Links
Add
TIP: SSH add a tunnel to a running session ·
https://edmondscommerce.github.io/bash/tip-ssh-add-a-tunnel-to-a-running-session.html
Added 1 month ago
GitHub Actions now supports a digest for validating your artifacts at runtime - GitHub Changelog
https://github.blog/changelog/2025-03-18-github-actions-now-supports-a-digest-for-validating-your-artifacts-at-runtime/
Developers using upload-artifact and download-artifact in their Actions workflows can now ensure the integrity of their artifacts with the new SHA256 digest. This feature automatically verifies that the artifact uploaded…
Added 1 month ago
https://github.com/awslabs/aws-cloudsaga
https://github.com/awslabs/aws-cloudsaga
AWS CloudSaga - Simulate security events in AWS. Contribute to awslabs/aws-cloudsaga development by creating an account on GitHub.
Pretzel: email encryption and provider-supplied functions are compatible –
https://blog.acolyer.org/2017/10/10/pretzel-email-encryption-and-provider-supplied-functions-are-compatible/amp/
Added 1 month ago
8 open-source OSINT tools you should try - Help Net Security
https://www.helpnetsecurity.com/2023/08/22/open-source-osint-tools/
OSINT means gathering and interpreting public information to address specific intelligence queries, and the tools here are free.
How to replace estimations and guesses with a Monte Carlo simulation
https://news.ycombinator.com/item?id=28769331
Added 1 month ago
https://duo.com/labs/research/how-to-monitor-github-for-secrets
https://duo.com/labs/research/how-to-monitor-github-for-secrets
Learn about the problem of sensitive info getting published on version control systems and discover multiple ways to monitor GitHub for secrets.
https://medium.com/python-pandemonium/never-write-for-loops-again-91a5a4c84baf
https://medium.com/python-pandemonium/never-write-for-loops-again-91a5a4c84baf
Added 1 month ago
CERN releases report on the feasibility of a possible Future Circular Collider
https://home.cern/news/news/accelerators/cern-releases-report-feasibility-possible-future-circular-collider
Added 1 month ago
The worst of the two worlds: Excel meets Outlook
https://adepts.of0x.cc/vba-outlook/
Turning Outlook into a keylogger via VBA macros
Added 1 month ago
Minimum Viable Secure Product
https://mvsp.dev/mvsp.en/index.html
Minimum Viable Secure Product (MVSP) is a minimum security baseline for enterprise-ready products and services.
Added 1 month ago
https://aws.amazon.com/blogs/security/how-to-use-service-control-policies-in-aws-organizations/
https://aws.amazon.com/blogs/security/how-to-use-service-control-policies-in-aws-organizations/
January 20, 2020: Based on customer feedback, we rephrased the fourth goal in the “An example structure with nested OUs and SCPs” section to try to improve clarity. With AWS Organizations, you can centrally manage policies across multiple AWS accounts without having to use custom scripts and manual processes. For example, you can apply service […]
Added 1 month ago
I switched from Tailscale to this fully self-hosted alternative, and I'm loving it so far
https://www.xda-developers.com/switched-from-tailscale-to-fully-self-hosted-alternative-netbird/
Who wouldn't want enterprise-level authentication for their own VPN?
Added 1 month ago
https://imgur.com/gallery/tiger-who-came-pint-sean-lock-hFPQqUr
https://imgur.com/gallery/tiger-who-came-pint-sean-lock-hFPQqUr
Have You Tried Building Your Own TV Channels in Plex?
https://gizmodo.com/have-you-tried-building-your-own-tv-channels-in-plex-1844703597
A wise colleague once told me I should never have anything on in the background just to have it on. He’s probably right, but I still like to pop on a show
Added 1 month ago
Dear Ai - make me a video about skateboarding with the boys? - YouTube
https://www.youtube.com/watch?v=NBYa0cTEyBc
Providing Terraform with that Ansible Magic
https://www.ansible.com/blog/providing-terraform-with-that-ansible-magic
We are adding more value to infrastructure as code with an addition to the Ansible Certified Content Collection: The Ansible provider for Terraform.
Added 1 month ago
Scientists hijacked the human eye to get it to see a brand-new color. It's called 'olo.'
https://www.livescience.com/health/neuroscience/scientists-hijacked-the-human-eye-to-get-it-to-see-a-brand-new-color-its-called-olo
Added 1 month ago
IAM Best Practices - AWS Identity and Access Management
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html?sc_channel=sm&sc_campaign=AWS_Security&sc_publisher=TWITTER&sc_country=Security%20&%20Identity&sc_geo=GLOBAL&sc_outcome=awareness&trk=_TWITTER&sc_content=awsiambestpractices&sc_category=AWS_Identity_and_Access_Management&linkId=46957150
Follow these best practices for using AWS Identity and Access Management (IAM) to help secure your AWS account and resources.
nari-labs/dia
https://github.com/nari-labs/dia
A TTS model capable of generating ultra-realistic dialogue in one pass. - nari-labs/dia
Added 1 month ago
Szymon Kaliski — Cartographist
https://szymonkaliski.com/projects/cartographist/
Web Browser Optimized for Rabbit-Holing
Added 1 month ago
CVE program faces swift end after DHS fails to renew contract. Leaving security flaw tracking in limbo
https://www.csoonline.com/article/3963190/cve-program-faces-swift-end-after-dhs-fails-to-renew-contract-leaving-security-flaw-tracking-in-limbo.html
After DHS did not renew its funding contract for reasons unspecified, MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program was slated for an abrupt shutdown on April 16, which would have left security flaw tracking in limbo. CISA stepped in to provide a bridge.
Added 1 month ago