Shaarli

In-kernel ROP (Return Oriented Programming) is a useful technique that is often used to bypass restrictions associated with non-executable memory regions. For example, on default kernels1, it presents a practical approach for bypassing kernel and user address separation mitigations such as SMEP (Supervisor Mode Execution Protection) on recent Intel CPUs.

The goal of this tutorial is to demonstrate how a kernel ROP chain can be constructed to elevate user privileges

rop · exploit · kernel

January 20, 2016 at 19:28:47 UTC * · permalink

·

https://cyseclabs.com/page?n=17012016

Numbers don’t lie—it’s time to build your own router | Ars Technica

router · diy · network · benchmarck

January 20, 2016 at 07:39:12 UTC * · permalink

·

http://arstechnica.com/gadgets/2016/01/numbers-dont-lie-its-time-to-build-your-own-router/

Creating a CSP Policy from Scratch

CSP · policy · web · dev

January 20, 2016 at 03:34:54 UTC * · permalink

·

https://diogomonica.com/2015/12/30/deep-into-csp/

netboot.xyz

netboot.xyz is a way to select various operating system installers or utilities from one place within the BIOS without the need of having to go retrieve the media to run the tool. iPXE is used to provide a user friendly menu from within the BIOS that lets you easily choose the OS you want along with any specific types of versions or bootable flags.

You can remote attach the ISO to servers, set it up as a rescue option in Grub, or even set up your home network to boot to it by default so that it's always available

netboot · pxe

January 18, 2016 at 22:51:35 UTC · permalink

·

http://netboot.xyz/

C++11 threads, affinity and hyperthreading - Eli Bendersky's website

For decades, the C and C++ standards treated multi-threading and concurrency as something existing outside the standard sphere - in that "target-dependent" world of shades which the "abstract machine" targeted by the standards doesn't cover. The immediate, cold-blooded replies of "C++ doesn't know what a thread is" in mountains of mailing list and newsgroup questions dealing with parallelism will forever serve as a reminder of this past.

cpp · cpp11 · thread · parrallel

January 18, 2016 at 06:04:21 UTC * · permalink

·

http://eli.thegreenplace.net/2016/c11-threads-affinity-and-hyperthreading/

Inject Packets with an ESP8266 | Hackaday

ESP8266

January 14, 2016 at 23:53:16 UTC · permalink

·

http://hackaday.com/2016/01/14/inject-packets-with-an-esp8266/

You have 70,000 thoughts a day. This is how to organize them for maximum productivity - Quartz

productivity · life · hack

January 11, 2016 at 08:13:55 UTC · permalink

·

http://qz.com/539432/you-have-70000-thoughts-a-day-this-is-how-to-organize-them-for-maximum-productivity/

Luigi Auriemma

hacks · reverse_enginering

January 10, 2016 at 04:16:54 UTC · permalink

·

http://aluigi.altervista.org/index.htm

Analysis of Software Architectures – Firat Atagun

software · architecture · prog · dev

January 10, 2016 at 00:34:02 UTC · permalink

·

http://www.firatatagun.com/blog/2016/01/09/analysis-of-software-architectures/

GPU Passthrough - Or How To Play Any Game At Near Native Performance In A Virtual Machine : pcmasterrace

Using iommu technology to give a vm direct access to the gpu.

gpu · iommu · vm · kvm

January 9, 2016 at 01:05:06 UTC · permalink

·

https://www.reddit.com/r/pcmasterrace/comments/2z0evz/gpu_passthrough_or_how_to_play_any_game_at_near/

FЯIDA

Your own scripts get injected into black box processes to execute custom debugging logic. Hook any function, spy on crypto APIs or trace private application code, no source code needed!

reverse_enginering · js · trace

January 9, 2016 at 01:04:14 UTC * · permalink

·

http://www.frida.re/

Run Express server in your browser | Better world by better software

Plus how to run a web application when the JavaScript itself is disabled*.

javascript · web · js · prog

January 6, 2016 at 22:52:31 UTC * · permalink

·

https://glebbahmutov.com/blog/run-express-server-in-your-browser/

Understanding Nginx Server and Location Block Selection Algorithms | DigitalOcean

nginx · sysadmin · server

January 5, 2016 at 23:16:10 UTC · permalink

·

https://www.digitalocean.com/community/tutorials/understanding-nginx-server-and-location-block-selection-algorithms

Web components that can be built purely using css, NO Javascript – Technical news on web development

web · css

January 4, 2016 at 00:10:54 UTC * · permalink

·

http://technical.nailfashionsweden.se/web-components-that-can-be-built-purely-using-css-no-javascript/

johang/btfs · GitHub

With BTFS, you can mount any .torrent file or magnet link and then use it as any read-only directory in your file tree. The contents of the files will be downloaded on-demand as they are read by applications. Tools like ls, cat and cp works as expected. Applications like vlc and mplayer can also work without changes.

torrent · fuse

January 2, 2016 at 23:27:59 UTC · permalink

·

https://github.com/johang/btfs

Named tuple for C++ | Victor Laskin's Blog

cpp · prog · tuple

January 2, 2016 at 23:26:47 UTC · permalink

·

http://vitiy.info/named-tuple-for-cplusplus/

Starting a tech startup with C++ — Medium

startup · cpp · facebook

January 2, 2016 at 23:12:30 UTC · permalink

·

https://medium.com/@jamesperry/starting-a-tech-startup-with-c-6b5d5856e6de#.bsr6fp3sx