grapl
black-hat-rust
grapl | black-hat-rust | |
---|---|---|
8 | 48 | |
671 | 3,047 | |
- | 0.9% | |
9.8 | 4.3 | |
over 1 year ago | 7 months ago | |
Rust | Rust | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
grapl
-
Rust β Faster compilation with the parallel front-end in nightly
https://github.com/grapl-security/grapl/
I just did a clean build `cargo build`, 19 minutes 44 seconds.
I added 1 line (`dbg!("foo")`) and it took 14.76s
-
Introduction to Curp Protocol
Awesome. So, CURP was pretty inspiring for the work I did on Grapl. Grapl Schemas had to define conflict resolution algorithms.
https://github.com/grapl-security/grapl/blob/main/etc/exampl...
As you can see here, there are some special built-ins that aren't important (keys, timestamps) but you can see there's @immutable (FWW) and @increment_only.
This meant that our graphs formed a big CRDT, which meant that every operation commuted, which meant that we could do weird things with our consensus. Reads could happen on stale data, writes could be dropped, we could read from two inconsistent databases and resolve the inconsistency in memory, etc. I even hacked this into ScyllaDB by encoding each merge function into an integer, and setting that as the TIMESTAMP, for when replication merging happened to the values - this meant we could perform writes (repeatedly) without reading a value first, and with no coordination between nodes. What I didn't have was a native solution that could take advantage of these constraints.
As you can tell, this project is obviously very interesting to me. I ran through this pretty quickly but I'll dig in more soon. I'm just excited to see this.
- Transitioning to Rust as a company
- Rust for cyber security
-
Why Rust is a great choice for startups
Rust, Python and Go. Props to you for being sensible with technology choice.
https://github.com/grapl-security/grapl
-
Is Rust Web Yet?
That's great for you and your team, but looking at https://github.com/grapl-security/grapl it seems like your needs are pretty different from most web developers.
- NPM malware and what it could imply for Cargo
black-hat-rust
-
Cloudflare for Speed and Security
Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust, for free! Yes, you read it right, two books for less than the price of one!
-
Show HN: I'm writing a book β Cloudflare for Speed and Security
Hey HN,
I'm so excited to finally share with you what I've been working on recently.
One month ago I asked my audience what they wanted to learn about Websites, APIs and Servers security [0].
From the feedback, I've identified a few recurring pain points that I've started to address (and many more) in this new book.
From theory to practice, you will learn how low-level network and security protocols work. How to configure Cloudflare to secure and scale your web applications. How to create serverless applications and which database to chose with serverless functions. How to optimize your caching policies. How to distribute videos globally. And a lot of other things, all of that while significantly reducing your cloud bill.
Today, the book is far from ready, but I still wanted to release it as "Early Access". First, to enable you to start learning today and, secondly, to garner feedback and refine the book's content.
Between writing, editing, and technical reviewing, it can take some time to complete a book. That's why I release my books before they are fully completed - so you can commence learning before the book is 100% ready, provide feedback, and help shape the content. Rest assured, all future updates are free of charge.
The final publication date is set for mid-January 2024.
Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust [1], for free! Yes, you read it right, two books for less than the price of one!
Furthermore, all early-access supporters will receive the checklist I use to quickly set up a new domain on Cloudflare, ensuring the right balance between security, performance, and user experience.
Lastly, the price is likely to increase once the book transitions out of Early Access, so don't postpone getting your copy.
Sylvain
[0] https://kerkour.com/what-do-you-want-to-learn-about-web-and-...
[1] https://kerkour.com/black-hat-rust
- Black Hat Rust
-
The EU Suppressed a 300-Page Study That Found Piracy Doesnβt Harm Sales
The best way I have found to prevent the piracy of my book (https://kerkour.com/black-hat-rust) is to inundate pirate platforms with only the first chapter and with a discount inside for those who can't afford the original price.
So far it worked really well.
-
[Question] Does Rusts safety features make it less useful for pentesting?
Black Hat Rust
-
Offensive Rust
You mean like this? https://kerkour.com/black-hat-rust
-
Position Independent Shellcodes in Rust (PIC)
As usual, you can find the code on GitHub: github.com/skerkour/black-hat-rust (please don't forget to star the repo π).
-
How to Write and Compile a Shellcode in Rust
This post is an excerpt from my book Black Hat Rust
-
Learn Rust, Offensive Security and Applied Cryptography
This is why I dedicated the past months to write a book about the topic: Black Hat Rust - Applied offensive security with the Rust programming language.
-
Backdooring Rust crates for fun and profit
Want to learn more Rust, Offensive Security and Applied Cryptography? Take a look at my book Black Hat Rust Get 42% off until Friday, November 12 with the coupon 1311B892
What are some alternatives?
ntex - framework for composable networking services
sn0int - Semi-automatic OSINT framework and package manager
cargo-deny - β Cargo plugin for linting your dependencies π¦
zero-to-production - Code for "Zero To Production In Rust", a book on API development using Rust.
demo-rust-axum - Demo of Rust and axum web framework with Tokio, Tower, Hyper, Serde
yakuza-freecam - Yakuza Freecam Tool made in Rust
nodo - Pre-emptively created repository so the design can be discussed on the issue tracker before commits are made (repo name may change)
dirble - Fast directory scanning and scraping tool
rfcs - RFCs for changes to Rust
rust-windows-shellcode - Windows shellcode development in Rust
rust-wiki-backup - A backup of the Rust wiki
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera - π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337