Free cross-platform password manager compatible with KeePassProject mention: Store all passwords in the same Excel... what could go wrong!? | reddit.com/r/sysadmin | 2021-04-13
It's open source and built with security in mind https://keeweb.info/
OpenZeppelin Contracts is a library for secure smart contract development.Project mention: Trying to get the payable function to work in my code: | reddit.com/r/ethdev | 2021-04-15
If import does not work, you can simply copy&paste the Ownable-code above your own contract in the same file. Works the same. So you can try to copy the contract from https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/access/Ownable.sol and https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/Context.sol (as Ownable uses Context) into your contract file and then start using Ownable:
Scout APM - Leading-edge performance monitoring starting at $39/month. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:Project mention: Sending Contact Form Messages to Your Email Inbox | dev.to | 2021-02-21
Since we are dealing with user input sanitizing it is a good security practice, you can set up any user input sanitizing method you are familiar with, a good start can be DOMPurify.
A curated list of CTF frameworks, libraries, resources and softwaresProject mention: Hey guys can anyone show me the right way?? | reddit.com/r/Hacking_Tutorials | 2021-03-27
The Browser Exploitation Framework ProjectProject mention: Selfhosted keychain/password manager | reddit.com/r/selfhosted | 2021-01-14
If you want to have some more understanding of what might be possible, have a look at https://github.com/beefproject/beef
Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.Project mention: Best FOSS Tools For Scripted Auto-Analysis of PCAPs? | reddit.com/r/networking | 2021-04-09
You can build your own pipeline with tools like a Geoip database, Zeek, p0f, ngrep etc, or check out Arkime (previously Moloch) https://arkime.com/
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.Project mention: How to map all resources in an account I don't know | reddit.com/r/aws | 2021-02-24
You could try https://github.com/duo-labs/cloudmapper
Tutanota is an email client with a strong focus on security and privacy that lets you encrypt emails on all your devices.Project mention: Roadmap question, no clear information on the site or github. | reddit.com/r/tutanota | 2021-04-16
But I agree, not much seems to be changing lately. They built the calendar in just three months, but conversation view (a crucial feature, in my opinion) has been in the works for 6 years.
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.Project mention: Pastey - a self-hosted Pastebin alternative with language detection and on-disk encryption | reddit.com/r/selfhosted | 2021-04-13
Have you looked at https://privatebin.info ?
Firefox privacy, security and anti-fingerprinting: a comprehensive user.js template for configuration and hardeningProject mention: No, Vivaldi is not private, It's even worse than edge | reddit.com/r/privacytoolsIO | 2021-04-14
The easy way to start is to use the arkenfox user.js is recomended by privacytools so not worry, and with time learn how to tweak it yourself if you want or need.
Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis. Built on htmlparser2 for speed and tolerance
user.js -- Firefox configuration hardening (by pyllyukko)Project mention: dom.event.clipboardevents.enabled = false can broken WYSIWYG editor | reddit.com/r/privacytoolsIO | 2021-04-14
user.js has this WARNING: https://github.com/pyllyukko/user.js/blob/d6ce4ebf9e30e846b9e383384f7a20d121fb4030/user.js#L107
Hide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐ (by KuroLabs)
Node.js rate limit requests by key with atomic increments in single process or distributed environment.Project mention: Is there any request limiter compatible with "oak" framework? | reddit.com/r/Deno | 2021-04-09
Librefox: Firefox with privacy enhancementsProject mention: https everywhere....something happen? | reddit.com/r/privacytoolsIO | 2021-04-10
They clearly mention the reasons in a Gitlab issue.
Do you think you are safe using private browsing or incognito mode?. :smile: :imp: This will prove that you're wrong.Project mention: Chrome incognito mode is useless on hiding identity and any website can track you , see http://www.nothingprivate.ml | reddit.com/r/chrome | 2021-04-09
Cloud Security Posture Management (CSPM)Project mention: CloudSploit: Análisis de seguridad en la nube ☁☁ | reddit.com/r/u_esgeeks | 2021-03-16
Awesome Node.js Security resourcesProject mention: What is secure code? | reddit.com/r/node | 2021-01-18
For the PERN stack you can check out the vulnerabilities and their solutions here, you may also like the Secure Code Warrior Free Node.js express training. Also check out the Awesome Node.js Security list.
:camera: ViewFinder - NodeJS product to make the browser into a web app. WTF RBI. CBII. Remote browser isolation, embeddable browserview, secure chrome saas. Licenses, managed, self-hosted. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but open source with free live demos available now! Also, integrated RBI/CDR with CDR from https://github.com/dosyago/p2%2eProject mention: Show HN: Run puppeteer scripts from the Browser, open DevTools on remote pages | news.ycombinator.com | 2021-04-14
2 known issues:
- DevTools doesn't display the viewport. I'm not sure if this is due to a change in the latest Chrome to which I just updated (~90) or because I broke my serving of it by updating it. A workaround will be serving a static snapshot of the devtools front-end rather than just (simply, as I'm doing right now) pulling it out of Chrome's RDP endpoint each time. This may take some time to do.
- DevTools doesn't seem to work on iOS (as I've tested it, Safari or Chrome).
- There are many more issues, and a lot, but not all, of them are edge cases but they'll be fixed eventually.
More bug reports, UI/UX tips and advice, and other feedback are very welcome! Unfortunately the whole app is not open source but some parts are open source, namely, the virtualized browser, and the devtools-front-end.
🔐 Free, automated HTTPS for NodeJS made easy.
|8||Tutanota makes encryption easy||3,895|