108Mhz

Top bar hive

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Mon, 02 Jan 2023 00:00:00 +0000

Backup docker container

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Thu, 28 Jul 2022 00:00:00 +0000

How To Back Up Docker Container #

Before we back up a docker container, we need the container ID of that specific container. Here, will use the ps command to get the IDs of all the running containers.

From here, we can copy the container ID of the container we need to back up.

So, to list all the IDs of all the running containers, use the following command:

docker ps -a

In the results, we’ll look for the container ID of the docker container that we want to back up, copy it, and then use it with the Docker commit command. The format for this command is:

docker commit -p <CONTAINER_ID> <BACKUP_NAME>

So, for example, if the container ID of our container is 5c7d78fcb634, and the name of our backup is our-docker-backup, the command will be:

docker commit -p 5c7d78fcb634 our-docker-backup

With this command we’ve first paused a running container with the -p option, and we’ve made a commit to save the entire snapshot as a docker image with the name our-docker-backup.

We can also save the image as a tar file on our local machine by using the command:

docker save -o ∽/our-docker-backup.tar our-docker-backup

We can check whether the file has been saved by using the command:

ls -l ∽/our-docker-backup.tar

When it saved as a tar file we can move it do any other desired docker host system for a deployment.

We can also redeploy our our-docker-backup image on another docker host system by using the push command to push the image to a private docker repository.

To do this, will use the command:

docker login
docker push our-docker-backup

Now that we’ve backed up our Docker container, let’s look at the procedure to restore Docker containers, either locally or on another machine.

#

How To Restore A Docker Backup #

If we’ve saved the tar file on our host machine, we can restore it by using the docker load command. To do this, we’ll use the command:

docker load -i ∽/our-docker-backup.tar

To make sure that the image was restored successfully, we can then list all the images using the following command:

docker images

If we’ve pushed the backup image to a docker repository, we can use the pull command to pull the data from the repository.

Here, we’ll use the command:

docker pull our-docker-backup:tag

Once we’ve restored the backed up image on our local machine, we can use the run command to run a new instance of the restore docker image. to do this we use the command:

docker run -ti our-docker-backup:tag

Cinema

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Thu, 28 Jul 2022 00:00:00 +0000

Haute Couture : Sylvie Ohayon. 2021

Roujin-Z : Hiroyuki Kitakubo. 1991

Tekkon Kinkreet : Michael Arias. 2006

Ghost in the Shell 2 Innocence : Mamoru Oshii. 2004

Everything Everywhere All at Once : Dan Kwan & Daniel Scheinert. 2022

Shang-Chi and the Legend of the Ten Rings : Destin Daniel Cretton. 2021

The Girl with the Dragon Tattoo : David Fincher. 2011

Drive My Car : Ryûsuke Hamaguchi. 2021

La dea fortuna : Ferzan Ozpetek. 2019

The Tragedy of Macbbeth : Joel Coen. 2021

First Man : Damien Chazlle. 2018

Ergo Proxy : 2006

Metropolis : Rintaro. 2001

Trava - Fist Planet : Katsuhito Ishii, Takeshi Koike. 2001

Legend of the Galactic Heroes : 1988-1997

Cybersix : Carlos Meglia, Carlos Trillo. 1999-2000

Les miserables : Tom Hooper. 2012

Minamata : Andrew Levitas 2020

Menocchio : Alberto Fasulo. 2019

Bad trip : Kitao Sakurai. 2021

Climax : Gaspar Noé. 2018

The family friend : Paolo Sorrentino. 2006

Paterson : Jim Jarmusch. 2016

Fried Barry : Ryan Kruger. 2020

A quiet place : John Krasinski. 2018

This is England : Shane Meadows. 2006

Corpus Christi : Jan Komasa. 2019

The lighthouse : Robert Eggers. 2019

Supermarkt : Roland Klick. 1974

Clemency : Chinonye Chukwu. 2019

So long my son : Wang Xiaoshuai. 2019

A hidden life : Terrence Malick. 2019

Isle of dogs : Wes Anderson. 2018

This must be the place : Paolo Sorrentino. 2011

Palm Springs : Max Barbakow. 2020

Babyteeth : Shannon Murphy. 2019

Himizu : Sion Sono. 2011

An Elephant Sitting Still : Hu Bo. 2011

The Distinguished Citizen : Gastón Duprat & Mariano Cohn. 2016

At Eternity’s Gate : Julian Schnabel. 2018

Minari : Lee Chung. 2021

Bullit : Peter Yates. 1968

Elephant : Gus Van Sant. 2003

I Am Not Your Negro : Raoul Peck. 2016

House of Gucci

Coda

The Outfit

Nano keystrokes

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sat, 16 Jul 2022 00:00:00 +0000

Nano is a text editor based on Pico text editor. Unlike Pico, Nano is licensed under the GNU General Public License. Released as freeware by Chris Allegretta in 1999, Nano became part of the GNU Project in 2001.

Nano has 87 shortcuts and we have listed all of them below.

File #

Ctrl + O Write the current file to disk

F3 Write the current file to disk

Ctrl + X Close the current file buffer / Exit from Nano

F2 Close the current file buffer / Exit from Nano

Ctrl + R Insert another file into the current one

F5 Insert another file into the current one

Alt + < Switch to the previous file buffer

Alt + , Switch to the previous file buffer

Alt + > Switch to the next file buffer

Alt + . Switch to the next file buffer

Alt + D Count the number of words, lines, and characters

Ctrl + L Refresh (redraw) the current screen

Editing #

Alt + U Undo the last operation

Alt + E Redo the last undone operation

Alt + } Indent the current line

Alt + { Unindent the current line

Alt + ^ Copy the current line and store it in the cut buffer

Alt + 6 Copy the current line and store it in the cut buffer

Ctrl + K Cut the current line and store it in the cut buffer

F9 Cut the current line and store it in the cut buffer

Ctrl + U Uncut from the cut buffer into the current line

Alt + V Insert the next keystroke verbatim

Ctrl + I Insert a tab at the cursor position

Ctrl + M Insert a newline at the cursor position

Ctrl + D Delete the character under the cursor

Ctrl + H Delete the character to the left of the cursor

Alt + T Cut from the cursor position to the end of the file

Ctrl + W Search for a string or a regular expression

F6 Search for a string or a regular expression

F16 Repeat last search

Alt + W Repeat last search

Ctrl + T Invoke the spell checker, if available

F12 Ctrl + T Invoke the spell checker, if available

Ctrl + \ Replace a string or a regular expression

F14 Replace a string or a regular expression

Alt + R Replace a string or a regular expression

Formatting #

Ctrl + J Justify the current paragraph

F4 Justify the current paragraph

Alt + J Justify the entire file

Ctrl + Y Move to the previous screen

F7 Move to the previous screen

Ctrl + V Move to the next screen

F8 Move to the next screen

Ctrl + B Go back one character

Ctrl + F Go forward one character

Alt + Space Go back one word

Ctrl + Space go forward one word

Ctrl + _ Go to line and column number

F13 Go to line and column number

Alt + G Go to line and column number

Ctrl + ^ Mark text at the cursor position

F15 Mark text at the cursor position

Alt + A Mark text at the cursor position

Ctrl + C Display the position of the cursor

F11 Display the position of the cursor

Ctrl + A Move to the beginning of the current line

Ctrl + E Move to the end of the current line

Alt + ( Move to the beginning of the current paragraph

Alt + 9 Move to the beginning of the current paragraph

Alt + ) Move to the end of the current paragraph

Alt + 0 Move to the end of the current paragraph

Alt + \ Move to the first line of the file

Alt + | Move to the first line of the file

Alt + / Move to the last line of the file

Alt + ? Move to the last line of the file

M + ] Move to the matching bracket

Alt + - Scroll up one line without scrolling the cursor

Alt + _ Scroll up one line without scrolling the cursor

Alt + + Scroll down one line without scrolling the cursor

Alt + = Scroll down one line without scrolling the cursor

Enable / Disable settings #

Alt + X Help mode enable/disable

Alt + C Constant cursor position display enable/disable

Alt + O Use of one more line for editing enable/disable

Alt + S Smooth scrolling enable/disable

Alt + $ Soft wrapping of overlong lines enable/disable

Alt + P Whitespace display enable/disable

Alt + Y Colour syntax highlighting enable/disable

Alt + H Smart home key enable/disable

Alt + I Auto indent enable/disable

Alt + K Cut to end enable/disable

Alt + L Long line wrapping enable/disable

Alt + Q Conversion of typed tabs to spaces enable/disable

Alt + B Backup files enable/disable

Alt + F Multiple file buffers enable/disable

Alt + M Mouse support enable/disable

Alt + N No conversion from DOS/Mac format enable/disable

Alt + Z Suspension enable/disable

https://defkey.com/gnu-nano-shortcuts

Useful knots

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sat, 16 Jul 2022 00:00:00 +0000

Some basic and useful knots. #

Reef Knot or Kreuzknoten

Slipstek

Palstek or Bowline

Fast method to make a Palstek using a Slipstek as a base.

Figure of Eight

Double Figure of Eight

Stevedore

You Don't Need GUI

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 19 Jun 2022 00:00:00 +0000

Graphical user interfaces are super friendly to computer users. They were introduced in reaction to the perceived steep learning curve of command-line interfaces (CLIs).

However, they often require more resources, are less powerful and hard to automate via scripting.

As a computer expert, we want to be more efficient and do our jobs better. We know that command words may not be easily discoverable or mnemonic, so we try to list some common tasks that you might be tempted to do in GUI.

Quick links #

copy a file
duplicate a file
copy a directory
duplicate a directory
move a file
rename a file
move a directory
rename a directory
merge directories
create a new file
create a new directory
show file/directory size
show file/directory info
open a file with the default program
open a file in any application
zip a directory
unzip a directory
peek files in a zip file
remove a file
remove a directory
remove all files of certain criteria
list directory contents
tree view a directory and its subdirectories
find a stale file
show a calendar
find a future date
use a calculator
force quit a program
check server response
view content of a file
search for a text in a file
search in all files in current working directory, quickly (entire disk in less than 15 minutes)
view an image
show disk size
check performance of your computer
know whether your computer is under load, and whether it’s due to memory or CPU
poweroff or reboot your computer
locate USB drives
unmount USB drives
format USB drives
check USB format
run command on all files of a directory
Quick tips
Hotkeys
I can’t remember these cryptic commands

copy a file #

STOP DRAG AND DROPPING A FILE, OR CMD/CTRL + C, CMD/CTRL + V A FILE :-1:

Copy readme.txt to the documents directory

$ cp readme.txt documents/

Go to table of contents 🔼

duplicate a file #

STOP RIGHT CLICKING AND DUPLICATE A FILE :-1:

$ cp readme.txt readme.bak.txt

More advanced:

$ cp readme{,.bak}.txt
# Note: learn how the {} works with touch foo{1,2,3}.txt and see what happens.

Go to table of contents 🔼

copy a directory #

STOP DRAG AND DROPPING A DIRECTORY, OR CMD/CTRL + C, CMD/CTRL + V A DIRECTORY :-1:

Copy myMusic directory to the myMedia directory

$ cp -a myMusic myMedia/
# or
$ cp -a myMusic/ myMedia/myMusic/

Go to table of contents 🔼

duplicate a directory #

STOP RIGHT CLICKING AND DUPLICATE A DIRECTORY :-1:

$ cp -a myMusic/ myMedia/
# or if `myMedia` folder doesn't exist
$ cp -a myMusic myMedia/

Go to table of contents 🔼

move a file #

STOP DRAG AND DROPPING A FILE, OR CMD/CTRL + X, CMD/CTRL + V A FILE :-1:

$ mv readme.txt documents/

Always use a trailing slash when moving files, for this reason .

Go to table of contents 🔼

rename a file #

STOP RIGHT CLICKING AND RENAME A FILE :-1:

$ mv readme.txt README.md

Go to table of contents 🔼

move a directory #

STOP DRAG AND DROPPING A DIRECTORY, OR CMD/CTRL + X, CMD/CTRL + V A DIRECTORY :-1:

$ mv myMedia myMusic/
# or
$ mv myMedia/ myMusic/myMedia

Go to table of contents 🔼

rename a directory #

STOP RIGHT CLICKING AND RENAME A DIRECTORY :-1:

$ mv myMedia/ myMusic/

Go to table of contents 🔼

merge directories #

STOP DRAG AND DROPPING TO MERGE DIRECTORIES :-1:

$ rsync -a /images/ /images2/ # note: may over-write files with the same name, so be careful!

Go to table of contents 🔼

create a new file #

STOP RIGHT CLICKING AND CREATE A NEW FILE :-1:

$ touch 'new file' # updates the file's access and modification timestamp if it already exists
# or
$ > 'new file' # note: erases the content if it already exists

Go to table of contents 🔼

create a new directory #

STOP RIGHT CLICKING AND CREATE A NEW DIRECTORY :-1:

$ mkdir 'untitled folder'
# or
$ mkdir -p 'path/may/not/exist/untitled folder'

Go to table of contents 🔼

show file/directory size #

STOP RIGHT CLICKING AND SHOW FILE/directory INFO :-1:

$ du -sh node_modules/

Go to table of contents 🔼

show file/directory info #

STOP RIGHT CLICKING AND SHOW FILE/DIRECTORY INFO :-1:

$ stat -x readme.md # on macOS
$ stat readme.md # on Linux

Go to table of contents 🔼

open a file with the default program #

STOP DOUBLE CLICKING ON A FILE :-1:

$ xdg-open file # on Linux
$ open file # on MacOS
$ start file # on Windows

Go to table of contents 🔼

open a file in any application #

STOP RIGHT CLICKING AND OPEN WITH :-1:

$ open -a appName file

Go to table of contents 🔼

zip a directory #

STOP RIGHT CLICKING AND COMPRESS DIRECTORY :-1:

$ zip -r archive_name.zip folder_to_compress

Go to table of contents 🔼

unzip a directory #

STOP RIGHT CLICKING AND UNCOMPRESS DIRECTORY :-1:

$ unzip archive_name.zip

Go to table of contents 🔼

decompress files of any format #

STOP RIGHT CLICKING AND UNCOMPRESS DIRECTORY :-1:

$ unar archive_name.zip
$ unar archive_name.7z
$ unar archive_name.rar
$ unar archive_name.ISO
$ unar archive_name.tar.gz

Go to table of contents 🔼

peek files in a zip file #

STOP USING WinRAR :-1:

$ zipinfo archive_name.zip
# or
$ unzip -l archive_name.zip

Go to table of contents 🔼

peek files in a compress file of any format #

STOP USING WinRAR :-1:

$ lsar -l archive_name.zip
$ lsar -l archive_name.7z
$ lsar -l archive_name.ISO
$ lsar -l archive_name.rar
$ lsar -l archive_name.tar.gz

Go to table of contents 🔼

remove a file #

STOP RIGHT CLICKING AND DELETE A FILE PERMANENTLY :-1:

$ rm my_useless_file

IMPORTANT: The rm command deletes my_useless_file permanently, which is equivalent to move my_useless_file to Recycle Bin and hit Empty Recycle Bin.

Go to table of contents 🔼

remove a directory #

STOP RIGHT CLICKING AND DELETE A DIRECTORY PERMANENTLY :-1:

$ rm -r my_useless_folder

Go to table of contents 🔼

remove all files of certain criteria #

$ find . -name "*.bak" -type f -delete

IMPORTANT: run find . -name "*.bak" -type f first to see exactly which files you will remove.

Go to table of contents 🔼

list directory contents #

STOP OPENING YOUR FINDER OR FILE EXPLORER :-1:

$ ls my_folder # Simple
$ ls -la my_folder # -l: show in list format. -a: show all files, including hidden. -la combines those options.
$ ls -alrth my_folder # -r: reverse output. -t: sort by time (modified). -h: output human-readable sizes.

Go to table of contents 🔼

tree view a directory and its subdirectories #

STOP OPENING YOUR FINDER OR FILE EXPLORER :-1:

$ tree # on Linux
$ find . -print | sed -e 's;[^/]*/;|____;g;s;____|; |;g' # on MacOS
# Note: install homebrew (https://brew.sh) to be able to use (some) Linux utilities such as tree.
# brew install tree

Go to table of contents 🔼

find a stale file #

STOP USING YOUR FILE EXPLORER TO FIND A FILE :-1:

Find all files modified more than 5 days ago

$ find my_folder -mtime +5

Go to table of contents 🔼

show a calendar #

STOP LOOKING UP WHAT THIS MONTH LOOKS LIKE BY CALENDAR WIDGETS :-1:

Display a text calendar

$ cal

Display selected month and year calendar

$ cal 11 2018

Go to table of contents 🔼

find a future date #

STOP USING WEBAPPS TO CALCULATE FUTURE DATES :-1:

What is todays date?

$ date +%m/%d/%Y

What about a week from now?

$ date -d "+7 days" # on Linux
$ date -j -v+7d # on MacOS

Go to table of contents 🔼

use a calculator #

STOP USING CALCULATOR WIDGET :-1:

$ bc -l

Go to table of contents 🔼

force quit a program #

STOP CTRL + ALT + DELETE and choose the program to kill :-1:

$ killall -9 program_name

Go to table of contents 🔼

check server response #

STOP OPENING A BROWSER :-1:

$ curl -i umair.surge.sh
# curl's -i (--include) option includes HTTP response headers in its output.

Go to table of contents 🔼

view content of a file #

STOP DOUBLE CLICKING A FILE :-1:

$ cat apps/settings.py
# if the file is too big to fit on one page, you can use a 'pager' (less) which shows you one page at a time.
$ less apps/settings.py

Go to table of contents 🔼

search for a text in a file #

STOP CMD/CTRL + F IN A FILE :-1:

$ grep -i "Query" file.txt

Go to table of contents 🔼

search in all files in current working directory, quickly (entire disk in less than 15 minutes) #

STOP CMD/CTRL + F IN A DIRECTORY :-1:

$ ripgrep -i "Query"
# brew install ripgrep

Go to table of contents 🔼

view an image #

STOP USING PREVIEW :-1:

$ imgcat image.png
# Note: requires iTerm2 terminal.

Go to table of contents 🔼

show disk size #

STOP RIGHT CLICKING DISK ICON OR OPENING DISK UTILITY :-1:

$ df -h

Go to table of contents 🔼

check performance of your computer #

STOP OPENING YOUR ACTIVITY MONITOR OR TASK MANAGER :-1:

$ top

Go to table of contents 🔼

know whether your computer is under load, and whether it’s due to memory or CPU #

$ glances
# brew install glances

Go to table of contents 🔼

poweroff or reboot your computer #

This can be useful when you’re patching a server that is acessed via SSH and you don’t have a GUI.

# poweroff
$ sudo shutdown -h now
# reboot
$ sudo shutdown -r now

Go to table of contents 🔼

locate USB drives #

$ df

Go to table of contents 🔼

unmount USB drives #

$ sudo umount /dev/sdb1

Go to table of contents 🔼

format USB drives #

# FAT32
$ sudo mkfs.vfat /dev/sdb1
# NTFS
$ sudo mkfs.ntfs /dev/sdb1
# exFAT
$ sudo mkfs.exfat /dev/sdb1

Go to table of contents 🔼

check USB format #

$ sudo fsck /dev/sdb1

Go to table of contents 🔼

run command on all files of a directory #

STOP CLICKING THE FILES ONE BY ONE :-1:

$ for FILE in *; do echo $FILE; done

Go to table of contents 🔼

Quick tips #

Go to table of contents 🔼

Hotkeys #

Ctrl + A Go to the beginning of the line you are currently typing on
Ctrl + E Go to the end of the line you are currently typing on
Ctrl + L Clears the Screen, similar to the clear command
Ctrl + U Clears the line before the cursor position. If you are at the end of the line, clears the entire line.
Ctrl + H Same as backspace
Ctrl + R Lets you search through previously used commands
Ctrl + C Kill whatever you are running
Ctrl + D Exit the current shell
Ctrl + Z Puts whatever you are running into a suspended background process. fg restores it.
Ctrl + W Delete the word before the cursor
Ctrl + K Clear the line after the cursor
Ctrl + T Swap the last two characters before the cursor
Ctrl + F Move cursor forward one character
Ctrl + B Move cursor backward one character
Esc + T Swap the last two words before the cursor
Alt + T Same as Esc + T
Alt + F Move cursor forward one word on the current line
Alt + B Move cursor backward one word on the current line
Esc + F Same as Alt + F
Esc + B Same as Alt + B
Alt + . Paste the last word of the most recently command
Tab Auto-complete files and directory names

Go to table of contents 🔼

I can’t remember these cryptic commands #

You can always google or man the commands you are not familiar with. Or, checkout tldr , a collection of simplified and community-driven man pages.

Go to table of contents 🔼

Calendario semine

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 28 Nov 2021 00:00:00 +0000

Gennaio #

Febbraio #

Marzo #

Aprile #

Maggio #

Giugno #

Luglio #

Agosto #

Settembre #

Ottobre #

Novembre #

Dicembre #

Fusilli salmone e finocchio

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 28 Nov 2021 00:00:00 +0000

Ingredienti per 4 persone #

Pelate la cipolla, tritatela, appassitela in una padella con il burro, bagnate con il vino bianco e lasciate evaporare. Riducete il salmone affumicato a pezzetti, unitelo nella padella con il soffritto di cipolla, portate sul fuoco e lasciate insaporire per qualche minuto. Mondate, lavate e tagliate i finocchi a fettine. Cuocete i fusilli, trasferiteli nella padella con il condimento, unite i finocchi, portate sul fuoco e saltate per qualche minuto. Disponete i fusilli nel piatto da portata e insaporiteli con un pizzico di pepe e un filo di olio.

Risotto al vermouth

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 28 Nov 2021 00:00:00 +0000

Sbucciate e tritate 1 scalogno e fatelo appassire in un tegame con 20 g di burro e un pizzico di sale. Unite 320 g di riso Carnaroli, fatelo tostare per un istante, poi bagnate con 30 ml di Vermouth e lasciatelo evaporare. Portate a cottura il riso, versando 800 ml di brodo vegetale bollente, poco per volta e mescolando spesso. A parte sciogliete 20 g di burro in una padella e fatevi dorare 12 capesante, 1 minuto per lato. Con la punta di un coltellino, prelevate i semini da 1/2 baccello di vaniglia e mescolateli in poco brodo. Togliete il risotto dal fuoco e profumatelo con la vaniglia stemperata; incorporate 20 g di burro e qualche goccia di succo di limone, mescolate bene, coprite e lasciate riposare per 1 minuto. Distribuite il risotto nei piatti e completate con le capesante, 30 g di granella di pistacchi e un pizzico di erba cipollina pulita e tagliuzzata.

(per 4 persone)

Homemade Bokashi flakes

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Wed, 20 Oct 2021 00:00:00 +0000

For the longest time, I thought worms were the love of my compost life. Cute, easy to care for, discreet when tucked in a cabinet or under the sink…

But recently, I’ve wiggled away from Red Wiggler earthworms (mostly Friend Zone now) to embrace my Bokashi Buckets — airtight containers in which I ferment food scraps before burying them in soil. Once buried (or mixed into an aerobic compost pile) they fully decompose and transform into lovely, luscious earth.

Bokashi, a Japanese word meaning fermented organic matter, doesn’t discriminate. As with worm bins, I can process fruit and veggie scraps in my bucket. BUT, I can ALSO process meat, dairy, cooked foods, ancient condiments and mysteries from the back of the fridge. All these latter items create chaos in a worm bin ecosystem and in general are best kept out of aerobic compost piles to avoid odor and pests. Bokashi is a food waste recycler’s dream!

Maintaining a bokashi bucket is mindlessly easy (keep your eyes peeled for a how-to, coming up in a future post). All the hard work of fermentation is done by a powerful trio of anaerobic microbes called Effective Microorganisms (lactobacillus bacteria, phototrophic bacteria and yeast). They are sprinkled onto food scraps via an inoculated material often called bokashi bran, as wheat bran is a popular ingredient. I prefer the more generic term “bokashi flakes,” as any easily spreadable plant-based carbon material that can dust scraps like snowflakes will do. I’ve known folks who have used coffee chaff, sawdust and dry, crumpled leaves with great success.

While bokashi flakes are readily available for purchase online, they are also super simple to make. If you’d like to save some cash, enjoy DIY projects, and have a few weeks to spare to allow your bokashi flakes to ferment and subsequently dry for long-term use and storage, follow the steps below to make bokashi flakes yourself!

The following recipe is adapted from the guidelines provided by Teraganix, a distributor of a liquid form of Effective Microorganisms called EM-1. Their base recipe calls for 10 lbs of flake material. I have adjusted it for 3 lbs of wheat bran, which is roughly the amount in the plastic bag pictured above, is easy to make in my apartment and lasts for several months for a household of 2 .

Materials:

1.5 TB EM-1 Some people make their own microbe solution from every day items but it can be difficult to ensure optimized populations of each microbe group when collecting from the wild. I’ve tried it, with varying results. These days, I just stick to EM-1 for consistency.

3 lb. Flake material Wheat bran can be purchased from an animal feed store for about $15 for 50 pounds. Considering a 2 lb bag of finished bokashi flakes can cost upwards of $15, you’re in for some serious savings! If you’re a savvy scrounger, you can freecycle items like coffee chaff, leaves, and untreated sawdust as well.

1.5 TB Molasses This serves as fuel for the microbes. I’ve been using a bottle I got years ago during my ginger snap baking era which, come to think of it, I should resurrect.

3 cups Water Container for mixing Make sure it’s big enough to hold your flake material and then some, as you’ll be mixing the flakes around and you don’t want to spill them all over your counter. Plastic bag A reused grocery store bag or a trash bag will do. Make sure there are no holes in the plastic.

Instructions

Dissolve the molasses in the water. Add EM-1 to the water mix. Pour dry flake material into the mixing container. Add 2/3 of the water mixture to the flake material and mix it together. Use your hands! It not only feels good, but is vital to determining when you’ve achieved the ideal moisture level. Squeeze a handful of flakes together. If it sticks together without dripping, as seen in the picture below, it’s perfect! Continue to the next section! If it crumbles apart like dust, it’s too dry. Slowly add the remaining liquid to your flakes, pausing periodically to squeeze test it until it achieves the conditions described above. If liquid oozes from the flakes, it’s too wet. Add more dry flake material until it achieves the conditions described above.

How To Make Bokashi EM 1 Fermented Food Waste Wheat Bran

The squeeze test always reveals if you’ve hit the right moisture balance! This handful is perfect! Once you’ve achieved the proper moisture level, put the dampened flakes into the plastic bag. Compress the bag contents to squeeze out as much air as you can from between the flakes and throughout the bag. Twist or tie the bag closed, sealing the flakes in a private, air-tight universe. Keep the bag in a warm, out-of-the-way corner like a cupboard or cabinet for a minimum of two weeks. In this quiet, dark, airless space, the microbes will ferment the flakes.
After a few weeks have passed, open the bag. It should have a sweet, yeast-y smell to it. You may see white mold on it, which is totally fine. If you see green/blue/black mold, something went wrong and the wrong microbes cultivated. Compost the bad batch and start over. Dry your flakes for long-term storage and use. Spread your bokashi flakes out in a thin layer on the floor or on a table to air out. You can do this in a tray, on a plate, or any other surface you don’t mind spreading flakes on. Heat and sunshine help speed things up.

Homemade EM1

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Wed, 20 Oct 2021 00:00:00 +0000

Wikipedia:

Effective Microorganisms, aka EM Technology, is a trademarked term now commonly used to describe a proprietary blend of 3 or more types of predominantly anaerobic organisms that was originally marketed as EM-1™ Microbial Inoculate but is now marketed by a plethora of companies under various names, each with their own proprietary blend. “EM™ Technology” uses a laboratory cultured mixture of microorganisms consisting mainly of lactic acid bacteria, purple bacteria, and yeast which co-exist for the benefit of whichever environment they are introduced, as has been claimed by the various em-like culture purveyors. It is reported[1] to include:

Lactic acid bacteria: Lactobacillus plantarum; L. casei; Streptococcus Lactis. Photosynthetic bacteria: Rhodopseudomonas palustris; Rhodobacter sphaeroides. Yeast: Saccharomyces cerevisiae; Candida utilis (no longer used) (usually known as Torula, Pichia Jadinii). Actinomycetes (no longer used in the formulas): Streptomyces albus; S. griseus. Fermenting fungi (no longer used in the formulas): Aspergillus oryzae; Mucor hiemalis. The concept of ‘Friendly Microorganisms’ was developed by Japanese horticulturist Teruo Higa, from the University of the Ryukyus in Okinawa Prefecture|Okinawa, Japan. He reported in the 1970s that a combination of approximately 80 different microorganisms is capable of positively influencing decomposing organic matter such that it reverts into a ’life promoting’ process. Higa invokes a ‘dominance principle’ to explain the effects of his ‘Effective Microorganisms’. He claims that three groups of microorganisms exist: ‘positive microorganisms’ (regeneration), ’negative microorganisms’ (decomposition, degeneration), ‘opportunist microorganisms’. In every medium (soil, water, air, the human intestine), the ratio of ‘positive’ and ’negative’ microorganisms is critical, since the opportunist microorganisms follow the trend to regeneration or degeneration. Therefore, Higa believes that it is possible to positively influence the given media by supplementing with positive microorganisms.

EM™ Technology is supposed to maintain sustainable practices such as farming and sustainable living, and also claims to support human health and hygiene, animal husbandry, compost and waste management, disaster clean-up (The Southeast Tsunami of 2004, the Kobe Earthquake, and Hurricane Katrina remediation projects), and generally used to promote functions in natural communities.

EM™ has been employed in many agricultural applications, but is also used in the production of several health products in South Africa and the USA.[citation needed] (fuel additive products are no longer available).

A High School in Malaysia, Sekolah Menegah Kebangsaan Dato’ Onn Butterworth, Penang, are using EM to treat Greywater, minimise odour from Septic Tank & remove sludge from drains.

This is a recipe I learned from a friend along time ago.

EM/BAM: this a trade secret!(lactobacillus culture)

1/4 cup rice

1quart Mason Jar

1 cup water

1 fine mesh strainer

80 oz milk depends on how much one is making

1 gallon container or jar

1 tsp. black-strap molasses

Procedure:

Place rice and cup of water in mason jar and shake vigorously until water is cloudy white, strain off rice kernels and discard into tour compost bin or cook for dinner. I have heard of the Japanese adding a dash of nato to help ferment but not needed.
place cap on loosely and store in a cabinet or cool dark place for 5-7 days.
Sift off top layer and strain liquid (serum)
measure your rice liquid and now add a ratio of 1 part fermented rice to 10 parts milk, I would culture in a 1 gallon jar. let sit for 5-7 days.

Rice water and milk serum fermenting 3 days – notice lid is only siting on top as to not build pressure. 5. sift off curd settlement and add to your soil or feed your animals it is good for their digestion, then there should be a light yellow serum left this is your unactivated serum.

Add 1 tsp molasses to feed and keep your bacteria alive and refrigerate. should have a shelf life of 6-12 months.
to activate microorganism activities and to room temperature non-chlorinated water at a ratio of 1 part Serum to 20 parts water.
feed to plants either straight into soil or follicular feeding.

Provoke

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 17 Sep 2021 00:00:00 +0000

Post 16 lesson plan: #

Exploring provocative documents for thought with the Japanese Provoke photographers Yutaka Takanashi, Takuma Nakahira and Daido Moriyama. #

From Jon Nicholls, Thomas Tallis School

This project aims to introduce students to an important period in Post War Japanese photography and to challenge them to respond to the idea that photography has its own language, independent of words. The photographers featured here attempted for a short period to challenge the rules and conventions of photography in the context of massive social upheaval. They asked important questions of photography, testing its power and influence. Their youthful experiments became massively influential for subsequent generations of photographers.

The main subject of this project is **Provoke **(Purovōku), an experimental magazine founded by photographers Yutaka Takanashi and Takuma Nakahira, critic Koji Taki, and writer Takahiko Okada in 1968. The magazine’s subtitle read as: shisō no tame no chōhatsuteki shiryō (Provocative documents for the sake of thought).

Photographer Daido Moriyama, the photographer most often associated with the publication, did not join the magazine until the second issue. Provoke lasted only three issues with a small print run, but was tremendously influential.

Today, when words have lost their material base—in other words, their reality—and seem suspended in mid-air, a photographer’s eye can capture fragments of reality that cannot be expressed in language as it is. He can submit those images as a document to be considered alongside language and ideology. This is why, brash as it may seem, Provoke has the subtitle, ‘provocative documents for thought.’
– **Manifesto of the Provoke Group **by Koji Taki, Takuma Nakahira, Takahiko Okada, Yutaka Takanashi, and Daido Moriyama

Provoke argued that the photographer can capture what cannot be expressed in words, presenting photographs as “documents” for others to read. In Japanese, the visual style of the photographs in Provoke has been described as: ‘are-bure-boke’, which translates as ‘grainy/rough, blurry, out-of-focus’. On 31 March 1970 the Provoke collective published the book Mazu tashikarashisa no sekai o suterō: Shashin to gengo no shisō (First, Throw Out Verisimilitude - Thoughts on photography and language). It was to the be the last publication of this short lived but influential group. Each of the participants went on to establish their own individual visions in their subsequent careers.

]

Photography was too explanatory, too narrational for me. […] It was natural for me to join Provoke. […] They said they were photographing atmosphere. But I was very precise and careful. […] But my work changed after I saw how they worked. I saw that I could not control everything. I understood that photography is only a fragment. I used to be a photographer who interprets things via language. And then Provoke changed me.
– Yakuta Takanashi

You can check out some example spreads from each of the four publications using the following links:

Provoke #1 #

Provoke #2 #

Provoke #3 #

]

Provoke 4 & 5: First, Throw Out Verisimilitude – Thoughts on photography and language #

This book is often referred to as Provoke 4 & 5. Although the chapters are called provoke 1-5, the images are not from any previous Provoke publication, with the exception of a single image by Takuma Nakahira in chapter 1, which was previously published in Provoke issue 2. (This image also appears in his book For a Language to come.) The book is divided into the five sections, and six sections of text. It was published the same year that the Provoke group split up. The book resembles a kind of paperback novel, printed on rough matt paper.

Thanks to Josef Chladek for kind permission to reproduce these images. Be sure to check out these and other amazing photography books on Josef Chladek’s virtual bookshelf .

… the Provoke photographers campaigned against a world of seeming certainty and ceased to ask “What should we photograph?” or “How should we photograph?”, instead asking more fundamental questions such as “What is photography?”, “Who becomes a photographer?” or “What is seeing?”. Their characteristic grainy, blurry, shaky pictures are the photographic expression of their doubt about a photography […] They are attempts not to »shoot« the pictures actively, but rather to allow the pictures to develop on the basis of a deliberately passive stance, with the frequent use of wide-angle lenses and no-finder technique, and thus to rehabilitate the unruly nature (the independent action) of the camera that lies hidden in the concept of »expression«. By reflecting the difference between their own eye and the eye of the camera in the photos in an extreme manner, the Provoke photographers were in search of a way of capturing the form of the world that was eluding them.
– from the article “A Portrait of Takuma Nakahira” (2005) on the ASX blog

The writer Minoru Shimizu describes Moriyama’s approach as follows (with particular reference to his 1972 book ‘Farewell Photography’:

The features of this style can be listed: fragmentariness, a sense of speed, images appearing to be damaged, wildness, traces, a sense of unbalance, printing failures, time-lapse, scraps of negatives, scenes that come out of the dark only through the flash, no viewfinder etc. These are all expressions of a kind of ‘subtraction’, a means to erase the photographer’s self, his thoughts, subjective expressions and intentions. In other words, the photographs try to not see, not to think and not to choose […] To Moriyama, grainy, blurry, out-of-focus was an important method of deletion, but only in order to show the real world as it was. In other words, grainy, blurry, out-of-focus reveals the scars left after the membrane of the fake reality has been taken off in order to hollow out the ‘real’ existence. This real world, then, is expressed through violence towards the photographs. The more real the photographs are, the more scars they have, the more they are worn away. The real world can only appear if the usual world disappears.
– Minoru Shimizu, Grainy, Blurry, Out-of-Focus: Daido Moriyama’s ‘Farewell Photography’

Other photographs by Provoke Group members: #

Subsequent publications by each of the Provoke members were equally challenging in their subject matter and visual style. Most famous of these are the books ‘ Farewell to Photography ’ by Daido Moriyama, ‘ For a Language to Come ’ by Takuma Nakihara and ‘ Towards the City ’ by Yutaka Takanashi.

DAIDO MORIYAMA, FROM ‘FAREWELL TO PHOTOGRAPHY’, 1972

TAKUMA NAKIHARA, FROM ‘FOR A LANGUAGE TO COME’, 1970

The ambitious mission of Provoke to create a new photographic language that could transcend the limitations of the written word was declared with the launch of the magazine’s first issue. The year was 1968 and Japan, like America, was undergoing sweeping changes in its social structure. A questioning of traditional social conventions and a loss of confidence in existing political powers was happening in many creative disciplines across Japan and formed the foundation that fuelled Provoke’s mission. Unified under a manifesto that advocated conceptualism over realism, Provoke’s photographers and writers moved beyond issues of what to photograph, and sought to uncover and question the essential nature of photography itself. The visual results flouted the precision of earlier documentary modes in favour of a less focused imagery that allowed for chance and the unknown to reveal itself in the photographic process.
– Russet Lederman, 2012

Other Resources: #

The Provoke Era Gallery Guide from SFMoMA

Flip through The Cartier-Bresson Foundation publication
about Yatuka Takanashi.

A wonderful short film about Takuma Nakahira

The Influence of Provoke #

The Provoke group published their third volume in August 1969 and the group dissolved soon after. Published in December of 1969, Pursuit 1 is an homage in every way. Instead of “Provoke” we have “Pursuit.” Instead of “Provocative documents for thought” we have “Record of existential pusuit.” The book is the exact same size as Provoke Vol. 3. The photos are stylistically influenced by the Provoke photographers and deal with similar subject matter.

] ] ]

]

] ]

]

Provoke camera app

The Provoke Camera app was inspired by Japanese photographers of the late 1960’s. It produces black and white images with a gritty, grainy, blurry look reminiscent of the “Provoke” era of photography, and in two formats: square format 126 and 35mm format 135. Provoke Camera features 9 black and white live view effects:

1. HPAN High Contrast
2. NPAN Normal
3. LPAN Low Contrast
4. X800 More High Contrast with more noise.
5. I800 IR like filter.
6. Z800 +2EV with more noise.
7. D100 Darken with Blur
8. H100 High Contrast with Blur
9. E100 +1.5EV with Blur

Flickr group: Provoke #

There are lots of tribute groups on Flickr of photographers who imitate (and pay homage to) their photo heroes. This group exists to help share photographs that reflect the visual style and subject matter of the Provoke group:

Some suggestions: #

Look carefully at the photographs published in the various issues of Provoke. How would you describe them? Write a list of words that might be used to capture the visual qualities, subjects and impact of these photographs on the viewer.
How adequate is the phrase ‘are-bure-boke’? What attitudes (to life and photography) can you discern in these images?
What does the word Provoke suggest to you? What is provocative about these photographs? Why do you think this was chosen as the title of the publication?
Provoke was a form of protest, formed by a heady mixture of attraction, ambivalence and repulsion, that caused the photographers and writers involved to make a bold, confrontational statement. Reflect on your own feelings about the society in which you live and the state of photography. What kinds of images and ways of making photographs seem appropriate to you for documenting these feelings and attitudes? Where would you go to make these pictures? Given Moriyama’s use of a consumer compact camera (rather than an expensive, professional rangefinder or SLR) would it matter to you what equipment you used?
In order to explain the approach they were taking to photography in Provoke, the participants published a short manifesto . There is a long history of artists, especially in the twentieth century, banding together and writing manifestos . Imagine you decided to collaborate with classmates and/or friends to create an artistic collective. What would you write in your manifesto?
Daido Moriyama has said: “[My] photos are often out of focus, rough, streaky, warped, etc. But if you think about it, a normal human being will in one day perceive an infinite number of images, and some of them are focused upon, others are barely seen out of the corner of one’s eye.” What do you think he means? Watch the film Daido Moriyama: In Pictures and make some notes. How would you summarise his attitude to photography?
It is often more difficult to make ‘ wrong ’ photographs than it is to follow the ‘rules’ or conventions of photography. Attempt to make a series of images which respond as instinctively to the world as possible. Consider the following questions:
- Will you use a film or digital camera? Will your camera be an SLR/DSLR, a compact camera, a disposable camera or a camera phone?
- Will you photograph in colour or black and white?
- Will you always look through the viewfinder?
- Will you always compose your image carefully?
- Will you always keep the camera level with the horizon?
- Will you always focus on your subject?
- Will your subjects conform to one or more genres of photography?
- Will you always photograph from your full height?
- Will you always carefully select your subjects?
Whilst you are making photographs, ask yourself the questions: “What is photography?”, “Who becomes a photographer?” and “What is seeing?”
Once you have made a significant number of photographs, consider how you will edit, print, sequence and display them. You could continue to experiment at this stage by, for example, printing your images on unusual materials and/or using a scanner or photocopier to print/alter your photographs. You might decide to create your own photobook or magazine (like Provoke). You could also choose to collaborate with classmates. Again, don’t be afraid to question the ‘rules’ about how photographs are generally displayed. Consider issues such as repetition, scale, materials, layering, orientation etc.
Daido Moriyama reportedly told the publisher of his groundbreaking book ‘Farewell to Photography’ to arrange the pictures in whatever way he liked. You could give a classmate a selection of your images and ask them to make their own sequence for a display or publication of some sort, thus delegating the responsibility of the final display to someone else.

Learn zone focusing and hyperfocal

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 10 Sep 2021 00:00:00 +0000

If you are new to Street Photography you might have heard the term “Zone Focusing” being discussed by more experienced street shooters from time to time. You might have even heard the term “Hyperfocal distance” too. If you have been shooting in the Streets for quite a while, you have probably looked into these terms and even tried applying them to your shooting style. Street Hunters that use manual lenses or film cameras without auto focus capabilities, swear by both methods and most of them have possibly reached a point where they can take sharp, in focus pictures using Zone Focusing or the Hyperfocal distance, faster than they would using any AF capable camera. But how you might ask? What is Zone Focusing? What is Hyperfocal Distance and how can it help a Street Photographer take sharp photos with a Manual Focus lens so fast!?

During this post I will try and explain both terms as simply as possible, in my own words. I will give you my personal interpretations and I will also offer links to more “official” resources that explain the terms in a more scientific way if you wish to look into them further.

Before we learn about those two terms though, we need to understand what happens when we focus with a lens. So let’s start.

Focusing With Any Lens # #

When focusing with any lens, what we tell the camera to do is to move an invisible mask back and forth along the visible area we can see through our viewfinder. This invisible mask can be short or long, or as Photographers refer to it, shallow or deep depth of field. When we move the focus ring on a lens with our finger, we tell that invisible area to move back and forth. Now, the wider our Aperture the shallower the depth of field. In other words the wider the Aperture the shorter the invisible mask that has things in focus. I have illustrated my thoughts below using some rough designs I made to help you understand the concept.

In addition to the designs, I have shot some photos at different f stops (Aperture settings) so you can see the differences. I have made faint marks of the size of the invisible mask area so you can understand what happens each time. I have shot the photos on the carpet floor on purpose, so you can see the area that is sharp much easier.

Zone Focusing # #

This invisible mask can be moved from close to far from our viewfinder, can become shorter or longer and can be easily controlled by us when out on the streets. Of course, the wider the Aperture the harder it is to control this with precision. It can be done with lots of practice, but most Street Hunters, like shooting at f 8.0 and above to get a longer invisible mask thus getting more things in focus at the same time. So, if you haven’t understood what Zone Focusing is by what I have mentioned until now, let me lay it out for you in plain English.

My definition of Zone Focusing # #

Zone Focusing is when we adjust our camera to be in focus for a particular zone, or a particular size of invisible mask. This can be a short zone or a long zone. You can set it to be in focus for 2 meters starting from 1 meter away from you, you can set it to be in focus for 4 meters starting 2 meters away from you and so on and so forth. To know what will be in focus and how to set your zone, you need to know 3 things. Without these 3 things, you can not set your zone focus to a specific setting.

Aperture
Lens focal length
Subject distance

If you are not familiar with all or some of those terms, please visit this awesome Photography glossary with illustrations by Tinyprints.com. You can read about all Photography terms there and enjoy some cool illustrations to help you understand everything better. I highly recommend you visiting this page.

How Do I Set My Zone Focus? # #

Knowing the above numbers let’s you estimate the zone focus size and distance very easily and vise versa, knowing what you want to set your zone focus too, can only be achieved by controlling these numbers. Of course, we live in an age where free online dof calculators exist and with those we can control our Zone Focusing very easily! One of the most well known ones is located at www.dofmaster.com . Using the Depth of Field Calculator or the Depth of Field Table any Street Photographer can estimate the depth of field to set their zone focus. There is a mobile site version as well for using it on the go! You will notice that the website hasn’t been updated for quite a while and the latest camera models, from 2013 onwards specifically, aren’t listed, but don’t worry. If you use a digital camera and you know your sensor size, just use a camera of the same make with the same sensor size to make your calculations. So, for example, if I owned a Fuji X-Pro1 I would just use the Fuji X-Pro1 sensor size from the calculator to estimate my depth of field.

Example # #

Let’s perform an example so you can understand this better. If I want everything at 2 meters in focus at all times using an imaginary Fuji X-Pro1 camera, I have to set my settings to the following numbers:

Aperture at f8 at least, I will go for f11
Lens focal length at 35mm
Subject distance

Zone Focusing. Image from www.dofmaster.com

By setting my imaginary X-Pro1 to those settings I know now I can shoot anything within the zone of 1,47m and 3.14m and get it in focus. That gives me a zone that is 1.67m wide that starts 1.47m away from my lens. Everything in that zone is in focus. Check out the graphic I have made below to better understand this.

Wouldn’t it be cool if we didn’t have to worry about zones when shooting in the streets? Wouldn’t it be cool if we could could just set a starting point and then have everything from there onwards in focus? That is possible and that is the Hyperfocal distance.

Hyperfocal Distance # #

Hyperfocal distance is a similar concept to that of zone focusing with one difference. Instead of setting a zone distance in which everything is in focus, hyperfocal distance lets you have everything in focus from one point and onwards to infinity! Let me share with you my personal definition of Hyperfocal distance.

My definition of Hyperfocal distance # #

Hyperfocal distance is the focus distance that we set our lens too in order make our camera have everything in focus, from one starting point all the way up to infinity! The starting point of your Hyperfocal distance is affected by the same 3 things that you need to control when zone focusing. Without these 3 things, you can not set your Hyperfocal distance.

Aperture
Lens focal length
Subject distance

If you are not familiar with all or some of those terms, please visit this awesome Photography glossary with illustrations by Treat.com.

How Do I Set My Hyperfocal Distance # #

This is very easy. Let’s pick up our imaginary Fuji X-Pro1 again. As we know from the previous example we performed for Zone focusing, the X-Pro1 has a 35mm lens. So, all we have to do is load the the Depth of Field Calculator and punch in the following numbers:

Aperture at f11
Lens focal length at 35mm
Subject distance

We get the same results as in the previous example, but now we need to focus on another number. That number is 5.45m and it is the Hyperfocal Distance.

Hyperfocal distance. Image from www.dofmaster.com

That means, that if we focus our camera at 5.45m specifically using the distance meter on the lens (if that is available) or the distance meter on the camera LCD or viewfinder screen (if that is available), we can set our imaginary Fuji X-Pro1 to have everything from 2.725m an onwards in focus, all the way to infinity! This is one of the Street Photographer’s mightiest weapons. It is faster than any AF system in the world and it can be achieved on any old camera. As long as you know your numbers, you are fine!

Quick Tip: How To Set Zone Focus Or Hyperfocal Without A Lens With A Distance Indicator? # #

Zone focusing and Hyperfocal distance are usually used when our lens doesn’t support Auto Focus, something like old manual lenses for example. Old manual glass, has distance indicators on it, making the zone focusing easy to set if you have calculated your numbers. But, what happens if you want to zone focus, using a modern AF lens that doesn’t have distance indicators on it? Some cameras like the Fuji X series cameras have distance information displayed in their OVFs and EVFs. So, all one has to do is to switch to manual and turn the focus ring until the correct distance is selected. There are cameras though that don’t have distance information. How do you overcome that hurdle? Well, quite easily actually. If you need to set your focus distance at 6 feet for example, all you have to do is put your back to a wall and walk 6 feet away. Then turn and focus on that wall and you are set. This isn’t an accurate way of zone focusing, but it works perfectly well, believe me I used to do this all the time with my SONY NEX-6 & SEL20F28 combo. Give it a go!

Conclusion # #

No matter what camera you use, be it a film camera or a digital camera, if your system supports manual focusing you can always take advantage of the ease of use and speed of Zone focusing or the Hyperfocal distance.

What are the benefits of Zone focusing and Hyperfocal distance? # #

First of all you avoid any possible focus hunting that could happen using a Auto Focus camera system.
Secondly because you skip the focusing part altogether, a zone focused or hyperfocal set camera, fires shots much more instantaneously than any AF system.
Last but not least, you can take sharp photos while shooting the street at night using a flash! You just set your zone or your hyperfocal distance, activate your flash and then you just fire and forget! Everything in focus, even in pitch black!

Useful links # #

If you haven’t tried this before, next time you hit the streets give it a try. Below I have copy pasted all the useful links I referred to during my post for your convenience and also some links worth checking out to help you understand Zone focusing even better.

Photography glossary with illustrations by Treat.com .
Depth of Field Calculator by dofmaster.com
Depth of Field Table by dofmaster.com
Zone focusing as explained on Wikipedia
Hyperfocal distance as explained on Wikipedia
A Beginner’s Guide to Aperture and Depth of Field

Stay Sharp & Keep Shooting!

Street Hunter

How To Create Easy and Secure Passwords

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 04 Dec 2020 00:00:00 +0000

The first step to making sure our passwords are their best is to leave the ‘password’ mentality behind. We need to create ‘passphrases’ instead. A passphrase is like a password but longer, using several words together. The longer the passphrase is, the better off we will be. But there is a point of diminishing returns in the length versus security trade-off.

In Edward Snowden’s original email to the journalist he said:

Please confirm that no one has ever had a copy of your private key and that it uses a strong passphrase. Assume your adversary is capable of one trillion guesses per second.

That is a lot of guesses per second! Granted, that journalist most likely had a much larger target than we do on their back, but this is still a great threshold to measure how effective our passphrases are. If we only use a password that is five characters long, even if it is full of symbols, it will be guessed in minutes not days.

We should always assume there is an attacker with enough incentive to run a trillion guesses per second against our accounts. By doing so we raise the unlikeliness of a attack against us succeeding.

Your Password Trick Isn’t Clever #

The majority of people will choose a password from the culture around them. This is often a line from their favor book, song, or movie. Once the quote is selected they then mess around with in by adding capitalization, numbers, and symbols that are easy for them to remember. Let’s take a look at the following password from a classic Shakespearian work.

AllTh3Worlds/ASt4ge

Even though we have more of a passphrase than a password here, there is a high provability that we were not the first to use this passphrase. By using a line from a work of art we place our accounts at more risk than we should. For all we know there is a computer program out there that takes popular phrases and mixes around variations to find a match.

The reason passwords and phrases like the one above are a poor choice is something called entropy. At a basic level and in relation to passwords, entropy is how random a passphrase is in its final state. Unfortunately, we humans love patterns and are extremely terrible at creating randomness.

What if we don’s use a line from culture but instead just pick random words? Even when we do this it is still far from being truly random. This is due to how ingrained our native language has become and all languages are predictable. Our brains love using idioms and rules of grammar, both of which kill entropy.

Secure Passphrase with Dice #

Yes, dice. It is the best way to allow for the randomness of nature to create a ton of entropy. First we need to grab a Diceware Word List off the internet. The one linked in from the Electronic Frontier Foundation and is on optimized version of previous word lists.

These word lists contain 7,776 words or 37 PDF pages of words for your passphrase-making pleasure. Next to each word is a five-digit number each between one and six. Now we need our dice. Real dice are always better than using a program because we can not be one hundred percent certain the program is truly random.

Roll the dice until you have five numbers ranging between one and six. Write down the five numbers as they appear on a piece of paper. The five-digit number that is on the paper corresponds to a word on the list linked above. Congratulations, you have you first random word! Once you are done you will end up with a passphrase that looks like the following.

acorn overstate ferris outlet mosaic laurel

We can then add capitalization, numbers, and symbols as we wish. However, the entropy comes from how many words we generate using the dice and word list. The longer the passphrase the more entropy we gain and the harder our passphrase will be to guess.

How Strong are Dice-Generated Passphrases? #

As mentioned, the strength of any password or phrase is determined by how many words we roll. If we only choose one word from the list, an attacker will have a one in 7,776 chance for guessing our word. The attacker may guess it on the first attempt or the 7,776th attempt with the average number of guesses being 3,888.

So what if we roll our dice for two words? It does not simply double but there are now 77,762 possible combinations increasing the total possible phrases to 60,466,176! On average it will take 30 million tries to guess a two-word passphrase. Bump it up to five words and we get 14 quintilian tries! (That is with the attacker knowing that we used a word list and which one.)

But how long will it take to guess these at one trillion guesses per second as Edward Snowden says we should assume? This is also exponential. If we were to use five words it would take an average of 165 days to crack. At six words it jumps to 3,505 years and seven words puts us at 27,256 millenia!

When to Use the Dice Method? #

I always recommend people use a service like Bitwarden for their online passwords. It will generate a random password for you and no two will be the same. This is very important to keep your accounts safe. There is no need to use a diceware passphrase on each site you sign up for since that would require us to memorize too many six- or seven-word strings.

The reason for this is because after we submit our password to a site it has to connect to a server and send back the results. It is not possible for an attacker to send a trillion requests to a web-sever without clogging its network. We are more likely to have our passwords stolen by a fake version of our favorite site. In that event, no level of entropy will help.

However, we must use a diceware passphrase for our Bitwarden master password and nowhere else! Every time we use the same passphrase on a different site we increase the chance of it getting stolen. This, in turn, kills the entropy we created with our dice.

Remember #

Never use the same password on more than one site.
Use a service like Bitwarden to create unique passwords for websites.
Create other passwords using dice and the word list.
Use at least six words in the diceware passphrase.
Add capitalization, symbols, and numbers as you wish.

JRSwab

Study Less Study Smart

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Thu, 19 Nov 2020 00:00:00 +0000

Marty Lobdell - Study Less Study Smart

In brief:

30 min study sessions with 5 min breaks
no music except certain study music
special desk/ room for studying/working
learn concepts before facts (be able to explain things in your own words)
take notes
teach another person
use mnemonics
for textbooks: – feel free to move to different chapters- it’s not a novel

– for each chapter: see images, main points and questions

– write down questions in the book

– read bold words, titles, names, main ideas and marked text

– read first and last sentence of each paragraph

– read the whole book

– try to answer questions

– reread the book and answer questions you couldn’t before

– reread with a marker and pencil

– answer questions, come up with your own for the main topics

– write an essay for topics that a child could understand

Run a local server to share files

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Wed, 18 Nov 2020 00:00:00 +0000

Do not run this command in your home folder.

mkdir -p /tmp/shared/

cd /tmp/shared/

echo “Hello world” > WELCOME.txt

If using Python 2.x #

python -m SimpleHTTPServer

Python 3.x #

python3 -m http.server

This will listen on port 8000 by default.

90 Linux Commands frequently used by Linux Sysadmins

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sat, 31 Oct 2020 00:00:00 +0000

ip – from Iproute2, a collection of utilities for controlling TCP/IP networking and traffic control in Linux.
ls – list directory contents.
df – display disk space usage.
du – estimate file space usage.
free – display memory usage.
scp – securely Copy Files Using SCP, with examples.
find – locates files based on some user-specified criteria.
ncdu – a disk utility for Unix systems.
pstree – display a tree of processes.
last – show a listing of last logged in users.
w – show a list of currently logged in user sessions.
grep – Search a file for a pattern of characters, then display all matching lines.
uptime – shows system uptime and load average.
top – shows an overall system view.
vmstat – shows system memory, processes, interrupts, paging, block I/O, and CPU info.
htop – interactive process viewer and manager.
dstat – view processes, memory, paging, I/O, CPU, etc., in real-time. All-in-one for vmstat, iostat, netstat, and ifstat.
iftop – network traffic viewer.
nethogs – network traffic analyzer.
iotop – interactive I/O viewer. Get an overview of storage r/w activity.
iostat – for storage I/O statistics.
netstat – for network statistics.
ss – utility to investigate sockets.
atop – For Linux server performance analysis.
Glances and nmon – htop and top Alternatives:
ssh – secure command-line access to remote Linux systems.
sudo – execute commands with administrative privilege.
cd – directory navigation.
pwd – shows your current directory location.
cp – copying files and folders.
mv – moving files and folders.
rm – removing files and folders.
mkdir – create or make new directories.
touch – used to update the access date and/or modification date of a computer file or directory.
man – for reading system reference manuals.
apropos – Search man page names and descriptions.
rsync – remote file transfers and syncing.
tar – an archiving utility.
gzip – file compression and decompression.
b2zip – similar to gzip. It uses a different compression algorithm.
zip – for packaging and compressing (to archive) files.
locate – search files in Linux.
ps – information about the currently running processes.
Making use of Bash scripts. Example: ./bashscript.sh
cron – set up scheduled tasks to run.
nmcli – network management.
ping – send ICMP ECHO_REQUEST to network hosts.
traceroute – check the route packets take to a specified host.
mtr – network diagnostic tool.
nslookup – query Internet name servers (NS) interactively.
host – perform DNS lookups in Linux.
dig – DNS lookup utility.
wget – retrieve files over HTTP, HTTPS, FTP, and FTPS.
curl – transferring data using various network protocols. (supports more protocols than wget)
dd – convert and copy files.
fdisk – manipulate the disk partition table.
parted – for creating and manipulating partition tables.
blkid – command-line utility to locate/print block device attributes.
mkfs – build a Linux file system.
fsck – tool for checking the consistency of a file system.
whois – client for the whois directory service.
nc – command-line networking utility. (Also, see 60 Linux Networking commands and scripts.)
umask – set file mode creation mask.
chmod – change the access permissions of file system objects.
chown – change file owner and group.
chroot – run command or interactive shell with a special root directory.
useradd – create a new user or update default new user information.
userdel – used to delete a user account and all related files.
usermod – used to modify or change any attributes of an existing user account.
vi – text editor.
cat – display file contents.
tac – output file contents, in reverse.
more – display file contents one screen/page at a time.
less – similar to the more command with additional features.
tail – used to display the tail end of a text file or piped data.
dmesg – prints the message buffer of the kernel ring.
journalctl – query the systemd journal.
kill – terminate a process.
killall – Sends a kill signal to all instances of a process by name.
sleep – suspends program execution for a specified time.
wait – Suspend script execution until all jobs running in the background have been terminated.
nohup – Run Commands in the Background.
screen – hold a session open on a remote server. (also a full-screen window manager)
tmux – a terminal multiplexer.
passwd – change a user’s password.
chpassword –
mount / umount – provides access to an entire filesystem in one directory.
systemctl – Managing Services (Daemons).
clear – clears the screen of the terminal.
env -Run a command in a modified environment.
cheat – allows you to create and view interactive cheatsheets on the command-line.”
tldr – Collaborative cheatsheets for console commands.
bashtop – the ‘cool’ top alternative.
bpytop – Python port of bashtop.

The Filesystem Hierarchy Standard

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Wed, 21 Oct 2020 00:00:00 +0000

As with other Linux distributions, Kali Linux is organized to be consistent with the Filesystem Hierarchy Standard (FHS), allowing users of other Linux distributions to easily find their way around Kali. The FHS defines the purpose of each directory. The top-level directories are described as follows:

/bin/: basic programs
/boot/: Kali Linux kernel and other files required for its early boot process
/dev/: device files
/etc/: configuration files
/home/: user’s personal files
/lib/: basic libraries
/media/*: mount points for removable devices (CD-ROM, USB keys, and so on)
/mnt/: temporary mount point
/opt/: extra applications provided by third parties
/root/: administrator’s (root’s) personal files
/run/: volatile runtime data that does not persist across reboots (not yet included in the FHS)
/sbin/: system programs
/srv/: data used by servers hosted on this system
/tmp/: temporary files (this directory is often emptied at boot)
/usr/: applications (this directory is further subdivided into bin, sbin, lib according to the same logic as in the root directory) Furthermore, /usr/share/ contains architectureindependent data. The /usr/local/ directory is meant to be used by the administrator for installing applications manually without overwriting files handled by the packaging system (dpkg).
/var/: variable data handled by daemons. This includes log files, queues, spools, and caches.
/proc/ and /sys/ are specific to the Linux kernel (and not part of the FHS). They are used by the kernel for exporting data to user space

Useful commands

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Wed, 21 Oct 2020 00:00:00 +0000

Displaying and Modifying Text Files #

The cat file command (intended to concatenate files to the standard output device) reads a file and displays its contents on the terminal. If the file is too big to fit on a screen, you can use a pager such as less (or more) to display it page by page. The editor command starts a text editor (such as Vi or Nano) and allows creating, modifying, and reading text files. The simplest files can sometimes be created directly from the command interpreter thanks to redirection:command>file creates a file named file containing the output of the given command.command»file is similar except that it appends the output of the command to the file rather than overwriting it.

$echo ”Kali rules!” > kali-rules.txt
$cat kali-rules.txt
Kali rules!
$echo ”Kali is the best!” >> kali-rules.txt
$cat kali-rules.txt
Kali rules!
Kali is the best!

Searching for Files and within Files #

The find directory criteria command searches for files in the hierarchy under directory ac-cording to several criteria. The most commonly used criterion is -name filename, which allows searching for a file by name. You can also use common wildcards such as “*” in the file namesearch.

$find /etc -name hosts
/etc/hosts
/etc/avahi/hosts
$find /etc -name ”hosts*”
/etc/hosts
/etc/hosts.allow
/etc/hosts.deny
/etc/avahi/hosts

The grep expression files command searches the contents of the files and extracts lines matching the regular expression. Adding the -r option enables a recursive search on all files contained in the directory. This allows you to look for a file when you only know a part of its contents.

Managing Processes #

The ps aux command lists the processes currently running and helps to identify them by showing their PID. Once you know the PID of a process, the kill -signal pid command allows you to send it a signal (if you own the process). Several signals exist; most commonly used are TERM(a request to terminate gracefully) and KILL(a forced kill).

The command interpreter can also run programs in the background if the command is followed by “&”. By using the ampersand, you resume control of the shell immediately even though the command is still running (hidden from view as a background process). The jobs command lists the processes running in the background; running fg %job-number(for foreground) restores a job to the foreground. When a command is running in the foreground (either because it was started normally, or brought back to the foreground with fg), the Control+Z key combination pauses the process and resumes control of the command line. The process can then be restarted in the background with bg %job-number(for background).

Managing Rights #

Linux is a multi-user system so it is necessary to provide a permissions system to control the set of authorized operations on files and directories, which includes all the system resources and devices(on a Unix system, any device is represented by a file or directory). This principle is common to all Unix-like systems.Each file or directory has specific permissions for three categories of users:

Its owner (symbolized by u, as in user)
ts owner group (symbolized by g, as in group), representing all the members of the group.
The others (symbolized by o, as in other).

Three types of rights can be combined:

reading (symbolized by r, as in read);
writing (or modifying, symbolized byw, as in write);
executing (symbolized by x, as in eXecute).

In the case of a file, these rights are easily understood: read access allows reading the content(including copying), write access allows changing it, and execute access allows running it (which will only work if it is a program).

Two particular rights are relevant to executable files:setuid and setgid (symbolized with the letter “s”).Note that we frequently speak of bit, since each of these boolean values can be represented by a 0 or a 1. These two rights allow any user to execute the program with the rights of the owner or the group, respectively.This mechanism grants access to features requiring higher level permissions than those you would usually have. Since a setuid root program is systematically run under the super-user identity, it is very important to ensure it is secure and reliable. Any user who manages to subvert a setuid root program to call a command of their choice could then impersonate the root user and have all rights on the system. Penetration testers regularly search for these types of files when they gain access to a system as a way of escalating their privileges.

A directory is handled differently from a file. Read access gives the right to consult the list of its contents (files and directories); write access allows creating or deleting files; and execute access allows crossing through the directory to access its contents (for example, with the cd command).Being able to cross through a directory without being able to read it gives the user permission to access the entries therein that are known by name, but not to find them without knowing their exact name.

Thes etgid bit also applies to directories. Any newly-created item in such directories is automatically assigned the owner group of the parent directory, instead of inheriting the creator’s main group as usual. Because of this, you don’t have to change your main group (with the new grp command) when working in a file tree shared between several users of the same dedicated group.The sticky bit(symbolized by the letter “t”) is a permission that is only useful in directories. It is especially used for temporary directories where everybody has write access (such as/tmp/): it restricts deletion of files so that only their owner or the owner of the parent directory can delete them. Lacking this, everyone could delete other users’ files in/tmp/.

Three commands control the permissions associated with a file:

chownuser filechanges the owner of the file

Frequently you want to change the group of a file at the same time that you change the owner. The chown command has a special syntax for that: chown user:group file
chgrp group file alters the owner group
chmod rights file changes the permissions for the file

There are two ways of representing rights. Among them, the symbolic representation is probably the easiest to understand and remember. It involves the letter symbols mentioned above. You can define rights for each category of users (u/g/o), by setting them explicitly (with=), by adding (+), or subtracting (-). Thus the u=rwx, g+rw, o-r formula gives the owner read, write, and execute rights, adds read and write rights for the owner group, and removes read rights for other users.Rights not altered by the addition or subtraction in such a command remain unmodified. The letter a, for all, covers all three categories of users, so that a=rx grants all three categories the same rights (read and execute, but not write).The (octal) numeric representation associates each right with a value: 4 for read, 2 for write, and1 for execute. We associate each combination of rights with the sum of the three figures, and a value is assigned to each category of users, in the usual order (owner, group, others). For instance, the chmod 754 filecommand will set the following rights: read, write and execute for the owner (since 7 = 4 + 2 + 1); read and execute for the group (since 5 = 4 + 1); read-only for others. The 0 means no rights; thus chmod 600 file allows for read and write permissions for the owner, and no rights for anyone else. The most frequent right combinations are 755 for executable files and directories, and 644 for data files.To represent special rights, you can prefix a fourth digit to this number according to the same principle, where these tuid, setgid, and sticky bits are 4, 2, and 1, respectively. The command chmod 4754 will associate these tuidbit with the previously described rights. Note that the use of octal notation only allows you to set all the rights at once on a file; you cannot use it to add a new right, such as read access for the group owner, since you must take into account the existing rights and compute the new corresponding numerical value.The octal representation is also used with the umask command, which is used to restrict permissions on newly created files. When an application creates a file, it assigns indicative permissions,knowing that the system automatically removes the rights defined with umask. Enter umask in a shell; you will see a mask such as0022. This is simply an octal representation of the rights to be systematically removed (in this case, the write rights for the group and other users).If you give it a new octal value, the umask command modifies the mask. Used in a shell initialization file (for example,~/.bash_profile), it will effectively change the default mask for your work sessions.

Sometimes we have to change rights for an entire file tree. All the commands above have a-R option to operate recursively in sub-directories.The distinction between directories and files sometimes causes problems with recursive operations. That is why the “X” letter has been introduced in the symbolic representation of rights. It represents a right to execute which applies only to directories(and not to files lacking this right). Thus,chmod -R a+X directory will only add execute rights for all categories of users (a) for all of the sub-directories and files for which at least one category of user (even if their sole owner) already has execute rights.

Disable MItigation #

Add this to your /etc/default/grub under line GRUB_CMDLINE_LINUX="rhgb quiet":

GRUB_CMDLINE_LINUX="rhgb quiet mitigations=off"

How to block Windows 10 telemetry using “hosts” file

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 18 Oct 2020 00:00:00 +0000

Since Windows 8, Microsoft has moved to a new commercial strategy: in addition with traditional selling of OS licenses, started got revenues from searches, apps and games.
But to do this, MS has started the collection of “telemetry” data, considered by many users as privacy-relevant.

What is Windows 10 telemetry? #

According with a ZDNet article: Windows 10 telemetry secrets: Where, when, and why Microsoft collects your data | ZDNet :

Microsoft defines telemetry as “system data that is uploaded by the Connected User Experience and Telemetry component,” also known as the Universal Telemetry Client, or UTC service. (More on that shortly.)
Microsoft uses telemetry data from Windows 10 to identify security and reliability issues, to analyze and fix software problems, to help improve the quality of Windows and related services, and to make design decisions for future releases.
Telemetry features aren’t unique to Microsoft and there’s nothing particularly secret about them. They’re part of a larger trend in the software industry to collect and analyze event data as part of a shift to data-driven decision making.

To the delight of privacy conscious users, there are a lot of tutorials: Disable Telemetry in Windows 10 – WebSetNet and suggestions focused on avoid (or rather, reduce) the gathering of informations collected from Windows 10, using tools like PeerBlock , personal firewalls, network devices (like a Pi-hole ).

In my opinion, a good trade-off may be a simple change on the “hosts” file.

What is “hosts” file? #

The hosts file is used to map hostnames to IP addresses, and its data overrides the results of DNS queries.
It’s a plain text file, located in the Windows folder, at the following path:

C:\Windows\System32\drivers\etc

A customized hosts file #

Usually i use a custom hosts file created by ETP : the file was realized analyzing with wireshark a dump of outgoing traffic of a brand-new Windows 10 installation.

Obviously, this is not a final solution.
According with ETP’s notes:

You should also be aware: this hosts file will block certain functions and services like Bing search, Cortana and One Cloud. Windows updates will still be able to download.
Windows 10 does communicate directly to IP addresses which bypass the hosts file. You would also have to block Microsoft’s IP addresses Windows 10 communicates with.

How to install the custom file? #

Just four simple steps:

Open this link , and copy the whole text
Start (with administrative rights) a Notepad (but Notepad++ is better) and open the hosts file in C:\Windows\System32\drivers\etc\hosts.
Replace the original hosts content with the text copied at step 1
Save the file and restart your system.

Simple Password Generator

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 04 Sep 2020 00:00:00 +0000

#!/bin/bash

#Simple Password Generator

echo “This is a simple password generator” echo “Please enter the length of the password: " read PASS_LENGTH

for p in $(seq 1 5); do openssl rand -base64 48 | cut -c1-$PASS_LENGTH

done

»»

How to Easily Host a Website on IPFS

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 03 Jul 2020 00:00:00 +0000

A step by step guide to easily host Angular, ReactJS, or VueJS apps on IPFS using Cloudflare and Pinata #

Cloudflare and Pinata are teaming up to bring you a blog post surrounding website hosting on the InterPlanetary File System (IPFS)!

Cloudflare has been operating an IPFS gateway since last year and has seen amazing usage and feedback from the decentralized web community. In addition to the IPFS gateway, Cloudflare also has hassle-free SSL certificates for you while hosting websites on IPFS using the gateway.

Pinata is the easiest way to use IPFS by providing fast and reliable infrastructure and tools to store content on the IPFS ecosystem.

This post will dive into how you can host a website on IPFS and how to keep it online using a combination of Cloudflare and Pinata.

But, before jumping straight to the tutorial, it’s important to understand what’s happening behind the scenes when people talk about hosting a website on IPFS.

How Does Hosting a Website on IPFS Work? #

Hosting a website on IPFS requires two things:

A source node that has the website pinned on IPFS.
A retrieval node for you to retrieve the website from IPFS. For most people, this often takes the form of an IPFS gateway .

Source Nodes #

A source node is where content is initially added to and made available to the rest of the IPFS network. As other nodes begin requesting the desired content, the source node is where they will initially retrieve it from.

Gateway Nodes #

In order to retrieve desired content from the IPFS network, you need to have access to an IPFS node. This node will provide the IPFS network with the cryptographic hash of the content it wants and the IPFS network will find a node with a copy of the content to provide back to the retrieval node.

While this retrieval node could be one running locally on your computer, for many of you, a retrieval node will take the form of an IPFS gateway. Gateways are essentially IPFS nodes that allow you to retrieve content from IPFS without hosting an IPFS node yourself. IPFS gateways do this by allowing anyone to retrieve content from IPFS by using a link typically formatted like this:

https://gateway.pinata.cloud/ipfs/QmWcLKHWqrRB95zQnb4vX8RRgoGsVm5YAUHyZyiAw4mCMQ/

The “QmWcLKHWqrRB95zQnb4vX8RRgoGsVm5YAUHyZyiAw4mCMQ” part of the link above is the Content-Identifier (CID) that’s being asked for. It’s important to realize that you could retrieve that same content by visiting any public gateway, not just one run by Pinata . For example, try retrieving that CID at the following public gateways:

Notice how you retrieve the same content from each gateway? That’s because the CID provided to each gateway was the same. When you visited each gateway, it searched the IPFS network until it found the content for the CID “QmWcLKHWqrRB95zQnb4vX8RRgoGsVm5YAUHyZyiAw4mCMQ”. Once that content was found, the gateway provided it back to you in your web browser.

Make sense? Awesome! Now that you’ve learned a little bit about what’s going on behind the scenes, let’s get to the tutorial!

How to Prepare Your Website for IPFS #

Hosting a website on IPFS is slightly different than hosting it on a web server out in the cloud. Your website may require a little bit of tweaking in order to properly be served on the IPFS network.

The important rules are:

All of the content for your website must be contained in one build folder, with an index.html file.
All links within your files should be relative links.

If you’re working with a javascript framework, things can be a little trickier. Here’s how you get three popular frameworks, Angular , ReactJS , and VueJS , working with IPFS.

Angular: #

For the purposes of this tutorial, it’s assumed that you have a working Angular app. If you do not, check out the Angular Quick Start Guide for more info.

To prepare your Angular app, open up your application’s index.html in the src folder of your app. In the index.html, change the tag to:

Once you’ve made this change, build your app by running the following in the root of your project directory:

ng build –prod –aot

You should now have an updated IPFS compatible build in the “dist” folder of your Angular app.

Here’s an example of an IPFS compatible Angular app:

ReactJS: #

For the purposes of this tutorial, it’s assumed that you already have a working React app. If you don’t, you can easily create one with Create-React-App .

In the root directory of your React application, open up the package.json file and add the following entry to the top of the file:

“homepage”: “./”,

Once you’ve made this change, build your app by running the following in the root of your project directory:

npm run build

You should now have an updated IPFS compatible build in the “build” folder of your React app.

Here’s an example of an IPFS compatible React App

VueJS: #

For the purposes of this tutorial, it’s assumed that you already have a working Vue app. If you don’t, you can easily create one with Vue CLI .

In the root directory of your Vue application, create a file called “vue.config.js”. In this file put the following:

module.exports = {
publicPath: ‘./’
};

Once you’ve made this change, build your app by running the following in the root of your project directory:

npm run build

You should now have an updated IPFS compatible build in the “dist” folder of your Vue app.

Here’s an example of an IPFS compatible Vue App

Adding the Website to IPFS #

Now that you have our website prepared, you can move to the fun part. Hosting the website on IPFS.

When hosting on IPFS, it’s important to keep in mind that IPFS isn’t a magical cloud that will store your data forever. In order for content to be reachable by other nodes on IPFS, a node with that content needs to be connected to other nodes on the network.

This means that when hosting your website on IPFS, you need to make sure whatever node you’re hosting your content on should be online at all times. For this, you have two options:

The Easy Way #

For those of you who aren’t looking to maintain your own dedicated server to run an IPFS node, Pinata provides an easy alternative. If you haven’t signed up for an account, you can do so for free at: https://pinata.cloud/signup .

Once you have an account, visit the Pinata Upload page and go to “Upload Directory”. From here, simply browse your local machine for the directory containing your website’s build and click “Upload”.

Once the upload is finished, visit the Pin Explorer . You should see the record for your website at the top of the list.

Go ahead and take note of the “IPFS Hash” and move on to the next step!

The Hard Way #

Self-hosting a node on a cloud provider is a good option if you are looking to do everything yourself. If you are looking to go down this path, you can read our guide for the full setup process: How to Deploy an IPFS Node on Digital Ocean .

Once you have the node up and running, you’ll need to transfer your website’s build directory to the remote machine hosting your node. You can do this using SCP by running the following command on your local machine in the directory that contains your websites build folder:

scp -r yourBuildFolder username@remoteAddress:pathOnRemoteMachine

From here, you can add the folder to IPFS by running the following command on the remote machine hosting your IPFS node:

ipfs add -r /path/to/directory-with-your-website

Look for the last hash that is output. This will be your website’s hash on IPFS.

If this worked, congratulations, you can now move on to the next step!

Double-Check That Your Website Works on IPFS #

Before you do anything else, double-check that your website works correctly on IPFS. To do so, visit: https://gateway.pinata.cloud/ipfs/yourWebsiteHash to confirm the website loads correctly.

If you receive what looks like a file explorer by visiting your hash on a gateway, it’s likely that your application has some custom code that will need to be tweaked in order to work with IPFS.

Improve Your Website with a Domain and Cloudflare #

At this point in the guide, you should be able to reach your website by visiting a gateway like so:

https://gateway.pinata.cloud/ipfs/yourWebsiteHash

But, IPFS hashes aren’t very human readable and chances are you don’t want to type out something like, https://gateway.pinata.cloud/ipfs/QmWcLKHWqrRB95zQnb4vX8RRgoGsVm5YAUHyZyiAw4mCMQ/ , every time you visit your website. So, what can you do to make this better?

You can put your website behind a domain name! Go ahead and buy one real quick. Got one? Great! Now that you have your very own domain name, let’s learn what’s needed to put your IPFS website behind it.

Cloudflare as a Gateway Provider #

To put a website hosted on IPFS behind a domain name, you need an IPFS gateway. For this guide we’re going to use Cloudflare as a service provider to put our website behind a domain name.

Cloudflare currently provides a dedicated IPFS gateway service as part of its platform. What makes Cloudflare’s gateway different, is its ability to leverage Cloudflare’s global network of 150+ data centers as a caching layer. This means that content cached on Cloudflare’s gateway will resolve quickly no matter where you are in the world.

Another benefit that Cloudflare’s provides is the ability to put your website behind HTTPS in a super easy way. If you are new to website hosting, this means that your user’s traffic will be encrypted between their computer and Cloudflare’s gateway. As a result, browsers will treat your website as more secure and you’ll even get a bump in search engine’s like google as your website is deemed safer for users to visit.

Setting Up Your DNS Records to Point to Cloudflare #

To hook your domain name up to Cloudflare and point it to your IPFS website, the following steps need to be taken:

Go to where you purchased your domain name. There should be an area to manage “DNS records” for your domain name.
Edit the records so that you have two entries:

A CNAME record for your your.domain with a value of [www.cloudflare-ipfs.com](http://www.cloudflare-ipfs.com/)
A TXT record for _dnslink.your.domain with a value of dnslink=/ipfs/yourWebsiteHash

Securing Your Website with Cloudflare #

Now that your DNS records are pointing to Cloudflare’s gateway, you should be able to view your website by going to your.domain . But there’s one more step you should take before finishing up and that’s applying a free SSL certificate to your website.

Cloudflare makes this super easy. All you have to do is go to https://www.cloudflare.com/distributed-web-gateway/ and scroll to the bottom of the page to where you should see this:

Once you’re there, simply enter in the domain name for your website and hit “Submit”. If you see a message saying “Certificate is live”, congratulations, you’re finished!

As an example of a finished website, check out https://deploypinata.com/

Troubleshooting #

Here’s a few common issues you may run into and how to solve them

Gateway Fails to Find Your Website on IPFS #

The IPFS network is getting bigger and bigger every day. Sometimes, it can take awhile to find content. If a particular gateway is unable to retrieve your website, there’s a good chance it’s being overloaded from too many people requesting content at once. Try waiting awhile before attempting to retrieve your content on that gateway again.

You Received “Error: Failed to build request to hostname.” When Submitting Your Domain to Cloudflare for the SSL Cert. #

If you receive this message after you submit your domain name to Cloudflare, double check and make sure that you’re only submitting your.domain into the text field. Inputs such as http://your.domain or your.domain/ won’t work. For example our example website, https://deploypinata.com/ , needed to be entered in as deploypinata.com .

You Received “Certificate is live” but the HTTPS Version of Your Website Isn’t Working #

Sometimes these things can take a little bit of time to propagate. Give it about an hour before contacting Cloudflare.

Google Dorks Scanner Tool

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 08 May 2020 00:00:00 +0000

Let’s use a easy-handy tool for pentesting a website and getting the required information in one key-press.

Supports Linux Distributions only.
Because its written in Shell Code, it runs even in Termux!!!

Step #1 Clone ‘ Fast-Google-Dorks-Scan ’ Repository and Change Directory (cd) to Fast-Google-Dorks-Scan

$ git clone https://github.com/IvanGlinkin/Fast-Google-Dorks-Scan.git $ cd Fast-Google-Dorks-Scan $ ls

Step #2 Set executable permissions ( +x or 777 ) to the FGDS.sh file to make the google dorks finder runnable by system.

$ chmod +x FGDS.sh

Step #3 Run the executable with website name with domain or also subdomain of which website you want to find google dorks of.

$ ./FGDS.sh ethicalhackx.com

Optional Step: If you want to save the google dorks report into a text file then run with the following command.

$ ./FGDS.sh ethicalhackx.com > ethicalhackx_report.txt

Start a web server in terminal

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 08 Mar 2020 00:00:00 +0000

I’ve searched for this three times this week, so I figured I’d better make sure I have a copy of it.

Python 2:

python -m SimpleHTTPServer 8000

Navigate to the project directory in the terminal and do that command. Then http://localhost:8000 will server up that directory (as in, it’s index.html file).

Python 3:

python3 -m http.server 8080

PHP:

php -S localhost:2222

npm:

npm i -g serve serve

About Secure Hashing Algorithm

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 09 Feb 2020 00:00:00 +0000

How change LUKS encryption

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sat, 08 Feb 2020 00:00:00 +0000

Changing the Passphrase:

sudo cryptsetup luksChangeKey /dev/sdX

LUKs Drives With Multiple Passphrases:

LUKS Drives can actually have multiple passphrases or key files associated with them, up to eight. To start, take a look at your drive and see how many keys it has. Chances are, you’ll only see key slot 0 occupied. That’s the first one.

sudo cryptsetup luksDump /dev/sdX | grep -i key

If you have free slots open, you can always add another passphrase to your drive. Run the following command, and a new key will be appended in the first free slot.

sudo cryptsetup luksAddKey /dev/sdX

When you’re managing multiple keys on the same drive, you’re going to need the ability to target specific ones. Once again, you can do that pretty simply with the -S flag. Just add the slot number after to pick a key to alter.

sudo cryptsetup luksChangeKey /dev/sdX -S 2

Removing a Passphrase

sudo cryptsetup luksRemoveKey /dev/sdX

In case you’d prefer to specify it yourself, you can use the KillSlot command to remove the key in a certain slot. Just include the slot number after the drive, and that’s the one that’ll be removed.

sudo cryptsetup luksKillSlot /dev/sdX 2

Vimium shortcuts

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Thu, 06 Feb 2020 00:00:00 +0000

Vimium is a Chrome extension that provides keyboard-based navigation and control of the web in the spirit of the Vim editor.

Keyboard Bindings #

Modifier keys are specified as c-x, m-x, and a-x for ctrl+x, meta+x, and alt+x respectively. See the next section for how to customize these bindings.

Once you have Vimium installed, you can see this list of key bindings at any time by typing ?.

Navigating the current page:


? show the help dialog for a list of all available keys
h scroll left
j scroll down
k scroll up
l scroll right
gg scroll to top of the page
G scroll to bottom of the page
d scroll down half a page
u scroll up half a page
f open a link in the current tab
F open a link in a new tab
r reload
gs view source
i enter insert mode -- all commands will be ignored until you hit Esc to exit
yy copy the current url to the clipboard
yf copy a link url to the clipboard
gf cycle forward to the next frame
gF focus the main/top frame

Navigating to new pages:

o Open URL, bookmark, or history entry
O Open URL, bookmark, history entry in a new tab
b Open bookmark
B Open bookmark in a new tab

Using find:

/ enter find mode
-- type your search query and hit enter to search, or Esc to cancel
n cycle forward to the next find match
N cycle backward to the previous find match

For advanced usage, see regular expressions on the wiki.

Navigating your history:

H go back in history
L go forward in history

Manipulating tabs:

J, gT go one tab left
K, gt go one tab right
g0 go to the first tab
g$ go to the last tab
^ visit the previously-visited tab
t create tab
yt duplicate current tab
x close current tab
X restore closed tab (i.e. unwind the 'x' command)
T search through your open tabs
<a-p> pin/unpin current tab

Using marks:

ma, mA set local mark "a" (global mark "A")
`a, `A jump to local mark "a" (global mark "A")
`` jump back to the position before the previous jump
-- that is, before the previous gg, G, n, N, / or `a

Additional advanced browsing commands:

]], [[ Follow the link labeled 'next' or '>' ('previous' or '<')
- helpful for browsing paginated sites
<a-f> open multiple links in a new tab
gi focus the first (or n-th) text input box on the page
gu go up one level in the URL hierarchy
gU go up to root of the URL hierarchy
zH scroll all the way left
zL scroll all the way right
v enter visual mode; use p/P to paste-and-go, use y to yank
V enter visual line mode

Vimium supports command repetition so, for example, hitting 5t will open 5 tabs in rapid succession. Esc or <c-[>) will clear any partial commands in the queue and will also exit insert and find modes.

There are some advanced commands which aren’t documented here; refer to the help dialog (type ?) for a full list.

Custom Key Mappings

You may remap or unmap any of the default key bindings in the “Custom key mappings” on the options page.

Enter one of the following key mapping commands per line:

map key command: Maps a key to a Vimium command. Overrides Chrome’s default behavior (if any).
unmap key: Unmaps a key and restores Chrome’s default behavior (if any).
unmapAll: Unmaps all bindings. This is useful if you want to completely wipe Vimium’s defaults and start from scratch with your own setup.

Examples:

map scrollPageDown maps ctrl+d to scrolling the page down. Chrome’s default behavior of bringing up a bookmark dialog is suppressed.
map r reload maps the r key to reloading the page.
unmap removes any mapping for ctrl+d and restores Chrome’s default behavior.
unmap r removes any mapping for the r key.

Available Vimium commands can be found via the “Show available commands” link near the key mapping box on the options page. The command name appears to the right of the description in parenthesis.

You can add comments to key mappings by starting a line with " or #.

The following special keys are available for mapping:

<c->, <a->, <m-*> for ctrl, alt, and meta (command on Mac) respectively with any key. Replace * with the key of choice.
left, right, up, down for the arrow keys
space for the space key
f1 through f12 for the function keys Shifts are automatically detected so, for example, c-& corresponds to ctrl+shift+7 on an English keyboard.

Vimium - yourbay

Encryption and HUGE numbers

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Mon, 03 Feb 2020 00:00:00 +0000

Hacking tools list

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Fri, 31 Jan 2020 00:00:00 +0000

Penetration Testing & Hacking Tools List #

Online Resources – Hacking Tools #

Penetration Testing Resources #

Penetration Testing Execution Standard (PTES) – Documentation designed to provide a common language and scope for performing and reporting the results of a penetration test.
Open Web Application Security Project (OWASP) – Worldwide not-for-profit charitable organization focused on improving the security of especially Web-based and Application-layer software.
PENTEST-WIKI – Free online security knowledge library for pentesters and researchers.
Penetration Testing Framework (PTF) – Outline for performing penetration tests compiled as a general framework usable by vulnerability analysts and penetration testers alike.
XSS-Payloads – Ultimate resource for all things cross-site including payloads, tools, games and documentation.
Open Source Security Testing Methodology Manual (OSSTMM) – Framework for providing test cases that result in verified facts on which to base decisions that impact an organization’s security.
MITRE’s Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) – Curated knowledge base and model for cyber adversary behavior.

Exploit Development #

Shellcode Tutorial – Tutorial on how to write shellcode.
Shellcode Examples – Shellcodes database.
Exploit Writing Tutorials – Tutorials on how to develop exploits.

OSINT Resources #

OSINT Framework – Collection of various OSINT Hacking Tools broken out by category.
Intel Techniques – Collection of OSINT tools. Menu on the left can be used to navigate through the categories.
NetBootcamp OSINT Tools – Collection of OSINT links and custom Web interfaces to other services such as Facebook Graph Search and various paste sites .
WiGLE.net – Information about wireless networks world-wide, with user-friendly desktop and web applications.

Social Engineering Framework – Information resource for social engineers.

Lock Picking Resources #

Schuyler Towne channel – Lockpicking videos and security talks.
bosnianbill – More lockpicking videos.
/r/lockpicking – Resources for learning lockpicking, equipment recommendations.

Operating Systems #

Security related Operating Systems @ Rawsec – Penetration testing tools & Hacking Tools list Related Complete list of security operating systems.
Best Linux Penetration Testing Distributions @ CyberPunk – Description of main penetration testing distributions.
Security @ Distrowatch – Website dedicated to talking about, reviewing, and keeping up to date with open source operating systems.
cuckoo – Open source automated malware analysis system.
Computer Aided Investigative Environment (CAINE) – Italian GNU/Linux live distribution created as a digital forensics project.
Digital Evidence & Forensics Toolkit (DEFT) – Live CD for forensic analysis runnable without tampering or corrupting connected devices where the boot process takes place.
Tails – Live OS aimed at preserving privacy and anonymity.

Hacking Tools #

Penetration Testing Distributions #

Kali – GNU/Linux distribution designed for digital forensics and penetration testing Hacking Tools
ArchStrike – Arch GNU/Linux repository for security professionals and enthusiasts.
BlackArch – Arch GNU/Linux-based distribution with best Hacking Tools for penetration testers and security researchers.
Network Security Toolkit (NST) – Fedora-based bootable live operating system designed to provide easy access to best-of-breed open source network security applications.
Pentoo – Security-focused live CD based on Gentoo.
BackBox – Ubuntu-based distribution for penetration tests and security assessments.
Parrot – Distribution similar to Kali, with multiple architectures with 100 of Hacking Tools.
Buscador – GNU/Linux virtual machine that is pre-configured for online investigators.
Fedora Security Lab – Provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies.
The Pentesters Framework – Distro organized around the Penetration Testing Execution Standard (PTES), providing a curated collection of utilities that eliminates often unused toolchains.
AttifyOS – GNU/Linux distribution focused on tools useful during Internet of Things (IoT) security assessments.

Docker for Penetration Testing #

docker pull kalilinux/kali-linux-docker official Kali Linux
docker pull owasp/zap2docker-stable – official OWASP ZAP
docker pull wpscanteam/wpscan – official WPScan
docker pull citizenstig/dvwa – Damn Vulnerable Web Application (DVWA)
docker pull wpscanteam/vulnerablewordpress – Vulnerable WordPress Installation
docker pull hmlio/vaas-cve-2014-6271 – Vulnerability as a service: Shellshock
docker pull hmlio/vaas-cve-2014-0160 – Vulnerability as a service: Heartbleed
docker pull opendns/security-ninjas – Security Ninjas
docker pull diogomonica/docker-bench-security – Docker Bench for Security
docker pull ismisepaul/securityshepherd – OWASP Security Shepherd
docker pull danmx/docker-owasp-webgoat – OWASP WebGoat Project docker image
docker-compose build && docker-compose up – OWASP NodeGoat
docker pull citizenstig/nowasp – OWASP Mutillidae II Web Pen-Test Practice Application
docker pull bkimminich/juice-shop – OWASP Juice Shop
docker pull kalilinux/kali-linux-docker – Kali Linux Docker Image
docker pull phocean/msf – docker-metasploit

Multi-paradigm Frameworks #

Metasploit – post exploitaion Hacking Tools for offensive security teams to help verify vulnerabilities and manage security assessments.
Armitage – Java-based GUI front-end for the Metasploit Framework.
Faraday – Multiuser integrated pentesting environment for red teams performing cooperative penetration tests, security audits, and risk assessments.
ExploitPack – Graphical tool for automating penetration tests that ships with many pre-packaged exploits.
Pupy – Cross-platform (Windows, Linux, macOS, Android) remote administration and post-exploitation tool,

Vulnerability Scanners #

Nexpose – Commercial vulnerability and risk management assessment engine that integrates with Metasploit, sold by Rapid7.
Nessus – Commercial vulnerability management, configuration, and compliance assessment platform, sold by Tenable.
OpenVAS – Free software implementation of the popular Nessus vulnerability assessment system.
Vuls – Agentless vulnerability scanner for GNU/Linux and FreeBSD, written in Go.

Static Analyzers #

Brakeman – Static analysis security vulnerability scanner for Ruby on Rails applications.
cppcheck – Extensible C/C++ static analyzer focused on finding bugs.
FindBugs – Free software static analyzer to look for bugs in Java code.
sobelow – Security-focused static analysis for the Phoenix Framework.
bandit – Security oriented static analyser for python code.

Web Scanners #

Nikto – Noisy but fast black box web server and web application vulnerability scanner.
Arachni – Scriptable framework for evaluating the security of web applications.
w3af – Hacking Tools for Web application attack and audit framework.
Wapiti – Black box web application vulnerability scanner with built-in fuzzer.
SecApps – In-browser web application security testing suite.
WebReaver – Commercial, graphical web application vulnerability scanner designed for macOS.
WPScan – Hacking Tools of Black box WordPress vulnerability scanner.
cms-explorer – Reveal the specific modules, plugins, components and themes that various websites powered by content management systems are running.
joomscan – on of the best Hacking Tools for Joomla vulnerability scanner.
ACSTIS – Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

Network Tools #

zmap – Open source network scanner that enables researchers to easily perform Internet-wide network studies.
nmap – Free security scanner for network exploration & security audits.
pig – one of the Hacking Tools forGNU/Linux packet crafting .
scanless – Utility for using websites to perform port scans on your behalf so as not to reveal your own IP.
tcpdump/libpcap – Common packet analyzer that runs under the command line.
Wireshark – Widely-used graphical, cross-platform network protocol analyzer.
Network-Tools.com – Website offering an interface to numerous basic network utilities like ping, traceroute, whois, and more.
netsniff-ng – Swiss army knife for for network sniffing.
Intercepter-NG – Multifunctional network toolkit.
SPARTA – Graphical interface offering scriptable, configurable access to existing network infrastructure scanning and enumeration tools.
dnschef – Highly configurable DNS proxy for pentesters.
DNSDumpster – one of the Hacking Tools for Online DNS recon and search service.
CloudFail – Unmask server IP addresses hidden behind Cloudflare by searching old database records and detecting misconfigured DNS.
dnsenum – Perl script that enumerates DNS information from a domain, attempts zone transfers, performs a brute force dictionary style attack, and then performs reverse look-ups on the results.
dnsmap – One of the Hacking Tools for Passive DNS network mapper.
dnsrecon – One of the Hacking Tools for DNS enumeration script.
dnstracer – Determines where a given DNS server gets its information from, and follows the chain of DNS servers.
passivedns-client – Library and query tool for querying several passive DNS providers.
passivedns – Network sniffer that logs all DNS server replies for use in a passive DNS setup.
Mass Scan – best Hacking Tools for TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
Zarp – Network attack tool centered around the exploitation of local networks.
mitmproxy – Interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Morpheus – Automated ettercap TCP/IP Hacking Tools .
mallory – HTTP/HTTPS proxy over SSH.
SSH MITM – Intercept SSH connections with a proxy; all plaintext passwords and sessions are logged to disk.
Netzob – Reverse engineering, traffic generation and fuzzing of communication protocols.
DET – Proof of concept to perform data exfiltration using either single or multiple channel(s) at the same time.
pwnat – Punches holes in firewalls and NATs.
dsniff – Collection of tools for network auditing and pentesting.
tgcd – Simple Unix network utility to extend the accessibility of TCP/IP based network services beyond firewalls.
smbmap – Handy SMB enumeration tool.
scapy – Python-based interactive packet manipulation program & library.
Dshell – Network forensic analysis framework.
Debookee – Simple and powerful network traffic analyzer for macOS.
Dripcap – Caffeinated packet analyzer.
Printer Exploitation Toolkit (PRET) – Tool for printer security testing capable of IP and USB connectivity, fuzzing, and exploitation of PostScript, PJL, and PCL printer language features.
Praeda – Automated multi-function printer data harvester for gathering usable data during security assessments.
routersploit – Open source exploitation framework similar to Metasploit but dedicated to embedded devices.
evilgrade – Modular framework to take advantage of poor upgrade implementations by injecting fake updates.
XRay – Network (sub)domain discovery and reconnaissance automation tool.
Ettercap – Comprehensive, mature suite for machine-in-the-middle attacks.
BetterCAP – Modular, portable and easily extensible MITM framework.
CrackMapExec – A swiss army knife for pentesting networks.
impacket – A collection of Python classes for working with network protocols.

Wireless Network Hacking Tools #

Aircrack-ng – Set of Penetration testing & Hacking Tools list for auditing wireless networks.
Kismet – Wireless network detector, sniffer, and IDS.
Reaver – Brute force attack against WiFi Protected Setup.
Wifite – Automated wireless attack tool.
Fluxion – Suite of automated social engineering based WPA attacks.

Transport Layer Security Tools #

SSLyze – Fast and comprehensive TLS/SSL configuration analyzer to help identify security mis-configurations.
tls_prober – Fingerprint a server’s SSL/TLS implementation.
testssl.sh – Command line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws.

Web Exploitation #

OWASP Zed Attack Proxy (ZAP) – Feature-rich, scriptable HTTP intercepting proxy and fuzzer for penetration testing web applications.
Fiddler – Free cross-platform web debugging proxy with user-friendly companion tools.
Burp Suite – One of the Hacking Tools ntegrated platform for performing security testing of web applications.
autochrome – Easy to install a test browser with all the appropriate setting needed for web application testing with native Burp support, from NCCGroup.
Browser Exploitation Framework (BeEF) – Command and control server for delivering exploits to commandeered Web browsers.
Offensive Web Testing Framework (OWTF) – Python-based framework for pentesting Web applications based on the OWASP Testing Guide.
WordPress Exploit Framework – Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.
WPSploit – Exploit WordPress-powered websites with Metasploit.
SQLmap – Automatic SQL injection and database takeover tool.
tplmap – Automatic server-side template injection and Web server takeover Hacking Tools .
weevely3 – Weaponized web shell.
Wappalyzer – Wappalyzer uncovers the technologies used on websites.
WhatWeb – Website fingerprinter.
BlindElephant – Web application fingerprinter.
wafw00f – Identifies and fingerprints Web Application Firewall (WAF) products.
fimap – Find, prepare, audit, exploit and even Google automatically for LFI/RFI bugs.
Kadabra – Automatic LFI exploiter and scanner.
Kadimus – LFI scan and exploit tool.
liffy – LFI exploitation tool.
Commix – Automated all-in-one operating system command injection and exploitation tool.
DVCS Ripper – Rip web accessible (distributed) version control systems: SVN/GIT/HG/BZR.
GitTools – One of the Hacking Tools that Automatically find and download Web-accessible .git repositories.
sslstrip –
One of the Hacking Tools Demonstration of the HTTPS stripping attacks.
sslstrip2 – SSLStrip version to defeat HSTS.
NoSQLmap – Automatic NoSQL injection and database takeover tool.
VHostScan – A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages.
FuzzDB – Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
EyeWitness – Tool to take screenshots of websites, provide some server header info, and identify default credentials if possible.
webscreenshot – A simple script to take screenshots of list of websites.

Hex Editors #

HexEdit.js – Browser-based hex editing.
Hexinator – World’s finest (proprietary, commercial) Hex Editor.
Frhed – Binary file editor for Windows.
0xED – Native macOS hex editor that supports plug-ins to display custom data types.

File Format Analysis Tools #

Kaitai Struct – File formats and network protocols dissection language and web IDE, generating parsers in C++, C#, Java, JavaScript, Perl, PHP, Python, Ruby.
Veles – Binary data visualization and analysis tool.
Hachoir – Python library to view and edit a binary stream as tree of fields and tools for metadata extraction.

Defense Evasion Tools #

Veil – Generate metasploit payloads that bypass common anti-virus solutions.
shellsploit – Generates custom shellcode, backdoors, injectors, optionally obfuscates every byte via encoders.
Hyperion – Runtime encryptor for 32-bit portable executables (“PE .exes”).
AntiVirus Evasion Tool (AVET) – Post-process exploits containing executable files targeted for Windows machines to avoid being recognized by antivirus software.
peCloak.py – Automates the process of hiding a malicious Windows executable from antivirus (AV) detection.
peCloakCapstone – Multi-platform fork of the peCloak.py automated malware antivirus evasion tool.
UniByAv – Simple obfuscator that takes raw shellcode and generates Anti-Virus friendly executables by using a brute-forcable, 32-bit XOR key.

Hash Cracking Hacking Tools #

John the Ripper – One of the best Hacking Tools for Fast password cracker.
Hashcat – Another One of the Hacking Tools The more fast hash cracker.
CeWL – Generates custom wordlists by spidering a target’s website and collecting unique words.
JWT Cracker – Simple HS256 JWT token brute force cracker.
Rar Crack – RAR bruteforce cracker.
BruteForce Wallet – Find the password of an encrypted wallet file (i.e. wallet.dat).

Windows Utilities #

Sysinternals Suite – The Sysinternals Troubleshooting Utilities.
Windows Credentials Editor – Inspect logon sessions and add, change, list, and delete associated credentials, including Kerberos tickets.
mimikatz – Credentials extraction tool for Windows operating system.
PowerSploit – PowerShell Post-Exploitation Framework.
Windows Exploit Suggester – Detects potential missing patches on the target.
Responder – LLMNR, NBT-NS and MDNS poisoner.
Bloodhound – Graphical Active Directory trust relationship explorer.
Empire – Pure PowerShell post-exploitation agent.
Fibratus – Tool for exploration and tracing of the Windows kernel.
wePWNise – Generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software.
redsnarf – Post-exploitation tool for retrieving password hashes and credentials from Windows workstations, servers, and domain controllers.
Magic Unicorn – Shellcode generator for numerous attack vectors, including Microsoft Office macros, PowerShell, HTML applications (HTA), or certutil (using fake certificates).
DeathStar – Python script that uses Empire’s RESTful API to automate gaining Domain Admin rights in Active Directory environments.

GNU/Linux Utilities #

Linux Exploit Suggester – Heuristic reporting on potentially viable exploits for a given GNU/Linux system.

macOS Utilities #

Bella – Pure Python post-exploitation data mining and remote administration tool for macOS.

DDoS Tools #

LOIC – Open source network stress tool for Windows.
JS LOIC – JavaScript in-browser version of LOIC.
SlowLoris – DoS tool that uses low bandwidth on the attacking side.
HOIC – Updated version of Low Orbit Ion Cannon, has ‘boosters’ to get around common counter measures.
T50 – Faster network stress tool.
UFONet – Abuses OSI layer 7 HTTP to create/manage ‘zombies’ and to conduct different attacks using; GET/POST, multithreading, proxies, origin spoofing methods, cache evasion techniques, etc.

Social Engineer Toolkit (SET) – Open source pentesting framework designed for social engineering featuring a number of custom attack vectors to make believable attacks quickly.
King Phisher – One of the Hacking Tools for Phishing campaign toolkit used for creating and managing multiple simultaneous phishing attacks with custom email and server content.
Evilginx – MITM attack framework used for phishing credentials and session cookies from any Web service.
wifiphisher – Automated phishing attacks against WiFi networks.
Catphish – Tool for phishing and corporate espionage written in Ruby.
Beelogger – Tool for generating keylooger.

OSINT Tools #

Maltego – One of the Hacking Tools and Proprietary software for open source intelligence and forensics, from Paterva.
theHarvester – E-mail, subdomain and people names harvester.
creepy – Geolocation OSINT tool.
metagoofil – Metadata harvester.
Google Hacking Database – Database of Google dorks; can be used for recon.
Google-dorks – Common Google dorks and others you probably don’t know.
GooDork – Command line Google dorking tool.
dork-cli – Command line Google dork tool.
Censys – Collects data on hosts and websites through daily ZMap and ZGrab scans.
Shodan – World’s first search engine for Internet-connected devices.
recon-ng – One of the Hacking Tools Full-featured Web Reconnaissance framework written in Python.
github-dorks – CLI tool to scan Github repos/organizations for potential sensitive information leak.
vcsmap – Plugin-based tool to scan public version control systems for sensitive information.
Spiderfoot – Multi-source OSINT automation tool with a Web UI and report visualizations
BinGoo – GNU/Linux bash based Bing and Google Dorking Tool.
fast-recon – Perform Google dorks against a domain.
snitch – Information gathering via dorks.
Sn1per – ons of the Hacking Tools for Automated Pentest Recon Scanner.
Threat Crowd – Search engine for threats.
Virus Total – VirusTotal is a free service that analyzes suspicious files and URLs and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware.
DataSploit – OSINT visualizer utilizing Shodan, Censys, Clearbit, EmailHunter, FullContact, and Zoomeye behind the scenes.
AQUATONE – Subdomain discovery tool utilizing various open sources producing a report that can be used as input to other tools.
Intrigue – Automated OSINT & Attack Surface discovery framework with powerful API, UI and CLI.
ZoomEye – Search engine for cyberspace that lets the user find specific network components.

Anonymity Tools #

Tor – Free software and onion routed overlay network that helps you defend against traffic analysis.
OnionScan – One of the Hacking Tools for investigating the Dark Web by finding operational security issues introduced by Tor hidden service operators.
I2P – The Invisible Internet Project.
Nipe – Script to redirect all traffic from the machine to the Tor network.
What Every Browser Knows About You – Comprehensive detection page to test your own Web browser’s configuration for privacy and identity leaks.

Reverse Engineering Tools #

Interactive Disassembler (IDA Pro) – Proprietary multi-processor disassembler and debugger for Windows, GNU/Linux, or macOS; also has a free version, IDA Free .
WDK/WinDbg – Windows Driver Kit and WinDbg.
OllyDbg – x86 debugger for Windows binaries that emphasizes binary code analysis.
Radare2 – Open source, crossplatform reverse engineering framework.
x64dbg – Open source x64/x32 debugger for windows.
Immunity Debugger – Powerful way to write exploits and analyze malware.
Evan’s Debugger – OllyDbg-like debugger for GNU/Linux.
Medusa – Open source, cross-platform interactive disassembler.
plasma – Interactive disassembler for x86/ARM/MIPS. Generates indented pseudo-code with colored syntax code.
peda – Python Exploit Development Assistance for GDB.
dnSpy – one of the Hacking Tools to reverse engineer .NET assemblies.
binwalk – Fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images.
PyREBox – Python scriptable Reverse Engineering sandbox by Cisco-Talos.
Voltron – Extensible debugger UI toolkit written in Python.
Capstone – Lightweight multi-platform, multi-architecture disassembly framework.
rVMI – Debugger on steroids; inspect userspace processes, kernel drivers, and preboot environments in a single tool.
Frida – Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

Physical Access Tools #

LAN Turtle – Covert “USB Ethernet Adapter” that provides remote access, network intelligence gathering, and MITM capabilities when installed in a local network.
USB Rubber Ducky – Customizable keystroke injection attack platform masquerading as a USB thumbdrive.
Poisontap – Siphons cookies, exposes internal (LAN-side) router and installs web backdoor on locked computers.
WiFi Pineapple – Wireless auditing and penetration testing platform.
Proxmark3 – RFID/NFC cloning, replay, and spoofing toolkit often used for analyzing and attacking proximity cards/readers, wireless keys/keyfobs, and more.

Side-channel Tools #

ChipWhisperer – Complete open-source toolchain for side-channel power analysis and glitching attacks.

CTF Tools #

ctf-tools – Collection of setup scripts to install various security research tools easily and quickly deployable to new machines.
Pwntools – Rapid exploit development framework built for use in CTFs.
RsaCtfTool – Decrypt data enciphered using weak RSA keys, and recover private keys from public keys using a variety of automated attacks.

Penetration Testing Report Templates #

Public Pentesting Reports – Curated list of public penetration test reports released by several consulting firms and academic security groups.
Pentesting Report Template – testandverification.com template.
Pentesting Report Template – hitachi-systems-security.com template.
Pentesting Report Template – lucideus.com template.
Pentesting Report Template – crest-approved.org templage.
Pentesting Report Template – pcisecuritystandards.org template.

Vulnerability Databases – Hacking Tools #

Common Vulnerabilities and Exposures (CVE) – Dictionary of common names (i.e., CVE Identifiers) for publicly known security vulnerabilities.
National Vulnerability Database (NVD) – United States government’s National Vulnerability Database provides additional meta-data (CPE, CVSS scoring) of the standard CVE List along with a fine-grained search engine.
US-CERT Vulnerability Notes Database – Summaries, technical details, remediation information, and lists of vendors affected by software vulnerabilities, aggregated by the United States Computer Emergency Response Team (US-CERT).
Full-Disclosure – Public, vendor-neutral forum for detailed discussion of vulnerabilities, often publishes details before many other sources.
Bugtraq (BID) – Software security bug identification database compiled from submissions to the SecurityFocus mailing Penetration testing tools list and other sources, operated by Symantec, Inc.
Exploit-DB – Non-profit project hosting exploits for software vulnerabilities, provided as a public service by Offensive Security.
Microsoft Security Bulletins – Announcements of security issues discovered in Microsoft software, published by the Microsoft Security Response Center (MSRC).
Microsoft Security Advisories – Archive of security advisories impacting Microsoft software.
Mozilla Foundation Security Advisories – Archive of security advisories impacting Mozilla software, including the Firefox Web Browser.
Packet Storm – Compendium of exploits, advisories, tools, and other security-related resources aggregated from across the industry.
CXSecurity – Archive of published CVE and Bugtraq software vulnerabilities cross-referenced with a Google dork database for discovering the listed vulnerability.
SecuriTeam – Independent source of software vulnerability information.
Vulnerability Lab – Open forum for security advisories organized by category of exploit target.
Zero Day Initiative – Bug bounty program with the publicly accessible archive of published security advisories, operated by TippingPoint.
Vulners – Security database of software vulnerabilities.
Inj3ct0r ( Onion service ) – Exploit marketplace and vulnerability information aggregator.
Open Source Vulnerability Database (OSVDB) – Historical archive of security vulnerabilities in computerized equipment, no longer adding to its vulnerability database as of April, 2016.Hacking Tools
HPI-VDB – Aggregator of cross-referenced software vulnerabilities offering free-of-charge API access, provided by the Hasso-Plattner Institute, Potsdam.Hacking Tools

Security Courses – Hacking Tools – Hacking Tools #

Offensive Security Training – Training from BackTrack/Kali developers.
SANS Security Training – Computer Security Training & Certification.
Open Security Training – Training material for computer security classes.
CTF Field Guide – Everything you need to win your next CTF competition.
ARIZONA CYBER WARFARE RANGE – 24×7 live fire exercises for beginners through real world operations; capability for upward progression into the real world of cyber warfare.
Cybrary – Free courses in ethical hacking and advanced penetration testing. Advanced penetration testing courses are based on the book ‘Penetration Testing for Highly-Secured Environments’.
Computer Security Student – Many free tutorials, great for beginners, $10/mo membership unlocks all content.
European Union Agency for Network and Information Security – ENISA Cyber Security Training material.

Information Security Conferences – Hacking Tools #

DEF CON – Annual hacker convention in Las Vegas.
Black Hat – Annual security conference in Las Vegas.
BSides – Framework for organising and holding security conferences.
CCC – Annual meeting of the international hacker scene in Germany.
DerbyCon – Annual hacker conference based in Louisville.
PhreakNIC – Technology conference held annually in middle Tennessee.
ShmooCon – Annual US East coast hacker convention.
CarolinaCon – Infosec conference, held annually in North Carolina.
CHCon – Christchurch Hacker Con, Only South Island of New Zealand hacker con.
SummerCon – One of the oldest hacker conventions, held during Summer.
Hack.lu – Annual conference held in Luxembourg.
Hackfest – Largest hacking conference in Canada.
HITB – Deep-knowledge security conference held in Malaysia and The Netherlands.
Troopers – Annual international IT Security event with workshops held in Heidelberg, Germany.
Hack3rCon – Annual US hacker conference.
ThotCon – Annual US hacker conference held in Chicago.
LayerOne – Annual US security conference held every spring in Los Angeles.
DeepSec – Security Conference in Vienna, Austria.
SkyDogCon – Technology conference in Nashville.
SECUINSIDE – Security Conference in Seoul .
DefCamp – Largest Security Conference in Eastern Europe, held annually in Bucharest, Romania.
AppSecUSA – Annual conference organized by OWASP.
BruCON – Annual security conference in Belgium.
Infosecurity Europe – Europe’s number one information security event, held in London, UK.
Nullcon – Annual conference in Delhi and Goa, India.
RSA Conference USA – Annual security conference in San Francisco, California, USA.
Swiss Cyber Storm – Annual security conference in Lucerne, Switzerland.
Virus Bulletin Conference – Annual conference going to be held in Denver, USA for 2016.
Ekoparty – Largest Security Conference in Latin America, held annually in Buenos Aires, Argentina.
44Con – Annual Security Conference held in London.
BalCCon – Balkan Computer Congress, annually held in Novi Sad, Serbia.
FSec – FSec – Croatian Information Security Gathering in Varaždin, Croatia.

Information Security Magazines – Hacking Tools #

2600: The Hacker Quarterly – American publication about technology and computer “underground.”
Phrack Magazine – By far the longest running hacker zine.

Awesome Lists – Hacking Tools – #

Kali Linux Tools – List of Hacking tools present in Kali Linux.
SecTools – Top 125 Network Security Hacking Tools.
Pentest Cheat Sheets – Awesome Pentest Cheat Sheets.
C/C++ Programming – One of the main language for open source security tools.
.NET Programming – Software framework for Microsoft Windows platform development.
Shell Scripting – Command line frameworks, toolkits, guides and gizmos.
Ruby Programming by @dreikanter – The de-facto language for writing exploits.
Ruby Programming by @markets – The de-facto language for writing exploits.
Ruby Programming by @Sdogruyol – The de-facto language for writing exploits.
JavaScript Programming – In-browser development and scripting.
Node.js Programming by @sindresorhus – Curated list of delightful Node.js packages and resources.
Python tools for penetration testers – Lots of pentesting tools are written in Python.
Python Programming by @svaksha – General Python programming.
Python Programming by @vinta – General Python programming.
Android Security – Collection of Android security-related resources.
Awesome Awesomness – The List of the Lists.
AppSec – Resources for learning about application security.
CTFs – Capture The Flag frameworks, libraries, etc.
InfoSec § Hacking challenges – Comprehensive directory of CTFs, wargames, hacking challenge websites,Penetration testing tools list practice lab exercises, and more.
Hacking – Tutorials, tools, and resources.
Honeypots – Honeypots, tools, components, and more.
Infosec – Information security resources for pentesting, forensics, and more.
Forensics – Free (mostly open source) forensic analysis tools and resources.
Malware Analysis – Tools and resources for analysts.
PCAP Tools – Tools for processing network traffic.
Security – Software, libraries, documents, and other resources.
Awesome Lockpicking – Awesome guides, tools, and other resources about the security and compromise of locks, safes, and keys.
SecLists – Collection of multiple types of lists used during security assessments.
Security Talks – Curated list of security conferences.
OSINT – Awesome OSINT list containing great resources.
YARA – YARA rules, tools, and people.

Security stuffs #

Awesome security A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Source

Noisy

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 08 Sep 2019 00:00:00 +0000

Noisy #

A simple python script that generates random HTTP/DNS traffic noise in the background while you go about your regular web browsing, to make your web traffic data less valuable for selling and for extra obscurity.

Tested on MacOS High Sierra, Ubuntu 16.04 and Raspbian Stretch and is compatable with both Python 2.7 and 3.6

Getting Started #

These instructions will get you a copy of the project up and running on your local machine

Dependencies #

Install requests if you do not have it already installed, using pip:

pip install requests

Usage #

Clone the repository

git clone https://github.com/1tayH/noisy.git

Navigate into the noisy directory

cd noisy

Run the script

python3 noisy.py --config config.json

The program can accept a number of command line arguments:

$ python noisy.py --help
usage: noisy.py [-h] [--log -l] --config -c [--timeout -t]
optional arguments:
-h, --help show this help message and exit
--log -l logging level
--config -c config file
--timeout -t for how long the crawler should be running, in seconds

only the config file argument is required.

Output #

$ docker run -it noisy --config config.json --log debug
DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): 4chan.org:80
DEBUG:urllib3.connectionpool:http://4chan.org:80 "GET / HTTP/1.1" 301 None
DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): www.4chan.org:80
DEBUG:urllib3.connectionpool:http://www.4chan.org:80 "GET / HTTP/1.1" 200 None
DEBUG:root:found 92 links
INFO:root:Visiting http://boards.4chan.org/s4s/
DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): boards.4chan.org:80
DEBUG:urllib3.connectionpool:http://boards.4chan.org:80 "GET /s4s/ HTTP/1.1" 200 None
INFO:root:Visiting http://boards.4chan.org/s4s/thread/6850193#p6850345
DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): boards.4chan.org:80
DEBUG:urllib3.connectionpool:http://boards.4chan.org:80 "GET /s4s/thread/6850193 HTTP/1.1" 200 None
INFO:root:Visiting http://boards.4chan.org/o/
DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): boards.4chan.org:80
DEBUG:urllib3.connectionpool:http://boards.4chan.org:80 "GET /o/ HTTP/1.1" 200 None
DEBUG:root:Hit a dead end, moving to the next root URL
DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): www.reddit.com:443
DEBUG:urllib3.connectionpool:https://www.reddit.com:443 "GET / HTTP/1.1" 200 None
DEBUG:root:found 237 links
INFO:root:Visiting https://www.reddit.com/user/Saditon
DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): www.reddit.com:443
DEBUG:urllib3.connectionpool:https://www.reddit.com:443 "GET /user/Saditon HTTP/1.1" 200 None
...

Build Using Docker #

Build the image

docker build -t noisy .

Or if you’d like to build it for a Raspberry Pi (running Raspbian stretch):

docker build -f Dockerfile.pi -t noisy .

Create the container and run:

docker run -it noisy --config config.json

Custom noisy.conf file: #

Noisy.conf

Scheduling a shutdown

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Sun, 08 Sep 2019 00:00:00 +0000

Scheduling a shutdown #

To shutdown run the command:

sudo shutdown -P +60

That will wait 60 mins before starting the shutdown sequence.

You could do:

sudo shutdown -P 1:00

to shutdown at 1 AM and

sudo shutdown -P now

to shutdown now.

A message is broadcast to all terminals to warn about the shutdown.

Cancel a pending shutdown After, starting a shutdown, if the time argument is not “+0” or “now”, you can use:

sudo shutdown -c

ronalds.vilcins@gmail.com (Ronalds Vilcins) — Mon, 01 Jan 0001 00:00:00 +0000

Decentralization #

Digital technology decentralization: Redecentralize
Decentralized search alternative Yacy
Ethereum development knowledge: Kauri
Ethereum Name Service: Ens Domain
Ethereum distribuited platform: Swarm
Dweb search engine: Almonit
IPFS pinning service: Pinata
Tutorials on decentralized web protocols: ProtoSchool
Resources for Dat Project: AwesomeDat
Dat Protocol Forum: Dat Discourse
P2P chat platform: Cabal
Searching the universe: IPFS Search
Email services for Ethereum community: ETHMail
Recommended Gas Prices in Gwei: ETH Gas Station

Utility #

Markdown editor on line: Headge
Receive and send emails anonymously: Simplelogin
Local ad blocker: Maza ad blocker
Break out of localhost: Telebit
Stay safe online: Restore privacy
Share encrypted text and code snippets: Hackerpaste
Enforce privacy & security on Windows: Privacy.Sexy/
Storing your text: Protectedtext
Search engine for PDF files: Pendrive
Share your localhost environment: LocalHostRun
Digital poetry book: Temper
Email pwned check: Have i been pwned?
Temp Email: Hnet
Generate secure password: Pwd Gen
Anonymous URL Shortener: Anon.to
Privacy Eyewear: Reflectacles
Block ads and malwares with hosts files: StevenBlack/hosts
Diagram with anyone: Diagrams
OSINT research tool: SynapsInt
Convert to markdown: Past to markdown

Hacking #

Security podcasts: Day0
Free class for web security: Hacker101
Hackers conference: DEFCon
Shared community password recovery: Hashes
Some free E-book: Plese don’t hack me
A collection of awesome write-ups: InfoSeccWriteUp

Surfing #

Playlists algorithmically-generated: Every Noise at Once
Social Bookmarking for Introverts: Pinboard
The final heartbeats of our beloved www: Href.Cool
Linking the hypertext kingdom: Kickscondor
Alternative Twitter front-end: Nitter
Alternative Youtube front-end: Invidious
StyleGan2 face generator: StyleGAN 2
A computer science portal: Geeks for Geeks

108Mhz

Top bar hive

Backup docker container

How To Back Up Docker Container #

#

How To Restore A Docker Backup #

Cinema

Nano keystrokes

File #

Editing #

Formatting #

Navigation #

Enable / Disable settings #

Useful knots

Some basic and useful knots. #

You Don't Need GUI

Quick links #

copy a file #

duplicate a file #

copy a directory #

duplicate a directory #

move a file #

rename a file #

move a directory #

rename a directory #

merge directories #

create a new file #

create a new directory #

show file/directory size #

show file/directory info #

open a file with the default program #

open a file in any application #

zip a directory #

unzip a directory #

decompress files of any format #

peek files in a zip file #

peek files in a compress file of any format #

remove a file #

remove a directory #

remove all files of certain criteria #

list directory contents #

tree view a directory and its subdirectories #

find a stale file #

show a calendar #

find a future date #

use a calculator #

force quit a program #

check server response #

view content of a file #

search for a text in a file #

search in all files in current working directory, quickly (entire disk in less than 15 minutes) #

view an image #

show disk size #

check performance of your computer #

know whether your computer is under load, and whether it’s due to memory or CPU #

poweroff or reboot your computer #

locate USB drives #

unmount USB drives #

format USB drives #

check USB format #

run command on all files of a directory #

Quick tips #

Hotkeys #

I can’t remember these cryptic commands #

Calendario semine

Gennaio #

Febbraio #

Marzo #

Aprile #

Maggio #

Giugno #

Luglio #

Agosto #

Settembre #

Ottobre #

Novembre #

Dicembre #

Fusilli salmone e finocchio

Ingredienti per 4 persone #

Risotto al vermouth

Provoke #1 #

Provoke 4 & 5: First, Throw Out Verisimilitude – Thoughts on photography and language #