xkbcat
Electron
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
xkbcat
-
Generals.io – Capture enemy generals to defeat them
Yes, approximately. In X11 at least, the hardware codes are called keycodes, and the human readable names are called keysyms. Example ofuse of the XkbKeycodeToKeysym function in use: https://github.com/anko/xkbcat/blob/8abc3402cb679027a3bd0313...
Keysyms don't necessarily strictly match "key location"; keyboards are allowed to output whatever codes they want for whatever key they want (see e.g. QMK firmware; often used in custom keyboards to do complex conditional key remapping), but they're relatively consistent between common keys on most keyboards, and consistent on the same keyboard even if you switch keyboard layouts in software, or have some custom firmware which functionality is stateful.
-
Red Hat Enterprise Linux 10 Plans for Wayland and Xorg Server
>I don't know a single person that has ever fallen victim to a virus or malware on linux, and I've been using it almost exclusively for the past 20 years. If it was a threat vector, it clearly wasn't a very big issue.
So: no true Linux user succumbs to malwares and no true Scotsman puts sugar on his porridge.
Putting that aside, it doesn't take much effort to find an example of X11 keylogger that requires zero superuser privilege and zero explicit permission granting by the user. Here, the first result from DDGing "x11 keylogger": https://github.com/anko/xkbcat
It is hard to believe this has not occurred in the wild. If such attack really hasn't occurred before in the Linux world, I would rather use the unpopularity of Linux desktop as my justification.
- I keylogger su linux necessitano il super user?
-
do you run an Anti Virus on your Linux system?
i think you’re misunderstanding what a virus is or what it is a capable of. sudo (just like every other piece of software) can be exploited, which would allow anything (such as a malicious program) to get root privilege with no user input. there are also plenty of other approaches for viruses to take that wouldn’t require root, like X11 keylogging, and user namespace exploits just to name a few. being selective with what you run with sudo can help a lot don’t get me wrong, but it definitely isn’t some silver bullet. think of it like how windows can get malware without ever running something as administrator
- Tray icons missing
-
What are the benefit(s) of using Wayland over Xorg?
For now, the focus is getting Wayland on par with Xorg. However, there are a number of infrastructure improvements behind the scenes that make it superior to Xorg. For example, applications can no longer silently capture keystrokes without elevated privileges. Demo.
-
Anyone using obs in kde wayland ?
It's a bit more complicated than that, but essentially yes, see e.g. xkbcat and some other of the keyloggers linked there.
- There is no noticeable difference between X11 and Wayland
-
Fedora 34 Gnome 40 Wayland vs X11
Here's a keylogger i found while googling: https://github.com/anko/xkbcat
-
Secure way to run a proprietary software?
X11 provides no mechanism for keeping applications from reading potentially sensitive input. Consider this simple, 100-line program to log keystrokes, and consider what Zoom might be doing with this kind of power.
Electron
-
Release Radar • February 2024 Edition
The team at Electron have been faithfully shipping new releases almost every single month. I think they had Christmas off 🤔. This popular framework has developers writing cross-platform desktop applications using JavaScript, HTML and CSS. The latest update depreciates some process events, and added new modules, APIs, methods, and more. Read into all the changes in the Electron release notes. This month, Electron also introduced a new formal RFC process.
-
The IDEs we had 30 years ago and we lost
VS Code has been crashing at launch in Wayland since more than eight months ago:
https://github.com/electron/electron/issues/37531
-
Design Systems with Web Components
So we talked a lot about the Atomic Design Principle, but you could just use that in any system and start creating. You could have Angular components, React Components, and Vue Components. But if you notice these don't easily work Everwhere. So the solution is to use Web Components because the modern browser can already understand these, and any Front-End framework can then utilize these components. You can use Electron for desktop (Slack, VSCode), PWA for both Android and iOS, and across all browsers Can I Use.
- Settings · Rulesets · electron/electron
-
How I got Wayland, Vulkan, and hardware acceleration working with Figma on Fedora 39.
I'm noticing a significant boost in performance, crisper text, and better power savings. The only shortcoming is that the window which Figma will run on will lose its shadow. This is due to a technical limitation with frameless windows on Linux.
-
Building Apps with Tauri and Elixir
For the longest time, building desktop apps was a daunting task to web developers. That is, until technologies like Electron made creating these apps more approachable to a wider audience. Today, we’ve got a wide array of native applications built with solutions like Electron, Tauri, Capacitor, and many more. While these are great solutions, sometimes configuration can be tricky and the applications we create can become somewhat bloated in terms of memory usage.
-
MS Teams & Electron libwebp 0-Day Vulnerability
Electron patch for version 27: https://github.com/electron/electron/pull/39823
-
CVE-2023-4863: Heap buffer overflow in WebP (Chrome)
It does, see [0]. Fun fact: Signal desktop, which uses Electron under the hood, is running without sandbox on Linux [1][2].
[0] https://github.com/electron/electron/pull/39824
[1] https://github.com/signalapp/Signal-Desktop/issues/5195
[2] https://github.com/signalapp/Signal-Desktop/pull/4381
-
Capturing at Speed of Thought
Turns out, there is an issue with the electron window not returning focus correctly on mac - https://github.com/electron/electron/issues/5495. The trick to solving is to treat quick capture as a screensaver. When closing, you hide it by setting the opacity to 0 and sending hide: command to the first responder.
-
$Home, Not So Sweet $Home
Open since 2016! https://github.com/electron/electron/issues/8124
What are some alternatives?
Keylogger - A simple keylogger for Windows, Linux and Mac
tauri - Build smaller, faster, and more secure desktop applications with a web frontend.
DuckCpp - Multifunctional keylogger using WinAPI and libcurl
dotenv - Loads environment variables from .env for nodejs projects.
gnome-shell-extension-x11gestures - Enable GNOME Shell multi-touch gestures on X11 with this extension
Eel - A little Python library for making simple Electron-like HTML/JS GUI apps
keylogger - A no-frills keylogger for macOS.
puppeteer - Node.js API for Chrome
ixkeylog - *NIX X11 Keylogger
react-native - A framework for building native applications using React
wayland-keylogger - Proof-of-concept Wayland keylogger
cheerio - The fast, flexible, and elegant library for parsing and manipulating HTML and XML.