🧵 TIL the assumption that string length does not change when upper-cased is false!
https://chaos.social/@movonw/107316601658567746
@DevMisc
#extra
https://chaos.social/@movonw/107316601658567746
@DevMisc
#extra
The New Life of PHP - The PHP Foundation
https://blog.jetbrains.com/phpstorm/2021/11/the-php-foundation/
@DevMisc
#php #web #extra
https://blog.jetbrains.com/phpstorm/2021/11/the-php-foundation/
@DevMisc
#php #web #extra
The Rust CUDA Project
An ecosystem of libraries and tools for writing and executing extremely fast GPU code fully in Rust.
https://github.com/RDambrosio016/Rust-CUDA
@DevMisc
#rust #gpu
An ecosystem of libraries and tools for writing and executing extremely fast GPU code fully in Rust.
https://github.com/RDambrosio016/Rust-CUDA
@DevMisc
#rust #gpu
Flatpak (and Snap) are not the future
Flatpak calls itself "the future of application distribution". I am not a fan. I’m going to outline here some of the technical, security and usability problems with Flatpak and others.
https://ludocode.com/blog/flatpak-is-not-the-future
@DevMisc
#store
Flatpak calls itself "the future of application distribution". I am not a fan. I’m going to outline here some of the technical, security and usability problems with Flatpak and others.
https://ludocode.com/blog/flatpak-is-not-the-future
@DevMisc
#store
Why IndexedDB is slow and what to use instead
https://rxdb.info/slow-indexeddb.html
@DevMisc
#performance #web
https://rxdb.info/slow-indexeddb.html
@DevMisc
#performance #web
SSRF in Google worth $164 674
Yes, that's an insane bounty amount. The exploit happens on Google Cloud Computing, and finding it requires a ton of perseverance.
https://youtu.be/g-JgA1hvJzA
@DevMisc
#security #bugbounty #google
Yes, that's an insane bounty amount. The exploit happens on Google Cloud Computing, and finding it requires a ton of perseverance.
https://youtu.be/g-JgA1hvJzA
@DevMisc
#security #bugbounty #google
25 nooby Python habits you need to ditch
These nooby Python habits give away your inexperience in Python. Improve your code and your prestige just a bit by ditching those habits and doing things the Pythonic way.
https://youtu.be/qUeud6DvOWI
@DevMisc
#python #learn
These nooby Python habits give away your inexperience in Python. Improve your code and your prestige just a bit by ditching those habits and doing things the Pythonic way.
https://youtu.be/qUeud6DvOWI
@DevMisc
#python #learn
Fun with Red Star OS
Red Star OS is a North Korean Linux distribution, with development first starting in 1998 at the Korea Computer Center (KCC). Prior to its release, computers in North Korea typically used Red Hat Linux and Windows XP.
https://sizeofcat.ru/post/fun-with-redstar-os/
@DevMisc
#extra
Red Star OS is a North Korean Linux distribution, with development first starting in 1998 at the Korea Computer Center (KCC). Prior to its release, computers in North Korea typically used Red Hat Linux and Windows XP.
https://sizeofcat.ru/post/fun-with-redstar-os/
@DevMisc
#extra
Recording myself finding an SSRF in Google
A full video recording all the process from finding an SSRF in Google Cloud, stealing the auth token, and bypassing the fix 2 times ($10 000)
https://youtu.be/UyemBjyQ4qA
@DevMisc
#security #bugbounty #google
A full video recording all the process from finding an SSRF in Google Cloud, stealing the auth token, and bypassing the fix 2 times ($10 000)
https://youtu.be/UyemBjyQ4qA
@DevMisc
#security #bugbounty #google
Overengineering can kill your product
https://www.mindtheproduct.com/overengineering-can-kill-your-product
@DevMisc
#extra
https://www.mindtheproduct.com/overengineering-can-kill-your-product
@DevMisc
#extra
Is my cat Turing-complete?
https://belaycpp.com/2021/11/24/is-my-cat-turing-complete
@DevMisc
#extra #meme
https://belaycpp.com/2021/11/24/is-my-cat-turing-complete
@DevMisc
#extra #meme
Please stop "fixing" font smoothing
https://usabilitypost.com/2012/11/05/stop-fixing-font-smoothing
@DevMisc
#extra #learn
https://usabilitypost.com/2012/11/05/stop-fixing-font-smoothing
@DevMisc
#extra #learn
AWS: IPv6-only subnets and EC2 instances
https://aws.amazon.com/blogs/networking-and-content-delivery/introducing-ipv6-only-subnets-and-ec2-instances
@DevMisc
#cloud #extra
https://aws.amazon.com/blogs/networking-and-content-delivery/introducing-ipv6-only-subnets-and-ec2-instances
@DevMisc
#cloud #extra
Windows 10 RCE
Code execution vulnerability on Windows 10 via IE11/Edge Legacy and MS Teams, triggered by an argument injection in the Windows 10/11 default handler for ms-officecmd: URIs
https://positive.security/blog/ms-officecmd-rce
@DevMisc
#windows #microsoft #security #bugbounty
Code execution vulnerability on Windows 10 via IE11/Edge Legacy and MS Teams, triggered by an argument injection in the Windows 10/11 default handler for ms-officecmd: URIs
https://positive.security/blog/ms-officecmd-rce
@DevMisc
#windows #microsoft #security #bugbounty
Log4j RCE
A recap about the Log4j Apache logging software vulnerability, that affects anything from iCloud to car radios.
https://www.lunasec.io/docs/blog/log4j-zero-day
@DevMisc
#bugbounty #security
A recap about the Log4j Apache logging software vulnerability, that affects anything from iCloud to car radios.
https://www.lunasec.io/docs/blog/log4j-zero-day
@DevMisc
#bugbounty #security
Are 14 people really looking at the product?
Spoiler: no, they aren't.
https://scribe.rip/are-14-people-currently-looking-at-this-product-e7fe8412f16b
@DevMisc
#extra
Spoiler: no, they aren't.
https://scribe.rip/are-14-people-currently-looking-at-this-product-e7fe8412f16b
@DevMisc
#extra
Do DNS records actually take hours to propagate?
https://jvns.ca/blog/2021/12/06/dns-doesn-t-propagate
@DevMisc
#dns #misc
https://jvns.ca/blog/2021/12/06/dns-doesn-t-propagate
@DevMisc
#dns #misc
Koalas to the max, a case study (2013)
https://hacks.mozilla.org/2013/01/koalas-to-the-max-a-case-study
@DevMisc
#mozilla #extra
https://hacks.mozilla.org/2013/01/koalas-to-the-max-a-case-study
@DevMisc
#mozilla #extra