• Tags
A10
ACME
AD
AES
AI
Aliyun
Ansible
APP
Application Delivery Controller
Arceus
Argo CD
ASCII
Authentication
Authorization
AWS
BASH
Bayonet
Benchmark
BGP
BIRD
Board Game
Browser
Byte
Cache
CDN
Channel
Chart
Checklist
Chrome
Chrome OS
Chrony
CI
Cilium
Cisco
Cloud-Native
Cloudflare
Cluster
Command Line
Completion
Config
Container
CPU
CURL
Data
Database
Debug
Dehydrated
Design
DevSecOps
Diagrams
Dmg
DNS
DNS-01
Docker
EFF
ElasticSearch
ELK
Emoji
EMQX
Encode
Encrypt
ESXi
Extension
Firewall
Fortigate
Fortinet
FortiOS
Game
GeoIP
GIN
Git
GitBook
Github
Gitlab
GitOps
Gluetun
Go
Go-Mysql-Elasticsearch
Golang
Google
GPG
GraphQL
HA
HAProxy
Hash
HomeLab
Htop
HTTP
Infra
Infrastructure
Input Method
Interview
Introduction
IPhone
Iptables
Iso
Issue
ITerm2
Jenkins
Jsoniter
Juniper
JWT
Kibana
Kubernetes
LDAP
Leetcode
Lightweight
Linkerd
Links
Linux
Llamafile
LLM
Log
Lua
Lullaby
LVM
Machinelearning
MacOS
Markdown
Mattermost
Mermaid
MinIO
Module
MQTT
MSS
MTU
Music
MyDumper
MySQL
NAS
Netcat
Network
Nftables
Nginx
OAuth
OIDC
Ollama
OpenResty
Parquet
Percona
Pinyin
Pip
Plugin
Pokemon
PostgreSQL
PowerDNS
PowerShell
Pprof
Principle
Prometheus
Protobuf
Proxy
Push
Python
QRCode
R
RAID
RDP
Redis
Regex
Ringtone
Route
Rust
S3
ScreenShot
Security
Selenium
Sentry
Service Mesh
SFTP
SHELL
Slides
Snow
Software
SonarQube
SQL
SSH
SSL
String
Switch
Sync
Synology
System
Tcpdump
Telegram
Terminal
Terraform
Test
Testing
Time
Timeout
TLS
Tor
Trace
Traefik
Travel
Tunnel
Typora
Ubuntu
URL
UserAgent
V2Ray
Vagrant
Video
Vim
Virtualization
Visualization
VNC
VPN
VSCode
WAF
Web
WebAssembly
Webp
Windows
WSL
YAML
Youtube
Zabbix
Zero Trust
Zim
ZSH
台語

I use Zip Bombs to Protect my Server

I use Zip Bombs to Protect my Server What happens is, they receive the file, read the header that instructs them that it is a compressed file. So they try to decompress the 1MB file to find whatever content they are looking for. But the file expands, and expands, and expands, until they run out of memory and their server crashes. The 1MB file decompresses into a 1GB. This is more than enough to break most bots. However, for those pesky scripts that won’t stop, I serve them the 10MB file. This one decompresses into 10GB and instantly kills the script.

Saturday, May 3, 2025 Read

Objective-See: An Open Source Project Org for Apple Privacy and Security

Objective-See: An Open Source Project Org for Apple Privacy and Security While searching for small tools today, I found they have built a bunch of open-source software for macOS, mostly related to privacy and security. KnockKnock: See what background processes, daemons, launch items, kernel extensions, login items, browser plugins, and more are on your Mac. Much more detailed than “Login Items” (some software auto-starts in other ways). LuLu: An open-source macOS network firewall that lets you control each application’s network connections in detail (similar to Hands Off!).

Wednesday, November 13, 2024 Read

Supply chain attack

Be Alert: Supply Chain Attacks Are Closer Than You Think github.com/siruspen/logrus false github.com/sirupsen/logrus true

Friday, September 13, 2024 Read

Container security fundamentals

Container security fundamentals: Exploring containers as processes Container security fundamentals part 2: Isolation & namespaces Container security fundamentals part 3: Capabilities Container security fundamentals part 4: Cgroups Container security fundamentals part 5: AppArmor and SELinux Container security fundamentals part 6: seccomp

Wednesday, October 4, 2023 Read

An introduction to hacker tools: the tip of the iceberg

An introduction to hacker tools: the tip of the iceberg [Hacker Tools Day10] Web security testing - Burp Suite [Hacker Tools Day11] Website path traversal - DirBuster [Hacker Tools Day12] Password brute force - Hydra [Hacker Tools Day13] Password wordlist generator - crunch [Hacker Tools Day16] Penetration tool - Metasploit [Hacker Tools Day18] Windows password extraction tool - mimikatz [Hacker Tools Day25] CTF exploit Python library - pwntools

Tuesday, December 8, 2020 Read