latest criminal use of a legitimate red-teaming tool helps attackers stay under the radar and better access living-off-the-land binaries.
Show HN: RemoteFriendly – A remote job board inspired by HN https://ift.tt/HlE7fbW
Show HN: RemoteFriendly – A remote job board inspired by HN https://ift.tt/gFGS7ks July 8, 2022 at 12:20AM
Stealthy Cyber-Campaign Ditches Cobalt Strike for Rival 'Brute Ratel' Pen Test Tool
The latest criminal use of a legitimate red-teaming tool helps attackers stay under the radar and better access living-off-the-land binaries.
source https://www.darkreading.com/attacks-breaches/cyber-campaign-cobalt-strike-pentest-tool-brute-ratel
source https://www.darkreading.com/attacks-breaches/cyber-campaign-cobalt-strike-pentest-tool-brute-ratel
Thursday, July 7, 2022
Prevention Takes Priority Over Response
Cybersecurity teams continue to emphasize intrusion prevention over incident response, despite US government action.
source https://www.darkreading.com/tech-trends/prevention-takes-priority-over-response
source https://www.darkreading.com/tech-trends/prevention-takes-priority-over-response
Prevention Takes Priority Over Response
Cybersecurity teams continue to emphasize intrusion prevention over incident response, despite US government action.
Show HN: Barfi – Python flow based programming with GUI https://ift.tt/Bvjua4M
Show HN: Barfi – Python flow based programming with GUI What? Another flow based programming library for Python? Yes. All the FBP libraries out there for Python need to be run as a self contained application. They are not components that could be integrated into your existing data workflows. Barfi, on the other hand can be integrated. At the moment it has a Streamlit component that you can use in your Streamlit apps. Currently, I am working on a Jupyter notebook widget. https://ift.tt/MYu16nc July 7, 2022 at 12:00AM
North Korean State Actors Deploy Surgical Ransomware in Ongoing Cyberattacks on US Healthcare Orgs
US government warns healthcare and public-health organizations to expect continued attacks involving the manually operated "Maui" ransomware.
source https://www.darkreading.com/attacks-breaches/north-korean-state-actors-deploy-surgical-ransomware-in-ongoing-cyberattacks-us-healthcare-orgs
source https://www.darkreading.com/attacks-breaches/north-korean-state-actors-deploy-surgical-ransomware-in-ongoing-cyberattacks-us-healthcare-orgs
North Korean State Actors Deploy Surgical Ransomware in Ongoing Cyberattacks on US Healthcare Orgs
US government warns healthcare and public-health organizations to expect continued attacks involving the manually operated "Maui" ransomware.
Show HN: We created a password and data manager for teams https://ift.tt/4CvUquR
Show HN: We created a password and data manager for teams https://ift.tt/qj8ZVuN July 6, 2022 at 11:57PM
Wednesday, July 6, 2022
HackerOne Employee Fired for Stealing and Selling Bug Reports for Personal Gain
Company says it is making changes to its security controls to prevent malicious insiders from doing the same thing in future; reassures bug hunters their bounties are safe.
Show HN: Localization and translations should be code, not data https://ift.tt/BI2dY7U
Show HN: Localization and translations should be code, not data https://ift.tt/b2Ks8yq July 5, 2022 at 11:15PM
HackerOne Employee Fired for Stealing and Selling Bug Reports for Personal Gain
Company says it is making changes to its security controls to prevent malicious insiders from doing the same thing in future; reassures bug hunters their bounties are safe.
source https://www.darkreading.com/vulnerabilities-threats/hackerone-employee-fired-for-stealing-and-selling-bug-reports-for-personal-gain
source https://www.darkreading.com/vulnerabilities-threats/hackerone-employee-fired-for-stealing-and-selling-bug-reports-for-personal-gain
Supply Chain Attack Deploys Hundreds of Malicious NPM Modules to Steal Data
A widespread campaign uses more than 24 malicious NPM packages loaded with JavaScript obfuscators to steal form data from multiple sites and apps, analysts report.
Show HN: A USB-Rubber-Ducky Blocker (50 Codes) https://ift.tt/A2LzHsN
Show HN: A USB-Rubber-Ducky Blocker (50 Codes) https://ift.tt/RozA7CP July 5, 2022 at 10:46PM
Tuesday, July 5, 2022
Show HN: Wander, a terminal app for HashiCorp Nomad https://ift.tt/sPM713Z
Show HN: Wander, a terminal app for HashiCorp Nomad https://ift.tt/d0lw4oT July 5, 2022 at 12:11AM
Show HN: Get the machine to CROON - Singer/Songwriters with Jukebox [pdf] https://ift.tt/D8mbeFh
Show HN: Get the machine to CROON - Singer/Songwriters with Jukebox [pdf] https://ift.tt/ISYrtcN July 4, 2022 at 09:44PM
Show HN: A short dystopian game I build last weekend https://ift.tt/jta9ZiJ
Show HN: A short dystopian game I build last weekend https://ift.tt/cZHBda3 July 4, 2022 at 10:43PM
Subscribe to:
Posts (Atom)