black-hat-rust VS distroless

Compare black-hat-rust vs distroless and see what are their differences.

black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust (by skerkour)
Rust Security Pentest Pentesting offensive-security red-team Audit beacon C2 bug-bounty bug-hunting WASM shellcodes Scanner Phishing Trojan Virus Hacking Infosec security-tools
Source Code
kerkour.com
Suggest alternative
Edit details

distroless

πŸ₯‘ Language focused docker images, minus the operating system. (by GoogleContainerTools)
Docker Bazel
Source Code
Suggest alternative
Edit details
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
black-hat-rust distroless
48 122
3,044 17,781
0.9% 1.4%
4.3 9.4
7 months ago 6 days ago
Rust Starlark
MIT License Apache License 2.0
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

black-hat-rust

Posts with mentions or reviews of black-hat-rust. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-10-20.
  • Cloudflare for Speed and Security
    2 projects | /r/CloudFlare | 20 Oct 2023
    Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust, for free! Yes, you read it right, two books for less than the price of one!
  • Show HN: I'm writing a book – Cloudflare for Speed and Security
    1 project | news.ycombinator.com | 18 Oct 2023
    Hey HN,

    I'm so excited to finally share with you what I've been working on recently.

    One month ago I asked my audience what they wanted to learn about Websites, APIs and Servers security [0].

    From the feedback, I've identified a few recurring pain points that I've started to address (and many more) in this new book.

    From theory to practice, you will learn how low-level network and security protocols work. How to configure Cloudflare to secure and scale your web applications. How to create serverless applications and which database to chose with serverless functions. How to optimize your caching policies. How to distribute videos globally. And a lot of other things, all of that while significantly reducing your cloud bill.

    Today, the book is far from ready, but I still wanted to release it as "Early Access". First, to enable you to start learning today and, secondly, to garner feedback and refine the book's content.

    Between writing, editing, and technical reviewing, it can take some time to complete a book. That's why I release my books before they are fully completed - so you can commence learning before the book is 100% ready, provide feedback, and help shape the content. Rest assured, all future updates are free of charge.

    The final publication date is set for mid-January 2024.

    Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust [1], for free! Yes, you read it right, two books for less than the price of one!

    Furthermore, all early-access supporters will receive the checklist I use to quickly set up a new domain on Cloudflare, ensuring the right balance between security, performance, and user experience.

    Lastly, the price is likely to increase once the book transitions out of Early Access, so don't postpone getting your copy.

    Sylvain

    [0] https://kerkour.com/what-do-you-want-to-learn-about-web-and-...

    [1] https://kerkour.com/black-hat-rust

  • Black Hat Rust
    1 project | /r/savedForMS | 1 May 2023
  • The EU Suppressed a 300-Page Study That Found Piracy Doesn’t Harm Sales
    1 project | news.ycombinator.com | 25 Apr 2023
    The best way I have found to prevent the piracy of my book (https://kerkour.com/black-hat-rust) is to inundate pirate platforms with only the first chapter and with a discount inside for those who can't afford the original price.

    So far it worked really well.

  • [Question] Does Rusts safety features make it less useful for pentesting?
    3 projects | /r/rust | 5 Mar 2023
    Black Hat Rust
  • Offensive Rust
    2 projects | /r/redteamsec | 8 Jan 2023
    You mean like this? https://kerkour.com/black-hat-rust
  • Position Independent Shellcodes in Rust (PIC)
    1 project | dev.to | 14 Dec 2022
    As usual, you can find the code on GitHub: github.com/skerkour/black-hat-rust (please don't forget to star the repo πŸ™).
  • How to Write and Compile a Shellcode in Rust
    1 project | dev.to | 12 Dec 2022
    This post is an excerpt from my book Black Hat Rust
  • Learn Rust, Offensive Security and Applied Cryptography
    3 projects | dev.to | 11 Nov 2022
    This is why I dedicated the past months to write a book about the topic: Black Hat Rust - Applied offensive security with the Rust programming language.
  • Backdooring Rust crates for fun and profit
    5 projects | dev.to | 9 Nov 2022
    Want to learn more Rust, Offensive Security and Applied Cryptography? Take a look at my book Black Hat Rust Get 42% off until Friday, November 12 with the coupon 1311B892

distroless

Posts with mentions or reviews of distroless. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-03-14.
  • Chainguard Images now available on Docker Hub
    3 projects | news.ycombinator.com | 14 Mar 2024
    lots of questions here regarding what this product is. I guess i can provide some information for the context, from a perspective of an outside contributor.

    Chainguard Images is a set of hardened container images.

    They were built by the original team that brought you Google's Distroless (https://github.com/GoogleContainerTools/distroless)

    However, there were few problems with Distroless:

    1. distroless were based on Debian - which in turn, limited to Debian's release cadence for fixing CVE.

    2. distroless is using bazelbuild, which is not exactly easy to contrib, customize, etc...

    3. distroless images are hard to extend.

    Chainguard built a new "undistro" OS for container workload, named Wolfi, using their OSS projects like melange (for packaging pkgs) and apko (for building images).

    The idea is (from my understanding) is that

    1. You don't have to rely on upstream to cut a release. Chainguard will be doing that, with lots of automation & guardrails in placed. This allow them to fix vulnerabilties extremely fast.

  • Language focused Docker images, minus the operating system
    1 project | news.ycombinator.com | 21 Feb 2024
  • Using Alpine can make Python Docker builds 50Γ— slower
    1 project | news.ycombinator.com | 28 Dec 2023
    > If you have one image based on Ubuntu in your stack, you may as well base them all on Ubuntu, because you only need to download (and store!) the common base image once

    This is only true if your infrastructure is static. If your infrastructure is highly elastic, image size has an impact on your time to scale up.

    Of course, there are better choices than Alpine to optimize image size. Distroless (https://github.com/GoogleContainerTools/distroless) is a good example.

  • Smaller and Safer Clojure Containers: Minimizing the Software Bill of Materials
    1 project | /r/Clojure | 7 Dec 2023
  • Long Term Ownership of an Event-Driven System
    4 projects | dev.to | 2 Oct 2023
    The same as our code dependencies, container updates can include security patches and bug fixes and improvements. However, they can also include breaking changes and it is crucial you test them thoroughly before putting them into production. Wherever possible, I recommend using the distroless base image which will drastically reduce both your image size, your risk vector, and therefore your maintenance version going forward.
  • Minimizing Nuxt 3 Docker Images
    2 projects | dev.to | 5 Aug 2023
    # Use a large Node.js base image to build the application and name it "build" FROM node:18-alpine as build WORKDIR /app # Copy the package.json and package-lock.json files into the working directory before copying the rest of the files # This will cache the dependencies and speed up subsequent builds if the dependencies don't change COPY package*.json /app # You might want to use yarn or pnpm instead RUN npm install COPY . /app RUN npm run build # Instead of using a node:18-alpine image, we are using a distroless image. These are provided by google: https://github.com/GoogleContainerTools/distroless FROM gcr.io/distroless/nodejs:18 as prod WORKDIR /app # Copy the built application from the "build" image into the "prod" image COPY --from=build /app/.output /app/.output # Since this image only contains node.js, we do not need to specify the node command and simply pass the path to the index.mjs file! CMD ["/app/.output/server/index.mjs"]
  • Build Your Own Docker with Linux Namespaces, Cgroups, and Chroot
    6 projects | news.ycombinator.com | 26 Jun 2023
    Lots of examples without the entire OS as other comments mention, an example would be Googles distroless[0]

    [0]: https://github.com/GoogleContainerTools/distroless

  • Reddit temporarily ban subreddit and user advertising rival self-hosted platform (Lemmy)
    2 projects | /r/selfhosted | 7 Jun 2023
    Docker doesn't do this all the time. Distroless Docker containers are relatively common. https://github.com/GoogleContainerTools/distroless
  • Why elixir over Golang
    10 projects | /r/elixir | 29 May 2023
    Deployment: https://github.com/GoogleContainerTools/distroless
  • Reviews
    3 projects | /r/golang | 17 May 2023
    Or use distroless image as it includes one, among others. https://github.com/GoogleContainerTools/distroless/blob/main/base/README.md

What are some alternatives?

When comparing black-hat-rust and distroless you can also consider the following projects:

sn0int - Semi-automatic OSINT framework and package manager

iron-alpine - Hardened alpine linux baseimage for Docker.

zero-to-production - Code for "Zero To Production In Rust", a book on API development using Rust.

spring-boot-jib - This project is about Containerizing a Spring Boot Application With Jib

yakuza-freecam - Yakuza Freecam Tool made in Rust

jib - πŸ— Build container images for your Java applications.

dirble - Fast directory scanning and scraping tool

podman - Podman: A tool for managing OCI containers and pods.

rust-windows-shellcode - Windows shellcode development in Rust

dockerfiles - Various Dockerfiles I use on the desktop and on servers.

CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera - 🎩 🀟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337

docker-alpine - Official Alpine Linux Docker image. Win at minimalism!

black-hat-rust vs sn0int distroless vs iron-alpine black-hat-rust vs zero-to-production distroless vs spring-boot-jib black-hat-rust vs yakuza-freecam distroless vs jib black-hat-rust vs dirble distroless vs podman black-hat-rust vs rust-windows-shellcode distroless vs dockerfiles black-hat-rust vs CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera distroless vs docker-alpine