Automate feature flag cleanups in your team and save weeks or even months of tedious work each year. Our new open-source codemod features a modular architecture that can be easily tailored to your needs with the help of AI or experts in our team. Learn more → go.codemod.com/ff-cleanup
Codemod的动态
最相关的动态
-
Automated feature flag cleanup is a very impactful use case for codemods! We build a codemod once, and you can use it frequently. Save months of tedious work and boost experimentation velocity by reducing the friction of using feature flags in your team! DM me for more info!
Automate feature flag cleanups in your team and save weeks or even months of tedious work each year. Our new open-source codemod features a modular architecture that can be easily tailored to your needs with the help of AI or experts in our team. Learn more → go.codemod.com/ff-cleanup
-
?? Just conquered the "Headless" box on HackTheBox! ???? Gained initial access through a crafty web vulnerability, followed by leveraging another web vulnerability to dive deeper. ???♂? The final stretch involved an easy-to-spot privilege escalation using a particular file. ???? This easy and relaxing challenge was perfect for an afternoon hack! ?? #HackTheBox #Headless #CyberSecAdventure #InfoSecJourney #EthicalHacking #CaptureTheFlag
-
Another new feature of delete-selection mode was just released as v0.4.0 in maplibre-gl-terradraw! Now you can delete only selected feature in select mode. Demo https://lnkd.in/eqjDYccm #maplibre #terradraw
-
The speaker discussed the importance of reproducible and immutable operating system (OS) images, particularly in the context of security. He highlighted the benefits of immutable systems, including integrity protection, minimized writable space, and improved availability through rollback capabilities. Reproducible builds were emphasized as superior to build provenance, allowing users to verify the exact same image was built from published source code. The speaker presented Nyx OS and NixOS as powerful tools for building reproducible images. He outlined a framework for creating integrity-protected boot chains and introduced key components like UEFI, TPMs, and DM-verity. The talk covered integrations between Nyx OS and tools like systemd-repart for flexible image building and the challenges of working with immutable systems in a mutable world. The speaker concluded that Nyx OS currently offers the best tools for building immutable and reproducible OS images. https://lnkd.in/dkpF-eZr YAl27ciB6c8
Reproducible and Immutable OS Images with NixOS
https://www.youtube.com/
-
There are so many people with production access making mistakes in this "fuck up" reddit thread: https://lnkd.in/djPaGNUt Quite a few would have benefited from using Kviklet. I also think I really should expand to SSH eventually, quite a few mistakes done on that front too. Fun stories all around though, but you really do not want to be in those shoes yourself. How could a reasonable way to have the 4 eyes principle enforced on SSH look though? For SQL, reviewing individual statements is a bit tedious but doable. But in a console session this is basically insanity. Maybe supervised sessions where two people have the same session similar to a shared Google doc? And then both have to hit return to confirm or something like that? I will have to figure something out. Auditing and recorded sessions could be a lower hanging first step though.
-
Founder, SquareX (Browser Detection-Response) | Founder, Pentester Academy (Acquired) | DEFCON-BlackHat Speaker | Book Author | Angel Investor
Would uploading and sending EXEs be OK with your enterprise policy? ?? ?? In this video, we show you how SquareX can help build File Upload policies which can block EXE uploads - not just based on file extension analysis (does it end with a .exe) but also analyzing the file itself so that extension renaming attacks can't work (popular technique is to combine this with social engineering). So how do we do it? Send the file back to the server? Nopes - our in-browser file scanner has the ability to do this entirely in the browser itself! Making this both fast and privacy-first! Checkout dozens of other demos: www.sqrx.com and sign up for an Enterprise Pilot!
-
FinTech .NET Developer | C# | ASP.NET | SQL | Building Scalable & Secure Web Applications
#100commitow Added retry pattern with delay for event hook handlers when an exception occurs. #dotnet #buildinpublic #opensource ? If you want to help me with #100commitow competition, please give me a star in repo (link in comments section).
-
VAPT || HackTheBox (Under 1000 Global) || TryHackMe (Under 5000 Global - In Top 1%) || HackTheBoxAcademy (In Top 1%)
?? Completed Another Machine from Hack The Box! ?? ?? Machine: Flight ?? Write-Up: "https://lnkd.in/g6fxD5GT" ?? Key Learnings: -> Active Directory Pentesting #ADPentesting #WindowsExploitation
-
IT Application Support Officer at Winchester City Council & Test Valley Borough Council
Headless walkthrough. Headless is, for me, a very classic box. The site is running on port 5000, and the application is likely a Flask application. The box is vulnerable to XSS, which can reveal the admin cookie and grant us access to URLs that are open only to authorized users. We then modify the request to upload a payload to the machine and escalate privileges. #hackthebox
