Posts

  • Aug 23, 2023

    blessing-skin-server

    Web application brings your custom skins back in offline Minecraft servers.

    • A fully functional skin hosting service
    • Multiple player names can be owned by one user on the website
    • Share your skins and capes online with skin library!
    • Easy-to-use
      • Visual page for user/player/texture management
      • Detailed option pages
      • Many tweaks for a better UI/UX
    • Security
      • Support many secure password hash algorithms
      • Email verification for registration
      • Score system for preventing evil requests
    • Incredibly extensible
      • Plenty of plugins available
      • Integration with Authme/Discuz (available as plugin)
      • Support custom Yggdrasil API authentication (available as plugin)

    Tags: #php • minecraft • laravel

  • Aug 22, 2023

    purple-team-attack-automation

    Praetorian’s public release of our Metasploit automation of MITRE ATT&CK™ TTPs

    At Praetorian, we were seeking a way to automatically emulate adversary tactics in order to evaluate detection and response capabilities. Our solution implements MITRE ATT&CK™ TTPs as Metasploit Framework post modules. As of this release, we’ve automated a little over 100 TTPs as modules.

    Metasploit’s advantage is its robust library, capability to interact with operating system APIs, and its flexible license. In addition, we’re able to emulate the features of other tools such as in-memory .NET execution via leveraging Metasploit’s execute_powershell functionality. This allows Blue Teams to ensure that their tools are alerting on the actual TTP behavior and not execution artifacts (such as encoded PowerShell).

    Our solution is built on top of the latest version of Metasploit as of 09Apr2019 (pulled from: https://github.com/rapid7/metasploit-framework). We’ve made minor modifications to Metasploit’s code base to enable some of the automation. Everything should work as intended if you’re already familiar with Metasploit. The magic happens after you establish a Meterpreter session and run a TTP as a post-exploitation module.

    We’re open sourcing our work because we believe in solving the cybersecurity problem. By giving Blue Teams more tools to emulate adversary behavior, we hope to improve their capabilities and reduce the still very high average dwell time.

    Tags: #ruby

  • Aug 22, 2023

    size-plugin

    Track compressed Webpack asset sizes over time.

    Install size-plugin as a development dependency using npm:

    npm i -D size-plugin

    Tags: #javascript • webpack • webpack-plugin

  • Aug 22, 2023

    logstash-output-amazon_es

    Logstash output plugin to sign and export logstash events to Amazon Elasticsearch Service

    This plugin is now in maintenance mode. We will supply bug fixes and security patches for v7.2.X, older versions are no longer supported. This change is because the OpenSearch Project created a new Logstash output plugin logstash-output-opensearch which ships events from Logstash to OpenSearch 1.x and Elasticsearch 7.x clusters, and also supports SigV4 signing. Having similar functionality plugins can be redundant, so we plan to eventually replace this logstash-output-amazon_es plugin with the logstash-output-opensearch plugin.

    To help you migrate to logstash-output-opensearch plugin, please find below a brief migration guide.

    Tags: #ruby

  • Aug 21, 2023

    samson

    Web interface for deployments, with plugin architecture and kubernetes support

    Create a project and 1 or more stages (staging/production etc), then selects a version and start the deploy.

    Samson will:

    • clone git repository
    • execute commands associated with the stage (or execute API calls for kubernetes)
    • stream deploy output to everybody who wants to watch
    • persist deploy output for future review

    Tags: #ruby • kubernetes • cd

  • Aug 21, 2023

    phpLDAPadmin

    phpLDAPadmin - Web based LDAP administration tool

    phpLDAPadmin is a web based LDAP data management tool for system administrators. It is commonly known and referred by many as “PLA”.

    PLA is designed to be compliant with LDAP RFCs, enabling it to be used with any LDAP server. If you come across an LDAP server, where PLA exhibits problems, please open an issue with full details of the problem so that we can have it fixed.

    For up to date information on PLA, please head to the wiki.

    NOTE: GIT master is currently in active development, and as such functionality may be missing, broken or not working as expected.

    If you are after a working version of PLA, please use one of the tagged releases.

    Tags: #php • phpldapadmin • ldap-administration

  • Aug 21, 2023

    dry-web

    Lightweight web application stack with pluggable routing front-ends

    Tags: #ruby

  • Aug 20, 2023

    modernizr-rails

    Gem wrapper to include the Modernizr.js library via the Rails 3.1 asset pipeline.

    The modernizr-rails gem will include the Modernizr.js library into your Rails 3.1+ app via the asset pipeline. This gem is bundled with the last tagged release version from the Modernizr GitHub repo, which is minified by the Rails Assets Pipeline for you automatically. If you need custom feature detection tests, consider the Custom feature detection tests section in this README.

    Tags: #ruby

  • Aug 20, 2023

    bdash

    Simple SQL Client for lightweight data analysis.

    Simple SQL Client for lightweight data analysis.

    Tags: #typescript • electron • sql

  • Aug 19, 2023

    bkash

    PHP client for bKash Payment Gateway API

    Please refer to our extensive Wiki documentation for more information.

    Tags: #php • bkash • bkash-online-payment

subscribe via RSS