The best Hacker News stories from Show from the past day
Latest posts:
Show HN: Sendenv, a CLI tool to share environment variables
My weekend project sendenv is a CLI tool that lets you share environment variables securely with someone else. It is built on top of magic-wormhole which allows for safe, account-free data transfer. When you send variables using sendenv, it creates a one-time code. You give this code to the person who needs the variables. They use the code in their shell to load the variables. This is handy for quickly setting up new team members or copying local environment variables to another system.<p>Its currently in alpha obviously, but the core functionality works (I have tested sending vaults from a Macbook Air M1 to a ubuntu ec2 instance). I have a lot of follow up ideas to make this better, but wanted the community's feedback before I invest more time on this.<p>Thanks for reading!
Show HN: Atlas – GIS and interactive maps in the browser
Show HN: Atlas – GIS and interactive maps in the browser
Show HN: Built a self hosted clean status page and batteries
Status pages have been the way they have seen the mid 2010s. There are few new ones but they are paid. So I decided to build this using svelte + sveltekit. It has all the necessary features. Few are yet to be built. Do check it out
Show HN: Built a self hosted clean status page and batteries
Status pages have been the way they have seen the mid 2010s. There are few new ones but they are paid. So I decided to build this using svelte + sveltekit. It has all the necessary features. Few are yet to be built. Do check it out
Show HN: AskYoutube, Smarter Video Search
Show HN: Simple tool to generate Open Graph meta tags
Show HN: Epsio – Incremental views for your existing database
Show HN: Simply Reading Analog Gauges – GPT4, CogVLM Can't
Show HN: Simply Reading Analog Gauges – GPT4, CogVLM Can't
Show HN: Simply Reading Analog Gauges – GPT4, CogVLM Can't
Show HN: Vx.dev – GitHub-Powered AI for effortless development
Show HN: OpenPledge – Make a career with Open Source contributions
Hey!<p>As a full-stack developer involved in world of open source, I've often encountered valuable repositories with solutions to my problems, only to find them abandoned for years. Faced with the dilemma of contributing to such projects during work hours, I thought of a solution.<p>That's when the concept of OpenPledge was born — a web platform designed to address this very issue by allowing users (or corporations) to financially support specific open source issues. Imagine, no more abandoned projects, and developers passionate about contributing to open source can now do so more seamlessly and as a full time job.<p>OpenPledge has secured investment, and we're set to launch in February. Join us in shaping the future of open source sustainability.<p>Share your ideas, be an early adopter, and contribute to a thriving open source community.
Visit <a href="https://openpledge.io?source=hn2" rel="nofollow">https://openpledge.io?source=hn2</a> now!
Show HN: Pfuzz, a web fuzzer following the Unix philosophy
I recently dipped my toes into bug bounty hunting and finding security flaws in web applications. As a friend of UNIX shells I was building a repertoire of command line tools to make and analyze HTTP requests. Fortunately there are already many suitable tools like curl, jq, different fuzzers and some really nice tools for specific tasks by Tom Hudson [1].<p>However, I disliked that the existing fuzzers were monoliths where I had no easy way of creating custom behavior or analyses. They commonly do a multitude of things: Create multiple requests using one or more wordlist, sending the request, possibly with rate limiting, displaying progress, applying filters to the received responses and storing the output. If you want something different from the offered features, for example custom delays between requests or a new filter for the responses, your only option is to dig into a moderately large code base and try to adapt it to your needs.<p>I am a fan of the UNIX philosophy and felt like it could help out here. If there was a common format for communicating HTTP requests and responses, an ecosystem of small, specialized tools could use it to work together and fulfill tasks like fuzzing, while allowing the user to easily create custom behavior by combining the existing tools in different ways or adding small, quick to write tools to the ecosystem.<p>This is what I've attempted with the httpipe format [2]. It is a line based JSON format for exchanging HTTP requests and responses. I have also built some first tools using this format, namely pfuzz [3] for creating HTTP requests from wordlists, preq [4] for sending HTTP requests and receiving their responses and hpstat [5] for filtering the responses by their HTTP status codes. Since it's a line based format, many UNIX tools can be used with it as well and since each line is JSON, jq can also be used for manipulation, filtering and displaying.<p>[1] <a href="https://github.com/tomnomnom">https://github.com/tomnomnom</a><p>[2] <a href="https://github.com/codesoap/httpipe">https://github.com/codesoap/httpipe</a><p>[3] <a href="https://github.com/codesoap/pfuzz">https://github.com/codesoap/pfuzz</a><p>[4] <a href="https://github.com/codesoap/preq">https://github.com/codesoap/preq</a><p>[5] <a href="https://github.com/codesoap/hpstat">https://github.com/codesoap/hpstat</a>
Show HN: Pfuzz, a web fuzzer following the Unix philosophy
I recently dipped my toes into bug bounty hunting and finding security flaws in web applications. As a friend of UNIX shells I was building a repertoire of command line tools to make and analyze HTTP requests. Fortunately there are already many suitable tools like curl, jq, different fuzzers and some really nice tools for specific tasks by Tom Hudson [1].<p>However, I disliked that the existing fuzzers were monoliths where I had no easy way of creating custom behavior or analyses. They commonly do a multitude of things: Create multiple requests using one or more wordlist, sending the request, possibly with rate limiting, displaying progress, applying filters to the received responses and storing the output. If you want something different from the offered features, for example custom delays between requests or a new filter for the responses, your only option is to dig into a moderately large code base and try to adapt it to your needs.<p>I am a fan of the UNIX philosophy and felt like it could help out here. If there was a common format for communicating HTTP requests and responses, an ecosystem of small, specialized tools could use it to work together and fulfill tasks like fuzzing, while allowing the user to easily create custom behavior by combining the existing tools in different ways or adding small, quick to write tools to the ecosystem.<p>This is what I've attempted with the httpipe format [2]. It is a line based JSON format for exchanging HTTP requests and responses. I have also built some first tools using this format, namely pfuzz [3] for creating HTTP requests from wordlists, preq [4] for sending HTTP requests and receiving their responses and hpstat [5] for filtering the responses by their HTTP status codes. Since it's a line based format, many UNIX tools can be used with it as well and since each line is JSON, jq can also be used for manipulation, filtering and displaying.<p>[1] <a href="https://github.com/tomnomnom">https://github.com/tomnomnom</a><p>[2] <a href="https://github.com/codesoap/httpipe">https://github.com/codesoap/httpipe</a><p>[3] <a href="https://github.com/codesoap/pfuzz">https://github.com/codesoap/pfuzz</a><p>[4] <a href="https://github.com/codesoap/preq">https://github.com/codesoap/preq</a><p>[5] <a href="https://github.com/codesoap/hpstat">https://github.com/codesoap/hpstat</a>
Show HN: Pfuzz, a web fuzzer following the Unix philosophy
I recently dipped my toes into bug bounty hunting and finding security flaws in web applications. As a friend of UNIX shells I was building a repertoire of command line tools to make and analyze HTTP requests. Fortunately there are already many suitable tools like curl, jq, different fuzzers and some really nice tools for specific tasks by Tom Hudson [1].<p>However, I disliked that the existing fuzzers were monoliths where I had no easy way of creating custom behavior or analyses. They commonly do a multitude of things: Create multiple requests using one or more wordlist, sending the request, possibly with rate limiting, displaying progress, applying filters to the received responses and storing the output. If you want something different from the offered features, for example custom delays between requests or a new filter for the responses, your only option is to dig into a moderately large code base and try to adapt it to your needs.<p>I am a fan of the UNIX philosophy and felt like it could help out here. If there was a common format for communicating HTTP requests and responses, an ecosystem of small, specialized tools could use it to work together and fulfill tasks like fuzzing, while allowing the user to easily create custom behavior by combining the existing tools in different ways or adding small, quick to write tools to the ecosystem.<p>This is what I've attempted with the httpipe format [2]. It is a line based JSON format for exchanging HTTP requests and responses. I have also built some first tools using this format, namely pfuzz [3] for creating HTTP requests from wordlists, preq [4] for sending HTTP requests and receiving their responses and hpstat [5] for filtering the responses by their HTTP status codes. Since it's a line based format, many UNIX tools can be used with it as well and since each line is JSON, jq can also be used for manipulation, filtering and displaying.<p>[1] <a href="https://github.com/tomnomnom">https://github.com/tomnomnom</a><p>[2] <a href="https://github.com/codesoap/httpipe">https://github.com/codesoap/httpipe</a><p>[3] <a href="https://github.com/codesoap/pfuzz">https://github.com/codesoap/pfuzz</a><p>[4] <a href="https://github.com/codesoap/preq">https://github.com/codesoap/preq</a><p>[5] <a href="https://github.com/codesoap/hpstat">https://github.com/codesoap/hpstat</a>
Show HN: Nutrient insights through your grocery receipts
Nutri is still in beta and the GPT-powered results are sometimes inaccurate. The nutrient information accuracy is good to get an overview, but there are still outliers at times. I'm looking to improve the accuracy through food databases. Furthermore, I'd like to add additional tips for combining / preparing food to improve its nutritional value. For example, iron absorption is improved through vitamin C, so combine chickpeas or leafy greens with lemon. Or combine beans with rice to get all amino acids.<p>On the UX side, I'd like to integrate a QR code on the desktop version to easily upload receipts through the phone. Furthermore, it would be great to have analytics over weeks on nutrient improvements over time. Nutri could also be a great accountability partner to track items high in sugar / processed foods.<p>What do you think?
Show HN: Nutrient insights through your grocery receipts
Nutri is still in beta and the GPT-powered results are sometimes inaccurate. The nutrient information accuracy is good to get an overview, but there are still outliers at times. I'm looking to improve the accuracy through food databases. Furthermore, I'd like to add additional tips for combining / preparing food to improve its nutritional value. For example, iron absorption is improved through vitamin C, so combine chickpeas or leafy greens with lemon. Or combine beans with rice to get all amino acids.<p>On the UX side, I'd like to integrate a QR code on the desktop version to easily upload receipts through the phone. Furthermore, it would be great to have analytics over weeks on nutrient improvements over time. Nutri could also be a great accountability partner to track items high in sugar / processed foods.<p>What do you think?
Show HN: Nutrient insights through your grocery receipts
Nutri is still in beta and the GPT-powered results are sometimes inaccurate. The nutrient information accuracy is good to get an overview, but there are still outliers at times. I'm looking to improve the accuracy through food databases. Furthermore, I'd like to add additional tips for combining / preparing food to improve its nutritional value. For example, iron absorption is improved through vitamin C, so combine chickpeas or leafy greens with lemon. Or combine beans with rice to get all amino acids.<p>On the UX side, I'd like to integrate a QR code on the desktop version to easily upload receipts through the phone. Furthermore, it would be great to have analytics over weeks on nutrient improvements over time. Nutri could also be a great accountability partner to track items high in sugar / processed foods.<p>What do you think?
Show HN: I made an app people call "Airdrop for Android"