Spice up your docs, blog posts and Tweets with some pretty screenshots! The following free tools will generate nicely formatted screenshots of code, device mockups and embedded info. Code Screenshots 1. Ray.so Ray.so developed by the team behind Raycast, generates clean and minimal code screenshots. You can also specify options via GET URL params, so you could programatically generate an image (e.g. using this shell script, or this VS Code extension). 2. Carbon Carbon has more advanced...

The browser developer tools are incredibly powerful, with new debugging and optimisation features being added every few months. The following post outlines 50+ awesome tips, that you can use to supercharge your web development experience. Design Mode Enabling design mode will make the entire web page editable, just by clicking and typing. To use it, open up the console and run: document.designMode = 'on' Pretty Print Raw files are usually minified, and therefore hard to read. Use t...

If you've ever developed a web app, you'll be familiar with console.log(...), the method which prints data to the developer console; useful for debugging, logging and testing. Run console.log(console), and you'll see that there's much more to the console object. This post briefly outlines the top 10 neat tricks you can use to level up your logging experience. Contents Tables Groups Styles Times Asserts Counts Traces Directory Debugs Log Levels Multi-Values Log Strings Clear Tables The c...

A collection of 15 things you can do with GitHub-flavoured markdown to spice-up your projects readme. Centre an image or other content Make the title, sub-title and / or logo image centred (see example) <p align="center"> <img width="500" src="---" alt="---"> </p> Include Notes and Warnings > **Note** > This is a note > **Warning** > This is a warning Will render: Note that this feature is still in beta. Tiny Text Using the ...

The following table is a quick, undetailed comparison of security-focused email providers. Update: Since the markdown table isn't very clear, here's is a web version: lissy93.github.io/email-comparison Name Jurisdiction Encryption Open Source Onion Site Pricing Domain Support Additional Aliases or Catch-All POP, IMAP, STMP External Security Audit Accepts Crypto Personal Info Requiements ...

The following commands will each start a simple web server, serving up the files in the current directory. Just open up the browser, and navigate to the system's IP + port (e.g. http://localhost:8080). Python python -m http.server 8000 Node.js npx http-server ./ --port 8080 PHP php -S 127.0.0.1:8080 Ruby ruby -run -e httpd ./ -p 8080 R Rscript -e 'servr::httd()' -p8080 Caddy Caddy is a feature-rich production-ready Go-based web server, with easy configuration. Just download and ...

The Definitive Guide to NPM Package Security Check for Outdated Dependencies It's important to keep dependencies up-to-datem since these packages usually undergo continuous improvements, bugs fixes and security patches. Yarn has this functionality built in, with yarn outdated, which shows version info for all a projects installed dependencies. A better tool for the job is npm-check (MIT) by @dylang, which will check for outdated, incorrect, and unused dependencies. This is used by just runn...

Here's a quick project that I built in order to keep track of locally running services on my home lab. It serves as a landing page, to make it easier to navigate to various apps, without having to remember and type IP addresses or URLs. Contents Features Source Code Live Demo Screenshots Usage Guide Similar Apps / Alternatives Credits License Features Instant search by name, domain and tags - just start typing Full keyboard shortcuts for navigation, searching and launching Multiple c...

Intro Espanso is an open source, privacy-first, cross-platform text expander developed by @federico-terzi and written in Rust. In short, it detects when you type a certain keyword, and replaces it on the fly with a pre-defined string or dynamic output. Espanso not only supports simple text replacement/ expansion, but also images, custom scripts and shell commands, app-specific configurations and more. There is also a basic form feature, enabling arguments to be passed to a block. It's under...

Do you ever wonder how you're spending you're life? I do, and so I went through the main activities that I do on a daily, weekly or monthly basis and calculated the approximate total time I've spent on each of them. The following chart is a breakdown of time as a proportion of my total life (so far), where each square represents 1 month. I am now having an mini existential crisis after seeing how much of my life I have spent on relatively meaningless activities! ...

A mix of simple things that (despite doing regularly) I still forget, as well as more niche stuff that took me a little while to figure out. The purpose of documenting this, is both to help others and for future reference for myself Servers How to setup an SSH Tarpint with EndleShh How to setup WireGuard on OPNSense for Mullvad VPN How to setup SSL for OPNSense, with Let's Encrypt How to transfer a file to server, via SSH/SCP How to use SSH key Pairs for Authentication How to setup and secu...

Endlessh is an SSH tarpit to keep the automated bots hitting port 22 locked up, and waste script kiddies time. You can either get it from your package manager with sudo apt install endless, or build from source. To build, ensure you have libc6-dev installed, then git clone git@github.com:skeeto/endlessh.git, cd endlessh, make, and move it to your path- sudo mv endlessh /usr/local/bin/. Move the service to systemd, sudo cp util/endlessh.service /etc/systemd/system, and enable it sudo systemctl...

Intro Themes Navy + Teal Titanium Cyberpunk Dracula Hack Neon Nord Usage Yet another awesome feature of DuckDuckGo, is that they make it really easy to modify your theme, just go to: https://duckduckgo.com/settings#appearance. From here you can customize your colors, fonts and layout of your search results and home page. I am no designer by any stretch of the imagination (as you can probably see!), but here are a couple of themes I made, along with their code if you want to use them. Y...

This article outlines the steps I take on any new server, to configure it for security, consistency and convenience. It is written specifically for Debian, but will also directly apply to derivatives (such as Ubuntu), and will likely be very similar for for other distros. I am in the process of writing automation scripts to cover all of these steps, in the form of Ansible Playbooks. This guide is split into 10 sections: System Update - Upgrade the OS and enable automated security updates Sys...

TDLR; Auto-correct is a lot more efficient than manually correcting misspelled words. Espanso is awesome. Beyond that, this isn't too interesting - I just documented this so I can refer back to it in the future. If you're just looking for a generic word list, see this post, which contains 4,200 common misspellings. Intro Word List Converter Usage Intro I am terrible at spelling. About 15% of what I've typed will be underlined in red. It's usually the same couple hundred words that I fo...

Intro Ever since the first version was released in 2012, the Raspberry Pi has been a staple piece of kit for professionals, hobbyists, educators and everyone in between. And for good reason, it's small, low power, affordable but extremely versatile. There are of course other single board computers on the market, but the Pi has a strong community behind it and provides a good balance between capabilities, form factor and price. Raspberry Pi Projects Here is a curated list of projects that ...

This is my personal reference list of useful software for Microsoft Windows. Typically I only install what I need, and uninstall software that hasn't been used for a while. Where possible I prefer to run containerized or portable apps. There's nothing installed on my system that isn't on this list. Before setting anything up, the first task is to disable telemetry, remove pre-installed bloatware and make a few security tweaks. For this I use a series of PowerShell scripts provided by Privacy....

This is just a short reference to using fonts with Variable Axes in CSS What are Variable Fonts? Variable fonts are font files that encapsulate the entire family, and allow for custom attributes (regarding things like weight, slant, grade, character-width) to be set. This brings several benefits: Much higher quality rendering of fonts, without browser distortions Greater control over customization, as you can specify each value separably The need only for a single font file (rather than ...

Try Try again Try harder Try differently Try again tomorrow Try again the next day Try to find another way Try to fix what's not working Try to find someone who has done it Just keep trying, until you succeed ...

Quick guide on creating an always-on Tor-routed secondary wireless access point on a Pi Zero Set up the Pi Download and Extract Raspberry Pi OS Lite Flash the ISO onto a MicroSD Card, with Etcher or similar software Place a file called ssh into the boot dir (to allow for SSH access) Insert SD card into Pi, plug in the Ethernet and power it up Determine the IP of the new Pi with nmap, or in your router settings SSH into ssh pi@<ip>, the password is raspberry Change the password with: s...

I am new to OPNsense, and got totally stuck on this. There wasn't a lot of information online about this, so after I'd (finally) got it working, I wrote this step-by-step guide 1. Install WireGuard Navigate to System --> Firmware --> Plug-ins, and select and install 'os-wireguard'. Now you can refresh the page, and go to, go to VPN --> Wireguard 2. Create a Local Instance Under VPN --> WireGuard --> Local, create a new instance which looks like this: Name: Mullvad Publ...

Here's the stylesheet that I'm using currently. This theme is for the new version of Listed. For older versions see this post Colors Main Background #0b1021 Background Darken #060913 Background Lighten #141b33 Primary #00CCB4 Primary Dark #092935 Action Colors Info #04e4f4 Success #20e253 Warning #f6f000 Danger #f80363 Neutral #272f4d Greyscale Bright White #ff...

Bored? Here's a collection of stuff I stumbled upon on the internet, and thought was pretty epic 🌈 Full credit to the legends behind each of these sites 🦸‍♂️ Enjoy! 🤩 100,000 Stars - A WebGL 3D Visualization of out Solar System, Galaxy and Universe 1001 Albums Generator - Gives you a new album to listen to everyday Acapella Extractor - Isolates voice from any track/ removes music and background Ask Nature - Search for a query, to find how nature has adapted to solve problems A Good Movie to...

A curated collection of data-related awesomeness, with a focus on internet, communication & security Work in progress- I'm continuing to update the list, whenever I come across something epic My respect goes out to the legends behind each of these projects 👏 Awesome Real-Time Data Visualizations Internet Tor Flow - Real-time data flow between Tor nodes Internet Census - 24-hour world map of average utilization of IPv4 addresses ICMP ping requests sent out with Carna botnet. Lear...

Background: While getting started in information security, I kept coming across acronyms I wasn't familiar with/ had forgotten. So I have started compiling a list, for future reference. I will keep this list updated, as I go along 😚 Common InfoSec Abbreviations AES: Advanced Encryption Standard C2: Command & Control (sometimes CC) CBSP: Cloud-Based Security Providers CSP: Content Security Policy CORS: Cross-Origin Resource Sharing CVSS: Common Vulnerability Scoring System DAST: Dynamic Ap...

Wirechark has some comprehensive packet filtering capabilities, and display filters let you utilize these multi-pass packet processing capabilities. This goes far beyond just filtering based on IP, port and protocol. Essential Links: Getting Started Guide: https://www.maketecheasier.com/use-display-filters-in-wireshark/ Basic Filter Syntax: https://www.wireshark.org/docs/wsug_html_chunked/ChWorkBuildDisplayFilterSection.html Full Display Filter Docs: https://www.wireshark.org/docs/dfref/ Fu...

These are all the Android applications that I use often, each app on this list serves a purpose and adds value to my day. The developers behind every one of these apps have done an amazing job, and for that, I am thankful. This in part is my motivation for writing this list This is, in no way a list of ultra-secure, privacy-respecting or fully FOSS apps. In fact, the very idea of having 50 apps on your device goes against the minimalist security principle, and increases attack surface. Howe...

In Git, a submodule is like a Git repository inside another Git repository. This can be useful for splitting work, or for including someone else's code within your project dynamically. As an example, see the DuckDuckGo Android App and the corresponding .gitmodules file. Quick Start It's simple to add a submodule into your repository, with the following line: git submodule add https://github.com/<user>/<repo> <path/to/save/at> This will add a new file named .gitmodules with...

TLDR; Privacy is a fundamental right, and essential to democracy, liberty, and freedom of speech. Our privacy is being abused by governments (with mass-surveillance), corporations (profiting from selling personal data), and cyber criminals (stealing our poorly-secured personal data and using it against us). Security is needed in order to keep your private data private, and good digital security is critical to stay protected from the growing risks associated with the war on data. What is Perso...

Node Modules killing your hard drive space? Manually finding and removing is a pain, so here are some simple solutions Option #1 - Natively From your desired entry point, all you need to do, is run: $ find . -name 'node_modules' -type d -prune -print -exec rm -rf '{}' \; ⚠️ This will delete all nested node_modules directories, and their contents ⚠️ If you'd first like to list of all node_modules within your current directory, you can run: $ find . -name "node_modules" -type d -prune -print ...

Working remotley? Sick and tired of having to get out of bed every 20 minutes to move your mouse, to prevent Slack/ Skype/ Teams from showing your status as Away? Well with a couple lines of bash, you can have your mouse pointer periodically move, ensureing your status will always remain Active. Your boss will be none the wiser # LENGTH is the amount of px the mouse will move # 0 = not moving at all, 1 = tiny movement, 100 = giant movement LENGTH=50 # DELAY is the time period between movements,...

Quick reference of the common commands, to install packages on Arch Linux Option #1 - Pacman If the app is availible through AUR, then you can simply use the pacman package manager ## Install $ sudo pacman -S {package-name(s)} ## Get Details $ pacman -Qi {package-name} ## Remove $ sudo pacman -R {package-name} Option #2 - Manually Using the makepkg script to build the package from source ## 1. Get the code (E.g. from AUR, GitHub) $ wget https://aur.archlinux.org/packages/{package-name}....

A quick function to construct an enumeration which has keys the same as their value This used to be part of React, but since it's now been removed (See commit: #56f5115), and some older packages throw an error without it, I've updated it, and uploading in case anyone else needs it while working with older React packages. A copy of React's original, JavaScript version can be found here. /** * (C) Alicia Sykes <https://aliciasykes.com> * Licensed under MIT X11: https://git.io/Jew4i * * ...

A simple React component for implementing responsive grid-based layouts, without any dependencies. It uses the native CSS Grid Layout properties to align elements into columns and rows. It is written in TypeScript as a Styled-Component for React or React Native projects. /* * Entry point for React grid system * React implementation of CSS grid layout written in TypeScript as a styled-component * Licensed under MIT - (C) Alicia Sykes 2020 <https://aliciasykes.com> */ // FILE 1 - layout...

Contents 🔨 Hardware/ Electronics/ DIY 🔐 Cyber Security/ Privacy/ Hacking 💿 Linux / Servers / Sys Admin 👩‍💻 Coding/ Algorithms/ Software Development 💻 Computer Science/ AI/ Machine Learning 📱 Technology/ PCs/ Consumer Electronics 🪙 Cryptocurrency / Blockchain / Fintech / Investment 👾 Retro Computing / Gaming 🌐 Internet Culture / Memes / Internet Mysteries/ Trolling Scammers 🪐 Astronomy / Space / Planetary Science 🧪 Science/ Engineering/ Math ✝ Bible/ Jesus/ Religion 🚅 Trains / Maps / Travel ...

Generating a new SSH Key Pair Run ssh-keygen -t rsa -b 4096 When prompted, enter a passphrase SSH keys should be stored in ~/.ssh/ Importing Public Key to Remote Machine Option #1 - Manual Configuration SSH into remote server, with username + password cd into your /home directory, and mkdir .ssh Copy public key from local to remote machine scp ~/.ssh/my_key.pub user@0.0.0.0:/home/username/.ssh/my_key.pub Append SSH public key to authorized hosts file cat ~/.ssh/my_key.pub >> ~/.ss...

A Quick-Start Guide for the Hak5 SharkJack, a portable network attack tool Access the SharkJack Switch to Arming Mode (center), and connect to PC via Ethernet Find the IP: Default is 172.16.24.1, run ifconfig to check Login: ssh root@172.16.24.1, using password hak5shark On first setup, change the default password, run passwd Navigating the SharkJack The active payload is located at: ~/payload/payload.sh Captured loot is stored with the ~/loot/... directory To save all loot locally, run:...

When I heard that Zoom had acquired Keybase last week, my initial reaction was that it was a prank. A bit of background Keybase is a cryptography-based platform, where you control your private keys and use them to encrypt files, messages and more. It's mostly used by techy people and the privacy-conscious. Personally, I've been a big fan, and user of keybase for the past 4 years. And Zoom, it seemed to come from nowhere when lockdown started, suddenly it was super popular: it has allowed us to...

Dear Universe, Thanks! ...

-----BEGIN PGP PUBLIC KEY BLOCK----- mQENBF48O4ABCAC9IEjW7+Q2uF7efrxguXeRVr0NgHPIbTdAioVp2TkPlAi+h+yW gbyeluutVlg2Mo5uWccPBaPHLm9Pr0CKTKiF8Y1RrYiDZ8RmyJSNux40FBGFPsNs mfj3v7pjdTinI4v+EW8Lqd704fGCkgEpUpamefI2O8Hc7pHAtH1PUz99dcO1ThDY Bn5grO8CPmM6XfRIHvBf7oJ0DwBH/yoS5Gjs2P4ijk/GMplApaVroCo8dAjyS7QJ xreko5yVr2hhzrIznJYc63UBe6lAoM7wpArLCHxJ2fw1zHMuWg431EnpZa5nwrml iSXizo1MuVUXm1Mt52wb3s26koLUoCXhNcqfABEBAAG0KEFsaWNpYSBIYWlnLVRo b21hcyA8YWxpY2lhLmh0QGFsaWNpYS5odD6JAU4EEwEIADgWIQSEJgDk7beVIXMv TmyOI+x...

Pi Hole has an API that can be hit from browser, PostMan or CLI This is useful for creating a physical button, voice command or automation script To enable or diable Pi Hole, just hit the following end points Disable URL : http://pi.hole/admin/api.php?disable&auth=[WEB_PASSWORD] Enable URL : http://pi.hole/admin/api.php?enable&auth=[WEB_PASSWORD] Disable for [X] Seconds: http://pi.hole/admin/api.php?disable=[X]&auth=[WEB_PASSWORD] [WEB_PASSWORD] can be found in /etc/pihole/setupVa...

This is my blog. It has a bunch of random notes. The stuff here is mostly pointless, some of it's cool- but most of it pointless. Kind of like the rest of what I do with my life. I keep the posts and information up-to-date. ...