Hacking/attack experiences...
I'm, for obvious reasons, only going to talk about the attacks I went through and the *legal* ones I did 😅 😜

Let's first get some things clear/funny facts:
I've been doing offensive security since I was 14-15. Defensive since the age of 16-17. I'm getting close to 23 now, for the record.

First system ever hacked (metasploit exploit): Windows XP.
(To be clear, at home through a pentesting environment, all legal)
Easiest system ever hacked: Windows XP yet again.

Time it took me to crack/hack into today's OS's (remote + local exploits, don't remember which ones I used by the way):
Windows: XP - five seconds (damn, those metasploit exploits are powerful)
Windows Vista: Few minutes.
Windows 7: Few minutes.
Windows 10: Few minutes.
OSX (in general): 1 Hour (finding a good exploit took some time, got to root level easily aftewards. No, I do not remember how/what exactly, it's years and years ago)
Linux (Ubuntu): A month approx. Ended up using a Java applet through Firefox when that was still a thing. Literally had to click it manually xD
Linux: (RHEL based systems): Still not exploited, SELinux is powerful, motherfucker.

Keep in mind that I had a great pentesting setup back then 😊. I don't have nor do that anymore since I love defensive security more nowadays and simply don't have the time anymore.

Dealing with attacks and getting hacked.

Keep in mind that I manage around 20 servers (including vps's and dedi's) so I get the usual amount of ssh brute force attacks (thanks for keeping me safe, CSF!) which is about 40-50K every hour. Those ip's automatically get blocked after three failed attempts within 5 minutes. No root login allowed + rsa key login with freaking strong passwords/passphrases.

linu.xxx/much-security.nl - All kinds of attacks, application attacks, brute force, DDoS sometimes but that is also mostly mitigated at provider level, to name a few. So, except for my own tests and a few ddos's on both those domains, nothing really threatening. (as in, nothing seems to have fucked anything up yet)

How did I discover that two of my servers were hacked through brute forcers while no brute force protection was in place yet? installed a barebones ubuntu server onto both. They only come with system-default applications. Tried installing Nginx next day, port 80 was already in use. I always run 'pidof apache2' to make sure it isn't running and thought I'd run that for fun while I knew I didn't install it and it didn't come with the distro. It was actually running. Checked the auth logs and saw succesful root logins - fuck me - reinstalled the servers and installed Fail2Ban. It bans any ip address which had three failed ssh logins within 5 minutes:
Enabled Fail2Ban -> checked iptables (iptables -L) literally two seconds later: 100+ banned ip addresses - holy fuck, no wonder I got hacked!

One other kind/type of attack I get regularly but if it doesn't get much worse, I'll deal with that :)

Dealing with different kinds of attacks:

Web app attacks: extensively testing everything for security vulns before releasing it into the open.
Network attacks: Nginx rate limiting/CSF rate limiting against SYN DDoS attacks for example.
System attacks: Anti brute force software (Fail2Ban or CSF), anti rootkit software, AppArmor or (which I prefer) SELinux which actually catches quite some web app attacks as well and REGULARLY UPDATING THE SERVERS/SOFTWARE.

So yah, hereby :P

I'm about to put an iframe in an Angular app that displays a Java applet. This isn't development, it's a suicide note

We recently signed a huge deal with a big, very known vendor. I asked if they had a web interface to the software. Of course, they said, and gave us a link. I clicked the link and was asked to install java. Turns out the web version is just the desktop version wrapped in a Java applet. The applet didn't do well with openjdk, so they asked me to file a support ticket. They gave me another link. The service desk required shockwave flash.

Linux: the weather applet in the panel displays the weather. When I open it, it displays more weather details.

Windows: the weather applet in the task bar displays the weather. When I open it, it displays random news and stock prices.

Microsoft can't even do a fucking weather applet right. Everything has to be an incoherent mess.

So, California, land of no rain whatsoever.

Until today, where it actually rained!

Also today, a weather applet for tmux started misbehaving. Suspicious.

Coincidence, I think not! Sure enough, stopping that applet from running fixed everything. Turns out, the raining icon breaks the terminal, for some strange reason.

And why had this not been discovered earlier? This had been the first time it had rained for at least 8 months, and I added this only 4 months ago. Thus, it had never had its time to shine.

Yay for strange encoding!

Anyway, I now have a new excuse; blame bad code on global warming.

I know we're trying to stay away from Flash. I've heard that most browsers these days support cookies. Could you work it into a "cookie applet?"

"Our company encourages cryptocurrency big data agile machine learning, empowerment diversity, celebrate wellness and synergy, unpack creative cloud real-time front-end bleeding edge cross-platform modular success-driven development of digital signage, powered by an unparalleled REST API backend, driven by a neural network tail recursion AI on our cloud based big data linux servers which output real time data to our Wordpress template interactive dynamic website TypeScript applet, with deep learning tensor flow capabilities.

Don't get what the fuck I just said? Udemy offers countless courses on python based buzzwords. Be the first out of 13 people to sell your soul and private information, and you'll get the first three minutes of the course free!"

Java is an Object Oriented Programming (OOP) language created by James Gosling of Sun Microsystems. JavaScript is a scripting language that was created by the fine people at Netscape and was originally known as LiveScript. JavaScript is a (very) distant cousin of Java in that it is also an OOP language. Many of their programming structures are similar. However, JavaScript contains a much smaller and simpler set of commands than does Java.

Now let's talk about how Java and JavaScript differ. The main difference is that Java can stand on its own while JavaScript must (primarily) be placed inside an HTML document to function. Java is a much larger and more complicated language that creates "standalone" applications. A Java "applet" (so-called because it is a little application) is a fully contained program. JavaScript is text that is fed into a browser that can interpret it and then it is enacted by the browser--although today's web apps are starting to blur the line between traditional desktop applications and those which are created using the traditional web technologies: JavaScript, HTML and CSS.

Taking JAVA I this semester and apparently the professor took out applets from the curriculum for the first time.

Getting back to the cpp applet I started somewhat recently (Vanilla + Gentoo kernel version checker)...

Me: "debugging c plus plus code"
Dictation: "f***ing c++ code"
...
Well, it's not too far off.

Powershell is fucking great. Expand my shitty variable before I call the applet. Fucking call the applet and you shit yourself stupid and think the variable is now empty. Take my variable and shove it up your daft gigantic ass powershell. Fuck you.

Well we all know about McAfee right
Well today i went to their online support and had a chat with one of their so called technicians. At one point of this so called assistance he asked me for remote control. Then as an employee of a renowned anti virus company he sent me a link to a java applet to be run in google chrome. I mean what the fuck. Didn't they get the note that chrome stopped supporting applets a long way back. Assholes

Going through the IFTTT Applet Maker just makes me jealous of all of the cool IOT stuff I don't have...

The most stressful day of month.
I need to put hours into hour counting programs so computer can analyze those hours using deep learning algorithms and pay me a wage I don't deserve.

Each program work differently.
One of it works inside the local company network.
Other one I need to connect outside from company network.
In all of them I can't make mistake or I need to write to someone to fix my mistakes.
One of this programs use java applet, other is simple php website.
One of them blocks row in calendar when I click so when I login again and click I can't edit this row because it's locked by me who is editing this row.
One of them is requesting me to provide my work in minutes.
I need to follow strict procedures to report any holidays or national holidays that I need first figure out when they happen.
Wish me luck.

I just realized: People bitching about JS standard library, bundle size, need to use polyfills etc - is useless IMO. We need to start viewing transpilers as compilers and overall JS ecosystem like we are developing something in ActionScript Flash/Java Applet and exporting it for use inside browsers. And forget about "bad parts" of standard clean JS overall. See clean JS like it's as bad as it was in the past. (because without polyfills you still don't have most of the major es6 features in the IE browsers)

In the past we needed Flash plugins, Java plugins for applets, and they had size way larger than average JS bundle nowadays.

What you think?

Hi mates..

The default Network Manager Applet provided by Xubuntu is unbearable.

It randomly resizes the applet popup into different sizes eachtime.
No nees to tell about the unnecessary scrolling on popup.

Is there any alternative for this...?

I hate when studying computer engineering but university want us to learn non technical subjects or outdated topics such as applet in java, who the fuck is using applets now days,
Or no single word about react, flutter,or recent framework and teaching php and JSP,and vb.net

So I've been running into a bug on my arch/budgie system. It's not a huge deal but just something that bothers me a little. Basically, the nm-applet isn't displaying the network icon in the main panel, aka taskbar. Seems to be something specific to budgie maybe? Bc it appears in gnome and the network appears to have started in both cases. Anyways, I've searched around online with no solutions yet :/ A workaround I've had was to install network-manager-applet and have that start up instead. Seems to work until you click the icon and then click away and it disappears, aka I guess kills the process. Any other solutions or has anyone experienced this?