A bunch of my public GitHub repo's have been moved to Codeberg. The GitHub sources have been archived. I'm just about done with migrating everything.
Have a look if you want, maybe you'll find something of interest to you: https://codeberg.org/jwdevos
My last remaining public repo at GitHub contains the source data for my Hugo static site. There will be a few bald yaks before that one is done.
Lead developer for ArcoLinux announces it is time for him to step away
https://www.linux-magazine.com/Online/News/So-Long-ArcoLinux?utm_source=mlm
#ArcoLinux #OpenSource #distro #FOSS #fork #remix #GitHub
New Open-Source Tool Spotlight 
Google's GRR (GRR Rapid Response) is an open-source framework for remote live forensics and incident response. It allows security teams to investigate systems at scale without interrupting operations. Used for data collection, analysis, and hunting. #CyberSecurity #DFIR
Project link on #GitHub 
https://github.com/google/grr
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— 
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 
Question about choice of forge software, I would be very thankful for some suggestions!
I aim to work on projects for customers, whom I want to grant read and write rights flexibly. I will be the main contributor, but my customer may need to add content too, and certainly need read-rights. The customer may be a non-nerd. Ideally, it'd be software that I can eventually host myself. Therefore, it should not be too complicated, since I am a beginner server admin.
This could take the form of setting up repositories (#github/ #zenodo) etc that store the prompts used and the output received from the #LLMs. For example, if one were to use a chatbot to develop the plan for a scientific report and/or the first draft, the prompts and the output should be made public as research methods & supplementary material.
Differencing tools could then be automatically deployed to show how the final product changed to the #LLM output that was first received or even ...
@stevenaleach thank you! This is a nice project and I gave it a #github star and a #fediverse boost 
PS. I also used your announcement to give example to anti-patterns I was discussing regarding the #FOSS grassroots movement as a whole, and her (in)ability to collaborate.
I could've taken any project as showcase, but yours just happened to be in line with what triggered my writing. No critique, your approach is perfectly valid. I'm focused on the general case of FOSS.
https://discuss.coding.social/t/how-to-ease-onboarding-of-participants-in-soss-initiatives/622
2/ ...and it just so happens that #PaloAlto released a long investigation into a newer and less well known North Korean crypto operation called "Slow Pisces" and/or "Jade Sleet" at the same time.
This time the #DRPK's crypto thieves pose as recruiters on LinkedIn and try to lure developers into doing various coding challenges hosted on #GitHub as part of a job interview. Doing a challenge leads to infection with custom Python #malware.
https://unit42.paloaltonetworks.com/slow-pisces-new-custom-malware/
#NorthKorea #LazarusGroup #crypto #cybersecurity #infosec #espionage #programming #Stellar #Metamask #NickLFranklin #SlowPisces #JadeSleet #Python #macOS #GitHub
1/ Deep dive case study of the kind of open source contributions and #GitHub astroturfing that North Korean hackers employ to try get jobs as devs at crypto companies, this time in an attempt to infiltrate #onlyDust.
tl;dr DPRK hackers use contributions to FOSS projects to build cred, after which, armed with AI video avatars, they try to leverage the cred into success in interviews for blockchain development jobs.
I've said it before but i'll say it again: the one real upside of crypto is that the industry draws close to 100% of the incoming fire from sophisticated #DPRK threat actors like Lazarus Group who would otherwise be hacking banks.
https://www.ketman.org/dprk-it-workers-in-freelance-platform-onlyDust.html
#NorthKorea #LazarusGroup #crypto #cybersecurity #infosec #FOSS #opensource #espionage #programming #Stellar #Metamask #NickLFranklin
New Open-Source Tool Spotlight
SecLists is a powerful resource for security testing. It consolidates usernames, passwords, payloads, sensitive patterns, and more into one repository. Essential for pen testers and bug hunters. #CyberSecurity #PenTesting
Project link on #GitHub https://github.com/danielmiessler/SecLists
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
Back to writing my #GitHub book today. Grappling with the familiar feeling of "oh, this whole thing is rubbish, no one will want to read this"...
Osterrätsel 2025: Schick den Pinguin Chilly auf Eiersuche
Der Pinguin Chilly hat dieses Mal ganz viel Zeit. Helfen Sie ihm bei der Erkundung seines Schlitterparadieses. Die längsten Wege in drei Szenarien sind gesucht.
8. Nov. 2021
now i can make terrain aware gras in #magicavoxel
it's just a drop-shader. use a gras shader/brush mid-air and drop the gras on your terrain (no, i havn't found a terrain aware gras shader)
Today I received my first pull request fixing a small bug on a piece of software I do maintain. That was a really special moment to me.
I felt really happy that someone did show interested in one of my projects and took the time to fix a issue with the current implementation. Hopefully it will improve the piece of software will improve the workflow of others as well.
#FOSS #OpenSource #SoftwareDevelopment #Developer #Coding #GitHub #PullRequest
New Open-Source Tool Spotlight
Active Directory Certificate Services (AD CS) can be a goldmine if misconfigured. Tools like Certipy simplify enumeration and abuse, leveraging techniques like Shadow Credentials, Golden Certificates, and domain escalation paths (ESC1-ESC11). #CyberSecurity #RedTeam
Certipy's `shadow` command exemplifies ADCS weaknesses. By manipulating `msDS-KeyCredentialLink`, you can take over accounts via PKINIT. It's seamless but devastating for privilege escalation. #Pentesting #ActiveDirectory
Golden Certificates mimic Golden Tickets but target ADCS. Using a compromised CA private key, an attacker can forge certs for domain controllers or users. Certipy automates this process—caution with CA backups. #InfoSec #PKI
Project link on #GitHub https://github.com/ly4k/Certipy
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
New post on rendering GitHub-Flavored Markdown with GitHub’s REST API
https://adamj.eu/tech/2025/04/16/github-render-markdown-api/
#ONLYOFFICE Docs v8.3.3 is already available 
The latest version of the #ONLYOFFICE online office suite brings a large number of bug fixes.
See the full changelog on #GitHub: https://github.com/ONLYOFFICE/DocumentServer/blob/master/CHANGELOG.md#833
Comment déployer son site statique #11ty depuis #Github vers #alwaysdata #blog
En quelques étapes pas trop pointues techniquement.
in calmness 
