MyBB
noseyparker
Our great sponsors
MyBB | noseyparker | |
---|---|---|
15 | 13 | |
1,028 | 1,506 | |
1.3% | 8.4% | |
7.9 | 9.3 | |
1 day ago | 7 days ago | |
PHP | Rust | |
GNU Lesser General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
MyBB
-
Best way to host a small forum?
Excellent! Glad we could get you sorted! Hosting can be scary and it's okay to be afraid to touch things or not understand certain settings or terms. Especially if you're new. The key is to read the documentation. For your forum needs, this can be found at https://mybb.com and https://phpbb.com
-
PhpBB
I actually recommend myBB [0] over phpBB for anyone looking to set up a LAMP forum. It's cleaner, better written, and possibly better maintained and with a much less scary vulnerability history. I believe it started off as an attempt to create an OSS version of IPB (or was it vB?).
[0]: https://github.com/mybb/mybb or https://mybb.com/
- What are the alternatives for Reddit?
-
questions to ask someone to be staff
myBB is a forum software, yes it’s real :)
- Tools for scanning commits?
-
How can I create a forum using HTML, CSS, and JavaScript?
As u/Marble_Wraith mentioned. You will find more help and information at r/webdev. That being said, building a Forum is somewhat complex, if you're planning to do so from scratch without any prior knowledge this could be a challenging first task. If it's also an option to use a pre-build app, then https://mybb.com/ is a good starting point. You can also find some information on YouTube about how to get it running.
-
What happened to the new offsite backup project?
If you want something done and nobody is doing it, it is best to do it yourself.
-
Got Me Kicked Off Nanny Job Fb group!!
She probably intimidated the group moderator, I can't see how any of that would have gotten you kicked out of a group. I suppose you could start your own group or even start one of those free forums like https://mybb.com/ and you decide how members will be vetted and of course everyone use a pseudonym. She probably has an alternate account that isn't her real name., hence why you can't block her. I suppose you could have an alternate account as well.
-
Reddit getting an IPO, with $400M investment from Fidelity. Is this important?
https://mybb.com/ free opensource forum software. Any Devs can set it up as a backup?
-
Request to meet at Wu Tang C.R.E.A.M when reddit goes dark, instead of PSY gangnam style cuz of distracting🍿claiming as their own. DRS DRS DRS 🫐🫐🫐🟣🟣🟣
Something like this open source https://mybb.com/
noseyparker
-
Magika: AI powered fast and efficient file type identification
Yes!
Sometimes a file has no extension. Other times the extension is a lie. Still other times, you may be dealing with an unnamed bytestring and wish to know what kind of content it is.
This last case happens quite a lot in Nosey Parker [1], a detector of secrets in textual data. There, it is possible to come across unnamed files in Git history, and it would be useful to the user to still indicate what type of file it seems to be.
I added file type detection based on libmagic to Nosey Parker a while back, but it's not compiled in by default because libmagic is slow and complicates the build process. Also, libmagic is implemented as a large C library whose primary job is parsing, which makes the security side of me jittery.
I will likely add enabled-by-default filetype detection to Nosey Parker using Magika's ONNX model.
[1] https://github.com/praetorian-inc/noseyparker
- GitHub: Can no longer search code without being logged in
- Managing secrets like API keys in Python - Why are so many devs still hardcoding secrets?
-
Show HN: Nosey Parker, a fast and low-noise secrets detector for textual data
Yes and no.
On the one hand, Nosey Parker is effectively a special-purpose `grep` with a bunch of security-relevant patterns built-in, including one for PEM-encoded keys: <https://github.com/praetorian-inc/noseyparker/blob/main/data...>
On the other hand, to naively run the check you describe, you would need access to a copy of all of GitHub, which isn't feasible.
What you can do with Nosey Parker is use its GitHub enumeration features to specify your GitHub organization and a list of GitHub usernames you are interested in, and scan against just those. This will implicitly list all the relevant public repositories, clone them, and scan their entire history.
For your use case, another thing you could do is use the new GitHub code search (<https://cs.github.com>) to regex search for particular keys or tokens. That new search seems to cover lots of the public content available on GitHub.
Also, to put some color on this use case: in offensive security engagements (aka "red team" engagements) at Praetorian, we frequently find leaked credentials or tokens on GitHub or elsewhere, which allow us deeper access into the client's systems. It's a significant problem.
- Nosey Parker, a fast and low-noise secrets detector, now supports enumerating GitHub repositories and writing results in SARIF format
- Nosey Parker, a newer secrets detector, can scan 100GB of Linux kernel commit history in 2 minutes on a laptop, and now can write SARIF output
- Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
-
Tools for scanning commits?
A tool just got open-sourced called Nosey Parker that scans commits and git history for secrets. You could look at Nosey Parker's source code to see how they scan commits and design your tool based on that.
- Nosey Parker, a new scanner for hardcoded secrets in textual data
What are some alternatives?
Flarum - Simple forum software for building great communities.
betterscan-ce - Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
phpBB - phpBB Development: phpBB is a popular open-source bulletin board written in PHP. This repository also contains the history of version 2.
trufflehog - Find and verify credentials
FluxBB - FluxBB is a fast, light, user-friendly forum application for your website.
leaky-repo - Benchmarking repo for secrets scanning
Discourse - A platform for community discussion. Free, open, simple.
mfaws - A cross-platform CLI tool to manage AWS credentials for MFA-enabled accounts
nodeBB - Node.js based forum software built for the modern web
parse-server - Parse Server for Node.js / Express
Vanilla Forums - Vanilla is a powerfully simple discussion forum you can easily customize to make as unique as your community.
RustScan - 🤖 The Modern Port Scanner 🤖