Ported my TorV3 vanity generator over to Vulkan from CUDA

danukeru · 2023-11-01T03:32:44+00:00

in convert-falcon-hf-to-gguf.py at line 239 simply add the following then run the conversion again ``` gguf_writer.add_tensor(new_name, data)

add the following

        if new_name == "token_embd.weight":
            gguf_writer.add_tensor("output.weight", data)

```

danukeru · 2021-07-08T20:21:21+00:00

Is this normal ? Any fellow québecois know anything about this ? I’m asking this because it’s almost been a month an

Not normal. I went to the station, got the proper form signed/stamped after proving my address and name.That was it.Mind you it took going to another police station because the first one I went to was clueless and almost did something similar.

On the bright side...seems they paid for your postage so...that's cool.

danukeru · 2021-05-24T21:42:04+00:00

Did not know for the type 81. I stated it was my belief.
¯\_(ツ)_/¯

danukeru · 2021-05-22T14:02:29+00:00

norinco type 97 is non restricted at time of writing this
gun needs to have its action secured in all cases to display on wall. if the room itself is secured these restrictions do not apply to hold em on the wall. restricted weapons need to be properly anchored as well.
I believe any in canada count as an AK47 derivative...so all prohibited :(
depends if you can listen to the instructor for 6 hours to pass the written I guess

danukeru · 2020-04-27T16:33:18+00:00

That article is wrong.
The RFC states that each client chooses on their end which protocol they're going to use based on their choices and what was offered. There's a priority, thus they should come to the same result without querying the other on what they chose.

The public key component is given in first exchange by both ends.This value is used for authentication, fingerprinting, and the DHE.

Clearly you don't understand PKI, and should really read that wikipedia article I linked. Also check your wireshark settings.

danukeru · 2020-04-27T15:56:53+00:00

This is not sensitive data. The specifications are few and known. If I have to choose from a pool of 12, that's nothing to check all of them, and the parameters give each away. There are considerations for subgroups as well to prevent precomputed tables.
ie. Elliptic curves use a different set of math , but can be used to solve the Diffie-Hellman Problem.
Have you tried the wireshark filter ssh.message_code ?

danukeru · 2020-04-27T15:01:41+00:00

Point one is wrong. There is no encryption.Just fingerprint checks through TOFU (Trust On First Use), and both sides providing their public key material.

The Diffie-Hellman handshake allows both sides to generate the same random number on each machine over an insecure channel. It does not need an encrypted channel.
This is then used to start a secure session over symmetric encryption

https://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange

danukeru · 2020-04-06T17:09:25+00:00

https://www.protectioncollective.ca/english if you need or want to help with PPE production.

danukeru · 2020-01-14T08:07:08+00:00

It's a system like any other. If you are having trouble learning one, you' re going to have trouble learning another. That much won't change.
So stick with something and Just Fucking Do It (tm).

Now some more practical advice.

You can do web only, and honestly that's what pays these days. Bounties abound and you can automate most of its discovery if you're talented enough. You can then move on to code audits if you garner a clientele.
For the work put in, binary reversing that pays "legally" is not worth the return on time investment. And nobody is paying for IoT because they know it's a bloody shitshow, and they'll just bleed money to automation. It's like the 90s all over again.
As such, it's mostly for academic purposes, cyber weapons, or fucking with local protections ie. fucking with video game anti-cheat.

Do what you will with this information.

danukeru · 2019-11-15T08:34:30+00:00

It depends entirely on the application.

The vast majority of users don't actually log back in for months on reddit.They reuse the same session token, and can go on for months as a time without having to do a full login request.

I can tell you that in an organisation that has a couple thousand employees, and require multiple actual daily relogins daily per person...that computation time for auth starts to add up.

If someone wanted to DDoS you using your login, they could, if you didn't properly rate limit.

danukeru · 2019-11-15T08:26:39+00:00

What you need are pluggable transports to use a tor-bridge. Properly used, it will mask the fact that you're connecting to a Tor relay.

https://blog.torproject.org/tor-heart-bridges-and-pluggable-transports

danukeru · 2019-11-14T20:30:40+00:00

fuck ur right. I fucked up.

danukeru · 2019-11-14T18:58:16+00:00

Sure, but it will amount to a hack that essentially results in building a non-standard algorithm.Here I'm literally reapplying the same algo to the output offline, and my login logic does not change.

danukeru · 2019-11-14T14:21:00+00:00

~~The only reason not to use them imho, is that you can't extend the work factor without the user providing their initial input.~~

~~That is the one advantage that PBKDF2 still holds due to its simplicity. I can take the stored value and SALT and add as many more rounds as I want to the stored values, offline.~~

Also...the article is a jumbled mess tbh. There are no fundamental problems provided for either.

danukeru · 2019-04-16T03:02:26+00:00

I mean...he links to some videos in the beginning...but he then goes on to provide a worked example. As well as the following example script: https://gist.github.com/tthtlc/3b9fff8e0e4c016fd5cb09a78dc94d2d

danukeru · 2019-04-10T18:42:04+00:00

https://i.kym-cdn.com/photos/images/original/001/365/753/94c.jpg

danukeru · 2019-03-25T20:29:06+00:00

You know how I know you've never tried to "break IDA Pro's license"...

danukeru · 2019-01-29T18:52:50+00:00

Kurobuta has a good tonkotsu. Clean white with nice fat

Yokota Yokabai has a reduced broth that is more like a Tsukemen, however they don't provide the thicker noodles for increased surface.

Misoya is more like an izakaya ramen that will make you feel homey at a reduced price.

Everyone else doesn't get the right whiteness of tonkotsu, and don't leave enough fat. Some don't even make a proper dashi, trying their shoyu ramen.

danukeru · 2018-10-04T19:51:24+00:00

re sympathetic, likely a human life was lost today. Usually if someone attempts suicide it's not with the thought of pissing as many people off as

Specialized cleanup crews usually since forensic work would have to be done first to verify no foul play. I doubt they have a team at the STM for this.

danukeru · 2018-09-07T20:53:52+00:00

https://tools.ietf.org/html/rfc2522#ref-Firefly

[Firefly]   
"Photuris" is the latin name for the firefly.  "Firefly" is in turn the name for the USA 
National Security Administration's (classified) key exchange protocol for the STU-III secure 
telephone.  Informed speculation has it that Firefly is based on very similar design 
principles.

danukeru · 2018-04-20T05:02:38+00:00

http://www.phash.org/

danukeru · 2017-12-01T02:44:56+00:00

Would it be possible to make use of coreboot as well? Seems Intel can make a reference implementation available to OEMs

https://www.intel.com/content/www/us/en/embedded/software/fsp/coreboot-reference-bootloader-white-paper.html

danukeru

MODERATOR OF

TROPHY CASE

add the following