1907
Go Language - Web Application Secure Coding Practices
Go Language - Web Application Secure Coding Practices is a guide written for anyone who is using the Go Programming Language and aims to use it for web development.
golang  security 
yesterday
FSArchiver - Filesystem Archiver for Linux
FSArchiver is a system tool that allows you to save the contents of a file-system to a compressed archive file. The file-system can be restored on a partition which has a different size and it can be restored on a different file-system. Unlike tar/dar, FSArchiver also creates the file-system when it extracts the data to partitions. Everything is checksummed in the archive in order to protect the data. If the archive is corrupt, you just loose the current file, not the whole archive.
backup 
12 days ago
Exploring LSTMs
It turns out LSTMs are a fairly simple extension to neural networks, and they're behind a lot of the amazing achievements deep learning has made in the past few years. So I'll try to present them as intuitively as possible – in such a way that you could have discovered them yourself.
machinelearning  deeplearning  RRN  LSTM  primer  neuralnetworks 
14 days ago
Why do Nigerian Scammers Say They are from Nigeria? (Microsoft, 2012)
By sending an email that repels all but the most gullible the scammer gets the most promising marks to self-select, and tilts the true to false positive ratio in his favor.
spam  papers 
16 days ago
golang: expvar in action
The Go standard library comes with the expvar package. This package allows one to expose metrics about your application and the Go runtime via a HTTP API in JSON format.
golang  metrics 
19 days ago
digital_video_introduction
A gentle introduction to video technology, although it's aimed at software developers / engineers, we want to make it easy for anyone to learn. This idea was born during a mini workshop for newcomers to video technology.

The goal is to introduce some digital video concepts with a simple vocabulary, lots of visual elements and practical examples when possible, and make this knowledge available everywhere. Please, feel free to send corrections, suggestions and improve it.
video  graphics  vfx  visualisation  primer 
21 days ago
Programming Project List
A list of practical projects that anyone can solve in any programming language (See solutions). These projects are divided in multiple categories, and each category has its own folder.
learning  Programming  primer 
23 days ago
The microarchitecture of Intel and AMD CPUs - microarchitecture.pdf
An optimization guide for assembly programmers and
compiler makers
By Agner Fog. Technical University of Denmark
assembly  cpu  optimization  compiler 
23 days ago
Kubernetes By Example
This is a hands-on introduction to Kubernetes.
kubernetes  docker  learning 
26 days ago
The Tectonic Typesetting System
Tectonic is a modernized, complete, self-contained TeX/LaTeX engine, powered by XeTeX and TeXLive.
tex  rust  LaTeX 
26 days ago
toish/chromatism
A simple set of utility functions for colours
JavaScript  color 
28 days ago
Blockchains from the ground up: Part 1 - John Mathews
Using a scenario that begins with the exchange of apples for oranges, understand the essential concepts and advantages of blockchains.
blockchain  primer 
4 weeks ago
Language Mechanics On Stacks And Pointers
This post has described the purpose behind pointers and how stack and pointer mechanics work in Go. This is the first step in understanding the mechanics, design philosophies and guidelines needed for writing consistent and readable code.
golang 
4 weeks ago
Porting Windows Dynamic Link Libraries to Linux
This repository contains a library that allows native Linux programs to load and call functions from a Windows DLL.
windows  dll 
4 weeks ago
Principal Component Analysis explained visually
Principal component analysis (PCA) is a technique used to emphasize variation and bring out strong patterns in a dataset. It's often used to make data easy to explore and visualize.
statistics  visualization 
4 weeks ago
OWASP Mobile Security Testing Guide
The MSTG is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS).
mobile  security  books  pentest 
5 weeks ago
ELF Hello World Tutorial - Ciro Santilli
Introductory analysis of a simple example of the Executable and Linkable File format.
assembly  binary  linux  ELF 
5 weeks ago
toxiproxy
A TCP proxy to simulate network and system conditions for chaos and resiliency testing
testing  http  proxy  networking 
5 weeks ago
Sameer Ajmani's answer to Where does Go's concurrency (CSP) fall short? - Quora
A look at Go’s concurrency approach as compared to other languages from the manager of the Go team at Google.
golang  concurrency  CSP 
5 weeks ago
Alternative Patterns for Method Overloading in Go
An overview of 3 approaches to deal with Go’s lack of method overloading: a functional way, an OO-style way, and a ‘JavaScript’-esque way. Functional options are also worth considering.
golang 
5 weeks ago
Why golang garbage-collector not implement Generational and Compact gc? - Google Groups
A solid response from Ian Lance Taylor on the pros and cons of different garbage collection methods.
golang  gc 
5 weeks ago
howmanypeoplearearound
calculates the number of people in the vicinity using the approximate number of smartphones as a proxy (since ~70% of people have smartphones nowadays). A cellphone is determined to be in proximity to the computer based on sniffing WiFi probe requests. Possible uses of howmanypeoplearearound include: monitoring foot traffic in your house with Raspberry Pis, seeing if your roommates are home, etc.
RaspberryPi  smarthome  wifi  automation  mobile 
6 weeks ago
Tufte CSS
Tufte CSS provides tools to style web articles using the ideas demonstrated by Edward Tufte’s books and handouts. Tufte’s style is known for its simplicity, extensive use of sidenotes, tight integration of graphics with text, and carefully chosen typography.
typography  css  webdesign 
6 weeks ago
Go Walkthrough by Ben Johnson
A series of walkthroughs to help you understand the Go standard library better.
golang  primer 
6 weeks ago
debug-me - secure remote debugging
Debugging a problem over email/irc/BTS is slow, tedious, and hard. The developer needs to see the your problem to understand it. Debug-me aims to make debugging fast, fun, and easy, by letting the developer access your computer remotely, so they can immediately see and interact with the problem. Making your problem their problem gets it fixed fast.

A debug-me session is logged and signed with the developer's GnuPG key, producing a chain of evidence of what they saw and what they did. So the developer's good reputation is leveraged to make debug-me secure.
ssh  debug  remote  infosec  chainOfEvidence 
6 weeks ago
Get started | Learning Music (Beta)
In these lessons, you'll learn the basics of music making. No prior experience or equipment is required; you'll do everything right here in your browser.
music 
6 weeks ago
SQL Notebook
SQL Notebook is a free Windows app for exploring and manipulating tabular data. It is powered by a supercharged SQLite engine, supporting both standard SQL queries and SQL Notebook-specific commands. Everything you need to answer analysis questions about your data, regardless of its format or origin, is built into SQL Notebook.
database  sql  sqlite 
6 weeks ago
Kubernetes clusters for the hobbyist
This guide answers the question of how to setup and operate a fully functional, secure Kubernetes cluster on a cloud provider such as DigitalOcean or Scaleway. It explains how to overcome the lack of external ingress controllers, fully isolated secure private networking and persistent distributed block storage.
kubernetes 
6 weeks ago
Things to Use Instead of JWT | Kevin Burke
What should you be using instead of JWT? That depends on your use case.
jwt 
7 weeks ago
Open source load testing tool for more flexible performance testing
k6 is an open-source load testing tool for testing the performance of your systems. It’s built with Go and JavaScript to integrate well into your development workflow, so you can stay on top of performance without fuzz.
testing  performance  http 
7 weeks ago
Ultimate Android Reference
The goal of this project is to provide a hand-picked collection of Android libraries, tools, open-source projects, books, blogs, tutorials - you name it.

This project will try to showcase only the best, most popular and well-tested resources that you will actually need and find useful rather than overwhelming you with a plethora of low-quality ones.
android  primer  reference 
7 weeks ago
Random: Probability, Mathematical Statistics, Stochastic Processes
Random (formerly Virtual Laboratories in Probability and Statistics) is a website devoted to probability, mathematical statistics, and stochastic processes, and is intended for teachers and students of these subjects. The site consists of an integrated set of components that includes expository text, interactive web apps, data sets, biographical sketches, and an object library.
math  probability  statistics 
7 weeks ago
Why use Postgres (Updated for last 5 years) - Craig Kerstiens
in the last 4-5 years there’s been a lot of improvements and more reasons added to the list of why you should use Postgres. Here’s the rundown of the things that make Postgres a great database you should consider using.
postgresql 
8 weeks ago
Visualizing Concurrency in Go · divan's blog
I want to show you my attempt to visualize common concurrency patterns using Go and WebGL. It more or less represents the way I see concurrent programs in my head.
concurrency  golang  visualization 
8 weeks ago
Postal
Postal is a complete and fully featured mail server for use by websites & web servers. Think Sendgrid, Mailgun or Postmark but open source and ready for you to run on your own servers.
email  mail 
8 weeks ago
real world example apps
TL;DR — See how the exact same real world blogging platform is built using React/Angular on top of Node/Rails/Django (and even more stacks coming soon). Yes, you can mix and match them, because they all adhere to the same API spec
api  http  webdev  reactjs  AngularJS  rest  node.js  django  rails  primer  learning  tutorial 
9 weeks ago
Tamper Chrome
Tamper Chrome is a Chrome extension that allows you to modify HTTP requests on the fly and aid on web security testing.
chrome  security  http 
9 weeks ago
PluotSorbet
PluotSorbet is a J2ME-compatible virtual machine written in JavaScript
J2ME  java  JavaScript 
9 weeks ago
secureoperator
A DNS-protocol proxy for Google's DNS-over-HTTPS: allows you to run a server on your local network which responds to DNS queries, but requests records across the internet using HTTPS.
DNS 
9 weeks ago
Secrets of The Felix Bundle Plug-in Macros Revealed | David Valeri's Blog
This article discusses some strategies for managing package import versions using the Felix Bundle Plug-in and the versioning related macros.
OSGi 
10 weeks ago
go tool trace - Tour of the go tool trace interface
17

Do you want to know what your Go program is really doing? go tool trace can show you: it visualizes all the runtime events over a run of your Go program, in exquisite detail. This under-documented tool is one of the most useful tools in the Go ecosystem for diagnosing performance problems such as latency, poor parallelisation, and contention.
golang 
10 weeks ago
Iosevka
Iosevka is a slender monospace sans-serif and slab-serif typeface inspired by Pragmata Pro, M+ and PF DIN Mono, designed to be the ideal font for programming.
font 
12 weeks ago
Announcing Keyholder: Secure, shared shell access – Wikimedia Blog
The new software is a ssh-agent proxy that allows a group of trusted users to share an SSH identity without exposing the contents of that identity’s private key.
ssh  security 
12 weeks ago
Colormind - the smart color palette generator
Colormind is a deep learning AI that knows color theory. It can generate color palettes from scratch, or it can take your input and intelligently fill in the blanks

Colormind can learn from photographs, movies, and popular art - generating color suggestions that fit the distinct visual style of those mediums.
color  design 
march 2017
Haskell Concepts in One Sentence
After years of dragging my feet I've been learning Haskell with the help of a few friends. Many Haskell concepts can be quite daunting so I decided to write one sentence summaries to simplify them for myself. These are not by any means complete but are useful as a jumping off point. This post draws inspiration from hemanth/functional-programming-jargon and the Standardized Ladder of Functional Programming.
functional  Haskell  primer  Programming  learning 
march 2017
Jessie Frazelle's Blog: Setting the Record Straight: containers vs. Zones vs. Jails vs. VMs
The Design of Solaris Zones, BSD Jails, VMs and containers are very different
bsd  containers  docker  vm  jail  lxc 
march 2017
Into the symmetry: Critical vulnerability in JSON Web Encryption (JWE) - RFC 7516
tl;dr if you are using go-jose, node-jose, jose2go, Nimbus JOSE+JWT or jose4j with ECDH-ES please update to the latest version.
jwt  jwe  security 
march 2017
Immersive Math
The world's first linear algebra book with fully interactive figures.
math  learning  courses  algebra  visualisation 
march 2017
Guetzli: A New Open Source JPEG Encoder
Guetzli is a JPEG encoder that aims for excellent compression density at high visual quality. Guetzli-generated images are typically 20-30% smaller than images of equivalent quality generated by libjpeg. Guetzli generates only sequential (nonprogressive) JPEGs due to faster decompression speeds they offer.
jpeg  guetzli  compression  image 
march 2017
Animista
CSS animations on demand
animation  webdesign  CSS  vfx 
march 2017
The eigenvector of "Why we moved from language X to language Y"
Is it possible to generate a N * N contingency table of moving from language X to language Y?
programming  statistics  datamining 
march 2017
JOSE (Javascript Object Signing and Encryption) is a Bad Standard That Everyone Should Avoid
A lot of developers try to use JWT to avoid server-side storage for sessions. This is almost always a terrible mistake and invites developers to come up with clever explanations and workarounds instead of careful engineering.

The standard itself is bad and leads to insecurity.
jwt  jose  security  sessions  encryption  authentication  authorization  web 
march 2017
Stop using JWT for sessions, part 2: Why your solution doesn't work
So, this time, I'm going to illustrate it with a slightly sarcastic flowchart.
jwt  security 
march 2017
Stop using JWT for sessions
To be clear: This article does not argue that you should never use JWT - just that it isn't suitable as a session mechanism, and that it is dangerous to use it like that. Valid usecases do exist for them, in other areas.
jwt  security  web  cookies  sessions  authentication  authorization 
march 2017
System Design Primer
Learn how to design large scale systems. Prep for the system design interview.
primer  designpatterns  architecture  systemdesign  learning 
march 2017
ctop
concise commandline monitoring for containers
docker  monitoring  containers 
march 2017
Emacs org-mode examples and cookbook
This document provides examples of different things that can be done in emacs org-mode files. This is not intended to be a tutorial. The examples should provide a clue of what you need to look up in the org-mode manual.
emacs  orgmode 
march 2017
JavaScript Stack from Scratch
This is a straight-to-the-point guide to assembling a JavaScript stack. It requires some general programming knowledge, and JavaScript basics.
It focuses on wiring tools together and giving you the simplest possible example for each tool.
JavaScript  primer 
march 2017
MaximAbramchuck/awesome-interview-questions
A curated list of lists of technical interview questions.
interviews  Programming  primer  learning  recruiting 
march 2017
The TCP/IP Checksum
The algorithm above has many interesting properties!
tcp  assembly  networking  checksum  ipv4 
march 2017
API Design Guide  |  Cloud APIs  |  Google Cloud Platform
This is a general design guide for networked APIs. It has been used inside Google since 2014 and is the guide we follow when designing Cloud APIs and other Google APIs. It is shared here to inform outside developers and to make it easier for us all to work together.
api  bestpractices  architecture 
february 2017
AeroPress Brew Guides
A collection of recipes for the many possible ways to brew coffee with an AeroPress.
AeroPress  coffee 
february 2017
Adventures in /usr/bin and the likes
Most of the Linux commands/programs/binaries (however you decide to call them) reside under /usr/bin, /usr/sbin, /bin and /usr/local/bin. Looking through the contents of these directories we can see a lot of programs. This got me thinking, what are all those binaries meant to do, in my daily work I hardly use any of them. So I decided to go on a treasure hunt and write about my findings in this blog post.
cli  linux  unix  shell  primer 
february 2017
Ultra-simplified explanation to design patterns
Here I try to make them stick in to your mind (and maybe mine) by explaining them in the simplest way possible.
designpatterns  primer 
february 2017
Hero Patterns | Free repeatable SVG background patterns for your web projects
A collection of repeatable SVG background patterns for you to use on your web projects.
svg  background  design  webdesign 
february 2017
Hardbor Docker Registry
Project Harbor is an enterprise-class registry server that stores and distributes Docker images. Harbor extends the open source Docker Distribution by adding the functionalities usually required by an enterprise, such as security, identity and management.
docker  enterprise 
february 2017
glacier-cli
This tool provides a sysadmin-friendly command line interface to Amazon Glacier, turning Glacier into an easy-to-use storage backend. It automates tasks which would otherwise require a number of separate steps (job submission, polling for job completion and retrieving the results of jobs). It provides integration with git-annex, making Glacier even more useful.
backup  glacier  annex 
february 2017
Introduction - The Rust Programming Language
This book is written for a reader who already knows how to program in at least one programming language. After reading this book, you should be comfortable writing Rust programs. We’ll be learning Rust through small, focused examples that build on each other to demonstrate how to use various features of Rust as well as how they work behind the scenes.
books  rust  learning  Programming  primer 
february 2017
Algorithms | Computer science | Khan Academy
We've partnered with Dartmouth college professors Tom Cormen and Devin Balkcom to teach introductory computer science algorithms, including searching, sorting, recursion, and graph theory. Learn with a combination of articles, visualizations, quizzes, and coding challenges.
learning  courses  Programming  algorithms 
february 2017
« earlier      
3d agile ai algorithm algorithms amazon analytics android angularjs animation apache api architecture ascii asm assembly async audio authentication automation avr aws backup bash benchmark bestpractices binary bitcoin blockchain books bootstrap browser build c c++ canvas charts chat cheatsheet chrome cli cloud cluster cms color compiler compression concurrency containers copyright couchdb courses cpp cpu cryptography csp css culture cygwin dashboard data database databases datamining datastructures debian debug deeplearning deployment design designpatterns development devops dht diagrams diff distributed distributedsystems django dns docker documentation ebook editor education ejabberd emacs email embedded encryption es6 exploit filesystem flash flask floss font framework freeculture functional fuse games gc gentoo git github gnu\linux golang google gpg gps graph graphics graphs gui guide hardware hash haskell history howto html html5 http http2 icons ide image imap internet ipfs iptables ipv6 irc irssi jabber java java8 javascript jdbc jpeg jquery json jvm jwt kernel language lastfm latex learning lectures libraries library linux llvm loadbalancing machinelearning maps markdown materialdesign math messaging mobile monitoring music musicbrainz mvc n770 networking neuralnetworks nginx nlp node.js nosql openpgp opensource openstreetmap optimization p2p papers password pdf pentest performance perl photo php physics png politics postgres postgresql primer privacy programming protocol proxy psychology publicdomain python python3 queue rails raspberrypi reactive reactjs recruiting reference regex remote responsive rest rpc rss ruby rust s3 sandbox scala science screencast screenshot search security seo serialization sh shell software sql ssh ssl statistics storage styleguide svg sync sysadmin tcp terminal testing tex tls tools tor torrent tracking trekbuddy tunnel tutorial tutorials typography ui unicode unix usability usb ux video vim virtualization visualisation visualization vm wallpaper web webdesign webdev websockets wiki windows wireless wysiwyg x11 xmpp zeromq zsh

Copy this bookmark:



description:


tags: