Два дня был экспертом на хакатоне по разработке для студентов. Участники, как правило, 4-5 курс, бакалавры и магистры. Многие ребята очень сильные, показали отличный результат, получше, чем у некоторых взрослых программистов с резюме и зарплатой.
Так вот, заметил интересный эффект. Студенты — даже очень компетентные — не могут побороть желание переусложнять систему и использовать чуть ли не все известные им фреймворки и технологии. Даже не знаю, какую аналогию привести — представьте что терапевт делает вам 20 различных видов осмотра на приёме и просит сдать 20 анализов на разные виды вирусов и других болезней, которые ему известны. Вроде и плохого ничего, но и не нужно. С архитектурой приложений аналогично: надо не только знать, что и когда применить, но и чувствовать, что и когда НЕ применять. Это, конечно, приходит с опытом.
Справедливости ради, многие энтерпрайз системы, которые делаются состоявшимися специалистами, тоже переусложнены: условному Твиттеру, конечно же, не нужна никакая тысяча микросервисов. Но там на разработку еще и бизнес влияет и избыток ресурсов, а здесь у студентов тяга к умножению сущностей проявилась особенно ярко и характерно. Например, команда крутых технарей из Бауманки сделала чат-бота на 40 контейнерах, девопс там конечно красавчик, но к дедлайну до конца соединить не успели (хотя всё равно заняли призовое место).
#dev
По теме мне особенно нравится вот эта картинка:
Nora-Desktop
Facebook, Instagram, Reddit, Threads and X in a single app. No ads. Features a deck view to easily browse multiple timelines. Linux, Android, macOS, Windows versions are available. (GNU GPL3)
Features
1. No ads
2. Download image
3. Download fb/ig/x video
4. Select text
5. Zoom
6. Remove tracking url query params
Supported SNS (Social-Networking-Sites)
1. Bluesky
2. Facebook
2. Instagram
4. LinkedIn
5. Reddit
4. Threads
5. TikTok
6. Tumblr
7. VK
8. X (Twitter)
How it works
Wrap the SNS websites in Android webview
Inject code to block ads
Get it on GITHUB : https://github.com/nonbili/Nora-Desktop
Get it on F-DROID (main repo) - https://f-droid.org/packages/jp.nonbili.nora/
Also available on gulag store
Disclaimer : we don't promote any of those zionist occupied censored websites and apps and are firmly against using them as they are nothing but #spyware designed to make people dumb
Windows reference manual
If you suddenly find you have Windows on your hard drive:
- dd if=/dev/zero of=/dev/[drive]
- burning causes pollution so just call an exorcist
General:
- https://rentry.co/fwt
- https://t.me/NoGoolag/2549
- https://tb.rg-adguard.net/public.php
- https://github.com/jebofponderworthy/windows-tools
- https://github.com/massgravel/Microsoft-Activation-Scripts
App managers:
- https://chocolatey.org
- https://scoop.sh
- https://store.rg-adguard.net
Telemetry:
-https://docs.microsoft.com/en-us/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services
- https://docs.microsoft.com/en-us/windows/privacy/configure-windows-diagnostic-data-in-your-organization
- https://github.com/mirinsoft/debotnet
- https://github.com/Sycnex/Windows10Debloater
Security reference:
- https://docs.microsoft.com/en-us/windows/security
- Use Enterprise edition. It has a lot more security features.
- Use Virtualization Based Security to stop stuff like mimikatz or capcom.sys
- https://github.com/beerisgood/Windows10_Hardening
- https://www.microsoft.com/security/blog/2020/03/17/secured-core-pcs-a-brief-showcase-of-chip-to-cloud-security-against-kernel-attacks/
- https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies
- https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings#a-href-idbkmk-unlockpol1arequire-additional-authentication-at-startup
- https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/controlled-folders
-https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview
- User accounts is part of the windows security model, its better to use an admin account only when you need it rather than 24/7
#windows#spyware
🛑 WhatsApp alerted ~200 users targeted by a fake iOS app carrying #spyware, mostly in Italy.
The attack used social engineering to mimic #WhatsApp. Meta is acting against an Italian firm linked to the spyware.
🔗 Read details here → https://thehackernews.com/2026/04/whatsapp-alerts-200-users-after-fake.html
https://lnkd.in/e25HNh7A
Alhamdulillah, I finished writing this book in few days.
I wrote this book to help my friends:
Nurkhankyzy Aiya, Acute myeloid leukemia (AML).
and all those children who are fighting for their lives.
Why is the book called that? AIYA MMD - means Attack and Introduction or (Android and IOS), start Your Adventure in Mobile Malware Development. also AIYA means AIYA Nurkhankyzy.
I will be very happy if this book helps at least one person to gain knowledge and learn the science of cybersecurity. The book is mostly practice oriented.
Of course the book is not as big as my previous works, this is because firstly I needed to urgently start a fundraising campaign for the Aiya and secondly many things remain confidential (NDA)
Mobile malware - it's a constantly evolving battlefield. What you learned here is just the beginning. Tools change, defenses adapt, but the mindset stays the same: think like the adversary to build stronger defenses.
This book is dedicated to my wife, Laura, and my children, Yerzhan and Munira. I would like to express my deep gratitude to my friends and colleagues.
Special thanks to #Russian#hacking#community, Medet Turin 2600.kz, BlackIce #hackerspace from Almaty (Kazakhstan) and my friends from Middle East countries: Kingdom of Bahrain, Kingdom of Saudi Arabia, UAE.
All examples are practical cases for educational and research purposes only.
Book design by: Muhammad Patel
twitter: https://x.com/cocomelonckz/status/1924724518951457229
#hacking#mobile#malware#research#book#programming#android#ios#rat#spyware
https://lnkd.in/e25HNh7A
Alhamdulillah, I finished writing this book in few days.
I wrote this book to help my friends:
Nurkhankyzy Aiya, Acute myeloid leukemia (AML).
and all those children who are fighting for their lives.
Why is the book called that? AIYA MMD - means Attack and Introduction or (Android and IOS), start Your Adventure in Mobile Malware Development. also AIYA means AIYA Nurkhankyzy.
I will be very happy if this book helps at least one person to gain knowledge and learn the science of cybersecurity. The book is mostly practice oriented.
Of course the book is not as big as my previous works, this is because firstly I needed to urgently start a fundraising campaign for the Aiya and secondly many things remain confidential (NDA)
Mobile malware - it's a constantly evolving battlefield. What you learned here is just the beginning. Tools change, defenses adapt, but the mindset stays the same: think like the adversary to build stronger defenses.
This book is dedicated to my wife, Laura, and my children, Yerzhan and Munira. I would like to express my deep gratitude to my friends and colleagues.
Special thanks to #Russian#hacking#community, Medet Turin 2600.kz, BlackIce #hackerspace from Almaty (Kazakhstan) and my friends from Middle East countries: Kingdom of Bahrain, Kingdom of Saudi Arabia, UAE.
All examples are practical cases for educational and research purposes only.
Book design by: Muhammad Patel
twitter: https://x.com/cocomelonckz/status/1924724518951457229
#hacking#mobile#malware#research#book#programming#android#ios#rat#spyware