mylamour

(?i)((access_key|access_token|admin_pass|admin_user|algolia_admin_key|algolia_api_key|alias_pass|alicloud_access_key|amazon_secret_access_key|amazonaws|ansible_vault_password|aos_key|api_key|api_key_secret|api_key_sid|api_secret|api.googlemaps AIza|apidocs|apikey|apiSecret|app_debug|app_id|app_key|app_log_level|app_secret|appkey|appkeysecret|application_key|appsecret|appspot|auth_token|authorizationToken|authsecret|aws_access|aws_access_key_id|aws_bucket|aws_key|aws_secret|aws_secret_key|aws_token|AWSSecretKey|b2_app_key|bashrc password|bintray_apikey|bintray_gpg_password|bintray_key|bintraykey|bluemix_api_key|bluemix_pass|browserstack_access_key|bucket_password|bucketeer_aws_access_key_id|bucketeer_aws_secret_access_key|built_branch_deploy_key|bx_password|cache_driver|cache_s3_secret_key|cattle_access_key|cattle_secret_key|certificate_password|ci_deploy_password|client_secret|client_zpk_secret_key|clojars_password|cloud_api_key|cloud_watch_aws_access_key|cloudant_password|cloudflare_api_key|cloudflare_auth_k

mylamour

How to use Mac KeyChain to store GitHub repos credentials?

You know the pain, you cloned a repo over HTTPS, and now Git asks you for your password each time you want to push or pull.

Chances are you already have the git credential-osxkeychain command installed. If not, just install Git with brew: brew install git.

Once installed, just tell Git to use the KeyChain to store your credentials:

git config --global credential.helper osxkeychain

mylamour

Artical

• https://medium.com/@coolx28/security-oriented-open-source-continuous-fuzzing-101-from-start-to-finish-637eaceb9acb
• https://foxglovesecurity.com/2016/03/15/fuzzing-workflows-a-fuzz-job-from-start-to-finish/
• https://research.aurainfosec.io/hunting-for-bugs-101/
• https://labsblog.f-secure.com/2017/06/22/super-awesome-fuzzing-part-one/
• https://thecyberrecce.net/2017/03/20/software-exploit-development-fuzzing-with-afl/
• https://www.sec-consult.com/wp-content/uploads/files/vulnlab/the_art_of_fuzzing_slides.pdf
• https://hackernoon.com/afl-unicorn-fuzzing-arbitrary-binary-code-563ca28936bf

mylamour

前言

上篇博客我说，最近可能是突破瓶颈期了，然后应该会陷入新的瓶颈。然后突然发现其实不然.本篇博客将浅显得讨论一下反入侵体系的建设。

原则

所谓的道术器，即治理的方向，方法，依赖工具。打个比方： 骑x向x走。 骑就是治理方法，治理方向就是向哪走，骑的那个东西就是依赖的工具。反入侵的治理过程的道术器一言以蔽之就是：通过安全产品分别从数据安全和产品安全角度进行识别、防御、检测、响应、恢复。其中识别、防御属于阻止Preventive，响应、恢复属于校正Corrective，还有一部分就是Detective。一个完整的治理就应该是从预防到检测最后到校正的阶段。同时在每一个阶段中继续采用这种方向方法依赖的模型去进行思考。

mylamour

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <title>Taichi</title>
    <style>
      .taichi {
        width: 400px;
        height: 400px;

mylamour

import ebooklib
from ebooklib import epub

book = epub.read_epub('./Enterprise Security Architecture.epub')

for image in book.get_items_of_type(ebooklib.ITEM_IMAGE):
    with open('./test/{}'.format(image.file_name.split('/')[-1]),'wb') as im:
        im.write(image.content)

mylamour

import time
import random
import pyautogui

FLAG = True
OFFLINETIME = "18:00:00"

while True:

    t = time.localtime()

mylamour

#!/bin/bash

mkdir -p RSAKeypairs SM2Keypairs AESKeypairs SM4Keypairs

for i in $(seq -w 0 40)
do
    echo "No. $i"
    echo "create 2048/Short RSA KEY"

    openssl genrsa -out ./RSAKeypairs/sh_hsm_supplement_rsa_short_private_$i.pem 2048

mylamour

This is a reading note, hope it was helpful.

1. PRC Concept

Please keep it in your mind

1. Purpose
   1. To Inform
   2. To Request
   3. To Persuade
2. To Suggest or Recommend

mylamour

import re

from github import Github

# First create a Github instance:

# using an access token
g = Github("")

# Github Enterprise with custom hostname