Hidden GitHub Commits and How to Reveal Them

https://neodyme.io/en/blog/github_secrets/

@DevMisc
#git #learn #security

Console.delight

Tinkering with CSS / SVG / etc in devtools.

https://frontendmasters.com/blog/console-delight/

@DevMisc
#javanoscript #web #learn

Learn CSS the pedantic way

http://book.mixu.net/css/

@DevMisc
#css #learn #web

Motion Canvas

A TypeScript library for creating animated videos using the Canvas API.

https://motioncanvas.io/

@DevMisc
#typenoscript #video #misc

3D DOM viewer

Copy-paste this into your console to visualize the DOM topographically.

https://gist.github.com/OrionReed/4c3778ebc2b5026d2354359ca49077ca

@DevMisc
#web #js #tools #misc

Supabase

Supabase is an open source Firebase alternative. Start your project with a Postgres database, Authentication, instant APIs, Edge Functions, Realtime subnoscriptions, Storage, and Vector embeddings.

https://supabase.com/

@DevMisc
#tools #framework #misc

My favourite animation trick: exponential smoothing

https://lisyarus.github.io/blog/posts/exponential-smoothing.html

@DevMisc
#gamedev #web #math #learn

How an empty S3 bucket can make your AWS bill explode

Imagine you create an empty, private AWS S3 bucket in a region of your preference. What will your AWWS bill be the next morning?

https://medium.com/@maciej.pocwierz/how-an-empty-s3-bucket-can-make-your-aws-bill-explode-934a383cb8b1

@DevMisc
#aws #devops #fun

@DevMisc
#meme #extra

A Single Div

A CSS drawing experiment to see what's possible with a single div.

https://a.singlediv.com/

@DevMisc
#css #web #design #fun

Hardest Problem in Computer Science: Centering Things

https://tonsky.me/blog/centering/

@DevMisc
#web #css #learn

@DevMisc
#rust #meme #extra

How to read C type declarations

http://www.unixwiz.net/techtips/reading-cdecl.html

@DevMisc
#c #learn #misc

@DevMisc
#meme #extra #fun

Python's many command-line utilities

Every command-line tool included with Python. These can be run with python -m module_name.

https://www.pythonmorsels.com/cli-tools/

@DevMisc
#python #utils #cli

Hacking Millions of Modems (and Investigating Who Hacked My Modem)

The author discovered that someone was intercepting and replaying his web traffic, which indicated his home network or modem had been compromised. After investigating, he found the IP address belonged to DigitalOcean and had previously been used for phishing and malware campaigns. The author was unable to keep the potentially compromised modem when getting a replacement, so he had to give it back to his ISP, Cox. Years later, the author's cybersecurity friends looked into the incident further and discovered the IP address was part of a domain generation algorithm used by malware. They also found that the Cox business portal had an exposed API that could be used to access and control customer modems without authorization. The author reported the vulnerabilities to Cox, who quickly fixed the issues.

https://samcurry.net/hacking-millions-of-modems

@DevMisc
#security #writeup #misc

Sei pays out $2M bug bounty

In April 2024, the author discovered and reported two critical bugs to the Sei Network blockchain. The first bug would have caused the chain to halt if exploited, while the second bug would have allowed an attacker to freely transfer funds out of any account. The Sei Foundation awarded the author $75,000 and $2,000,000 respectively for these reports. The issues were caught after auditing but before being deployed to mainnet, preventing any funds from being put at risk. The author provided detailed technical explanations of how the bugs worked and how they were ultimately fixed by the Sei team.

https://usmannkhan.com/bug%20reports/2024/06/17/sei-bug-report.html

@DevMisc
#security #crypto #misc