nginx Docker image secure by default

• HTTPS support with transparent Let's Encrypt automation
• State-of-the-art web security : HTTP security headers, prevent leaks, TLS hardening, ...
• Integrated ModSecurity WAF with the OWASP Core Rule Set
• Automatic ban of strange behaviors
• Antibot challenge through cookie, javanoscript, captcha or recaptcha v3
• Block TOR, proxies, bad user-agents, countries, ...
• Block known bad IP with DNSBL and CrowdSec
• Prevent bruteforce attacks with rate limiting
• Plugins system for external security checks (e.g. : ClamAV)
• Easy to configure with environment variables or web UI
• Automatic configuration with container labels
• Docker Swarm support

https://github.com/bunkerity/bunkerized-nginx

The Bastion

Bastions are a cluster of machines used as the unique entry point by operational teams (such as sysadmins, developers, database admins, ...) to securely connect to devices (servers, virtual machines, cloud instances, network equipment, ...), usually using ssh.

Достаточно много фич и возможностей, представлен авторами от OVH Cloud

https://github.com/ovh/the-bastion

Active Directory Exploitation Cheat Sheet

This repository contains a general methodology in the Active Directory environment. It is offered with a selection of quick commands from the most efficient tools based on Powershell, C, .Net 3.5 and .Net 4.5.

https://github.com/Integration-IT/Active-Directory-Exploitation-Cheat-Sheet

GitHub - kool-dev/kool: From local development to the cloud: development workflow made easy.
https://github.com/kool-dev/kool

https://jsbin.com/ - Онлайн инструментарий для экспериментов с HTML, CSS, JavaScript. Инструментарий позволяет делиться кодом, примерами. Имеет внятный видео-help с примерами использования.

Learn Git with Our Free Online Book | Learn Version Control with Git
https://www.git-tower.com/learn/git/ebook/

⁠
Yo! Yo! Open SysConf'21 Завтра (10 июля)

Будет трансляция. Будет оффлайн. Будет Open SysConf'21!

- Трансляция - завтра будет ссылка, здесь и в дружественных каналах и чатиках
- Оффлайн - завтра встречаемся в обозначенном месте к ~9:30 (помним про "Ашик" и свои статусы, на входе будем чекать).

Внимание: в виду ограничений, связанных с сан. нормами, вход на фейс2фейс конференцию только для зарегистрированных.

Все детали можно найти на SysConf.io
⁠

projectdiscovery/nuclei: Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
https://github.com/projectdiscovery/nuclei

Managing Your Dotfiles With Git. Simplifying the backup process | by Eric Chi | Better Programming
https://betterprogramming.pub/managing-your-dotfiles-with-git-4dee603a19a2

Ransomwhere payment tracker

https://ransomwhe.re/

microsoft/CBL-Mariner: Linux OS for Azure 1P services and edge appliances
https://github.com/microsoft/CBL-Mariner

How to Keep Docker Containers Running When the Daemon Stops – CloudSavvy IT
https://www.cloudsavvyit.com/12361/how-to-keep-docker-containers-running-when-the-daemon-stops/

LuemmelSec/Pentest-Tools-Collection
https://github.com/LuemmelSec/Pentest-Tools-Collection

Optimize Node.js performance with clustering - LogRocket Blog
https://blog.logrocket.com/optimize-node-js-performance-with-clustering/

Как на самом деле работает РСЯ в «Яндекс.Директ»

https://vc.ru/marketing/269544-kak-na-samom-dele-rabotaet-rsya-v-yandeks-direkt-sovety-po-nastroyke-lyuboy-nishi

SigNoz/signoz: SigNoz helps developers monitor their applications & troubleshoot problems, an open-source alternative to DataDog, NewRelic, etc. 🔥 🖥
https://github.com/SigNoz/signoz

Kubernetes for Dummies - DEV Community
https://dev.to/stevenmcgown/kubernetes-for-dummies-5hmh

Docker and Kubernetes Updates in IntelliJ IDEA 2021.2 | The IntelliJ IDEA Blog
https://blog.jetbrains.com/idea/2021/07/docker-and-kubernetes-2021-2/