Leaderboard

I'll just start this post with stating that I'm not doing this with malicious intents, nor am I going to use this for other purposes than learning, or advice using this on servers others than your own. That being said, let's get down to business. Why a SSH brute-forcer? Because too many people are still using password authentication with weak passwords. There are still many servers with sshd open with the default port exposed to internet, using accounts with weak passwords. Have a RaspberryPi? Put it on the Internet! Just take a look over Shodan's raspbian with port 22 query. It's crazy. We're kinda fighting fire with fire. Why Go? Because it's awesome, it's static typed, it's fast, has a big and very useful default library... did I mention it's awesome? And also because I'm on my journey learning Go, and this way I can learn how to use channels, ssh connections, and so on. How can I protect against this? For a start, edit /etc/ssh/sshd_config to disable password authentication and root login. A basic setup means: Changing the default port - many brute-forcers do not scan every port on the machine just to find an SSH server, they just check for port 22. Disable root login - if, by any chance, you need to be able to login as root remotely, use public key authentication. Disable password authentication - I can't stress this enough; just do it. Everyone can and should use public key authentication instead of password authentication. A passphrase is a big plus. Something to start your journey with: Port 2244 PermitRootLogin no #PermitRootLogin without-password #if you need pubkey root login PubkeyAuthentication yes PermitEmptyPasswords no PasswordAuthentication no This post assumes basic Go knowledge, and is not meant towards complete newbie gophers. I am a rookie myself, and currently trying to improve this. For testing, I’ve included a Dockerfile along the project for building a simple testing environment, but more on this at the end. Github: https://github.com/vlad-s/gofindssh Sursa: https://medium.com/@0x766c6164/writing-a-simple-ssh-brute-forcer-in-go-19c4f928cd3b

Professional Penetration Testing walks you through the entire process of setting up and running a pen test lab. Penetration testing—the act of testing a computer network to find security vulnerabilities before they are maliciously exploited—is a crucial component of information security in any organization. With this book, you will find out how to turn hacking skills into a professional career. Chapters cover planning, metrics, and methodologies; the details of running a pen test, including identifying and verifying vulnerabilities; and archiving, reporting and management practices. Free download: aHR0cHM6Ly9nb28uZ2wvYVBIOVp5 Buy: https://www.amazon.com/Professional-Penetration-Testing-Creating-Learning-ebook/dp/B00DRF0ICK/

● freebbble.com Free design elements from Dribbble. ● dribbble.com Search Dribbble request "freebie". Priceless! ● graphicburger.com Attractive work, made with care for each pixel. ● pixelbuddha.net Free and premium work for the professional community. ● wearebridge.co works in the style of the material design based on Google's leadership. ● premiumpixels.com Free creative work for children. ● fribbble.com Free PSD format works from the Dribbble website users. ● freebiesbug.com Fresh free work for designers. ● 365psd.com Download free psd every day. ● dbfreebies.co best free sites with Dribbble and Behance. ● uispace.net high-quality work for the coolest people. ● www.pixeden.com/free-design-web-resources free operation. ● creativemarket.com/free-goods Fresh free work on Mondays. ● freepik.com Graphic elements for each. ● techandall.com Free work, news and other information. ● invisionapp.com/tethr most beautiful set of design elements for iOS. 30 useful resources for graphic designer All are invited to fill up the font files, textures, plug-ins, templates, brushes, action and different clipart. Please note you will need to carefully separate the wheat from the chaff on these resources. But the chance to find something suitable is still there. 1. www.umka.kharkov.ua/htmlbr/pack088.html - more than 800 sets of brushes 2. zerolayer.ru/ - brushes, shapes, textures, action games, frames, fonts 3. globator.net/ - brushes, styles, fonts 5. tutbrush.com/ - brushes. Sorted by topic. 6. www.0lik.ru/ - gradients, patterns, brushes, Action Games, styles, textures, forms, templates 7. photoshopmix.ru/ - brushes, patterns, textures, shapes, Action Games, fonts, gradients 8. demiart.ru/ forum forum / s = dd5a1f42da7b55558fa3f2fd the index.php? .. - warehouse on Demiarte: brush, plug-ins, clip 9. photoshopbrushes.ru - brushes. Sorted by topic. 10. www.gzweb.ru - gradients, brushes, Action Games, styles, textures, shapes, patterns 11. www.vsekisti.ru - a huge collection of brushes 12. goldenone.ru/ - brushes, fonts, templates 13. www.photoshop- master.ru/ - gradients, brushes, Action Games, styles, textures, shapes, patterns 14. www.rozhdestvo.org/ - Christmas brushes, fonts, styles, clipart 15. fotodryg.ru/ - brushes, fonts, shapes 16. www.alldesign.biz/ - gradients, brushes, Action Games, styles, textures, forms, templates, fonts 17. design-mania.ru/category/downloads - templates, brushes, fonts, textures 18. balbesof.net/down/view/brashs.html - a collection of brushes 19. design.ru-deluxe.ru/ - styles, shapes , textures, plug-ins, frames, patterns 20. www.grafamania.net/photoshop - brushes, fonts, templates, frames 21. deeplace.net/ - brushes, plugins, Action Games, clipart, fonts, borders, textures 22. 2dtutorials.ru / download - brushes, fonts, styles, clipart 23. photoshope.ru/index.htm - plugins, brushes, actions, styles, shapes, gras ienty, textures, fonts 24. colorworld.org/ - plugins, brushes, styles, gradients, textures, fonts 25. rukoyatki.ru/photoshop - gradients, brushes, Action Games, styles, textures, forms, templates, drawing 26. www. forum.thesoul.ru/index.php?showforum=6 - texture, brush, styles, filters 27. www.zerores.com.ru/ - fonts brush 28. www.cwer.ru/dlya_photoshop_0 - brushes, masks, eksheny , textures, fonts 29. www.deviantart.com/ - brushes, textures, shapes, fonts 30. fordezign.ru/ - Action Games, gradients, brushes, plugins, styles, textures large list of useful resources for designers and web-developers 1. photos Free resources Unsplash - www.unsplash.com Picjumbo - www .picjumbo.com Gratisography - www.gratisography.com Superfamous - www.superfamous.com Little Visuals - www.littlevisuals.co Split Shire - www.splitshire.com Pixabay - www.pixabay.com I of'm the Free - www.imcreator. com / free the New Old Stock - www.nos.twnsnd.co the Function the free Photos - http://wefunction.com/category/free-photos/ Paul Jarvis the free Photos - http://pjrvs.com/a/photos Paid resources Compfight - www.compfight.com Stocksy - www.stocksy.com Placeit the Product Shots - www.placeit.net iStockphoto - www.istockphoto.com 2. Fonts Okay the Type - www.okaytype.com Typekit - www.typekit.com the My Fonts - www.myfonts.com Fonts - www.fonts.com the Font Squirrel - www.fontsquirrel.com Da the Font - www.dafont.com the Google Fonts - www.google.com/fonts 1001 the Free Fonts - www.1001freefonts.com of Lost the Type Press the op-Co - www.losttype.com Ico Moon - www.icomoon.io 3. Mockup Mockupr - www.mockupr.com Flinto - www.flinto.com Flinto Icon Strike!  - www.flinto.com/strike WebFlow - www.webflow.com Mockuuups - www.mockuuups.com 4. Preliminary design Moqups - www.moqups.com Wireframe.cc - ww.wireframe.cc Mockflow - www.mockflow.com a Mockingbird - www.gomockingbird.com 5. Prototyping Mixture - www.mixture.io Gridset - www.gridsetapp.com 6. Adaptive design Responsive.is - http://responsive.is/type .. Gridpak - www.gridpak.com for Responsive nav - www.responsive-nav.com Off the Navigation Screen - http://tympanus.net/Development/MultiLevelPushMenu/ for Responsive the Web Design the Test - www.designmodo.com/responsive-test/ Media Queries - www.mediaqueri.es Foundation by ZURB - www.foundation.zurb.com Jetstrap - www.jetstrap.com WebFlow - www.webflow.com Gridset - www.gridsetapp.com BrowserStack - www.browserstack.com Sassaparilla -  http://sass.fffunction.co the Dimensions - the Extension the Chrome 7. Working with color 0 to 255 - www.0to255.com Colour Lovers - www.colourlovers.com Brand the Colors - www.brandcolors.net as Adobe Kuler the Color Wheel - https:// kuler.adobe.com/create/color-wheel/ the Color a Scheme Designer - www.colorschemedesigner.com Hex to the RGB Converter - http://hex.colorrrs.com 8. the CSS Animate.css - www.daneden.me/animate of CSS3 the Animation Cheat Sheat - http://www.justinaguilar.com/animations/index.html the Can I of the Use?  - www.caniuse.com the Animation the Fill Code - www.animationfillcode.com 9. the HTML 5 the HTML5 Please - www.html5please.com the Can I of the Use?  - www.caniuse.com 10. Free files for Photoshop PSDS.co - www.psds.co Fribbble - www.fribbble.com Premium the Pixels - www.premiumpixels.com Teehan + Lax iOS 7 PSD file Gui (the iPhone) - www.teehanlax .com / tools / iphone Teehan + Lax iOS 7 PSD Gui (iPad)  - www.teehanlax.com/tools/ipad/ iPhone Mockuuups - www.mockuuups.com 11. Icons Other Icons - www.othericons.com Batch - www. adamwhitcroft.com/batch/ Icon Sweets - www.iconsweets.com Ico Moon - www.icomoon.io 12. image compression Tiny Png - www.tinypng.com JPEGmini - www.jpegmini.com ImageOptim - www.imageoptim.com 13. Tools for Photoshop the Mac Rabbit Slicy - www.macrabbit.com/slicy/ Renamy - www.renamy.com Blendme.in - www.blendme.in 14. for inspiration Siteinspire - www.siteinspire.com a Land Book - www.land-book .com Awwwards - www.awwwards.com of The the Best Designs The - www.thebestdesigns.com Dribbble - www.dribbble.com Behance - www.beha nce.com 15. Where to find orders ooomf - www.ooomf.com Juiiicy - www.juiiicy.com Dribbble Jobs - www.dribbble.com/jobs Authentic Jobs - www.authenticjobs.com Workfu - www.workfu.com Onsite - www .onsite.io 16. Build card MapBox - www.mapbox.com Leaflet - www.leafletjs.com the Google the map Builder - http://googlemapbuilder.mynameisdonald.com/ Snazzy maps - www.snazzymaps.com 17. Online learning Treehouse - www.teamtreehouse.com Dev.Opera -  http://dev.opera.com/web Steer - www.steer.me Lynda - www.lynda.com Codeacademy -www. codecademy.com Code School - www.codeschool.com 18. Podcasts on the design and theme of web of The the Freelance the Web - www.thefreelanceweb.com Unfinished Business - www.unfinished.bz Happy on Monday - www.happymondaypodcast.com Boagworld A - www.boagworld. com / show For / Shop Talk Show - www.shoptalkshow.com of The the Back to the Front Show - www.backtofrontshow.com of The Big the Web Show - www.zeldman.com/category/the-big-w .. Upfront Podcast - www.upfrontpodcast .com of The Industry - www.theindustry.cc/category/po .. 19. presentation Art Speaking.io - www.speaking.io Mark Boulton's Tips - www.markboulton.co.uk/journal/spea .. the On Speaking's by Brad Frost - www.bradfrostweb.com/blog/post/on .. Suggestions for the Speakers by by Frank Chimero - http://frankchimero.com/blog/suggestions-for-speakers/ of The: best advice on the public by speaking of Ladies in Tech - http : // ladiesintech.com/the-best-advice-on-public-speaking/ You're paying to speak by Remy Sharp - http://remysha rp.com/2014/03/07/youre-paying-to-speak/ 20. Just useful websites Symbols - www.copypastecharacter.com Service to remove their profiles on different sites - www.justdelete.me Learn your UDID - www. whatsmyudid.com know what it looks like some kind of shape, icon, but can not remember the name? Draw it and you prompt - www.shapecatcher.com 21. Books Grid Systems' in the Graphic Design - http://amzn.to/1aNQC8B the HTML & the CSS: Design and the Build the Web the Sites - http://amzn.to/1biuvJi of The Pocket Guide series: Collection 1,2 or 3 (just £ 6 for 4 in each books) The Geometry of Type - http://amzn.to/1ekRiSV Insites: The Book - http://viewportindustries.com/insites-the -book the Do not the Make Me the Think - http://amzn.to/1ekRul6 Above the Fold - http://amzn.to/1cLAIdv Design is a Job jobseeker - www.abookapart.com/products/design- .. the required minimum books for the novice web dizaynera- http://blog.tilda.cc/booksfordesigners

A critical vulnerability has been discovered in Microsoft-owned most popular free web messaging and voice calling service Skype that could allow hackers to remotely execute malicious code and crash systems. Skype is a free online service that allows users to communicate with peers by voice, video, and instant messaging over the Internet. The service was acquired by Microsoft Corporation in May 2011 for US$8.5 Billion due to its worldwide popularity. Security researcher Benjamin Kunz-Mejri from Germany-based security firm Vulnerability Lab discovered the previously unknown stack buffer overflow vulnerability, which is documented in CVE-2017-9948, in Skype Web's messaging and call service during a team conference call. The vulnerability is considered a high-security risk with a 7.2 CVSS score and affects Skype versions 7.2, 7.35, and 7.36 on Windows XP, Windows 7 and Windows 8, Mejri said in a public security disclosure published on Monday. No User Interaction Needed What's worst? The stack buffer overflow vulnerability doesn't require any user interaction, and only require a low privilege Skype user account. So, an attacker can remotely crash the application "with an unexpected exception error, to overwrite the active process registers," or even execute malicious code on a target system running the vulnerable Skype version. The issue resides in the way Skype uses the 'MSFTEDIT.DLL' file in case of a copy request on local systems. Here's How Attackers can Exploit this Flaw According to the vulnerability report, attackers can craft a malicious image file and then copy and paste it from a clipboard of a computer system into a conversation window in the Skype application. Once this image is hosted on a clipboard on both the remote and the local systems, Skype experiences a stack buffer overflow, causing errors and crashing the application, which left the door open for more exploits Proof-of-Concept Code Released The security firm has also provided proof-of-concept (PoC) exploit code that you can use to test the flaw. Vulnerability Lab reported the flaw to Microsoft on 16th May, and Microsoft fixed the issue and rolled out a patch on 8 June in Skype version 7.37.178. If you are Skype user, make sure that you run the latest version of the application on your system in order to protect themselves from cyber attacks based on this vulnerability. Via TheHackerNews.com

O solutie low-cost interesanta... The Marvell MacchiatoBIN is a first-of-its-kind Cost-Effective and High-Performance networking community board targeting OpenDataPlane (ODP), OpenFastPath (OFP) and ARM network functions virtualization (NFV) ecosystem communities. With a software offering that include a fully open source ODP implementation, U-Boot 2015.x, mainline U-Boot, UEFI EDK2, Linux LTS kernel 4.4.x, mainline Linux, Yocto 2.1 and netmap, the Marvell MacchiatoBIN is an optimal platform that community developers and Independent Software Vendors (ISVs) can use for development around ODP and OFP and for delivering ARM based VNFs. https://www.solid-run.com/marvell-armada-family/armada-8040-community-board/

Cel mai usor era: int main() { if (fork()) printf("Muie "); else printf("Dragnea"); } Nu mai e nevoie de return 0; ca nu mai suntem in 2008.

1. function based views vs. class based views 2. user registration / authentication (password reset, email password) 3. models vs multiple inheritance models 4. django rest framework 5. django unittests (pytest?) 6. django & celery 7. running django application with gunicorn, supervisor & nginx 8. heroku & django apps Lista poate sa continue. Pentru ultimele 2 cred ca am scris niste tutoriale pe-aici.

sunt lucruri pe care le inveti pe parcurs, fiecare om invata ceva cand vrea sa faca ceva maret. daca ramai sa faci lucruri simple, o sa simti ca n-ai facut nimic "important". targetul trebuie sa fie ceva mare, o sa te lovesti de probleme, o sa le rezolvi si o sa inveti.

Am citit comentariile din threadul asta si nu am putut sa nu remarc stupiditatea, snobia, si spalarea pe creier a unora. In primul rand, idiotilor, toate Samsungurile voastre, toate HTC-urile voastre, chiar si iPhone-ul vostru iubit, sunt fabricate in... drum roll please... CHINA!!! In al doilea rand, sa spui ca telefoanele chinezesti sunt naspa, dar sa recomanzi Allview, imi pare rau amice sa te informez ca brasovenii de la Allview rebranduiesc telefoane chinezesti precum Gionee, Walton, etc. Deci ai dat un rateu monumental la faza asta. In al treilea rand, daca un telefon va deranjeaza ca are sistemul de operare plin de bloatware, sau ca (cica) are spyware, exista root, se poate schimba ROMul... Exista un intreg forum (xda developers) dedicat pentru asa ceva, unde puteti afla absolut orice. Va considerati un forum care promoveaza researchul, informatia, dar veniti cu prejudecati si cu ineptii apocaliptice. Rusine. Cat despre nedumerirea OP, exista branduri chinezesti bune: Xiaomi, OnePlus, Oppo, Meizu, Elephone, etc. Lista poate sa continue. Eu insumi detin o chinezarie si sunt extrem de multumit de hardware, ROMul l-am schimbat cu cyanogen nu pentru ca cel original ar fi avut ceva, ci pentru ca imi place cyanogen, si daca luam Samsung tot cyanogen ii puneam. Inca o data, rusine.

Ce lipseste cu desavarsire este clasicul "Mata-i grasa" din colt dreapta sus. Fara el forumul isi pierde din esenta.