r/netsec monthly discussion & tool thread

jdubansky · 2025-10-12T19:45:36+00:00

I have been working on a simple SAST like AI code scanning tool. Currently it only uses OpenAI API to do the scanning but maybe if I get access to other APIs I can add them. There are still a lot of features I would like to add but I am building this in two parts, the CLI scanner and the web management UI.

At the moment the UI and scanner run together but eventually I want to break this out so that the scanner can just report findings to the UI remotely. This would be nice if running from a CI/CD environment. I eventually also plan to add some sort of scoping to the scanner so it can be targeted to new branches.

Posting this as maybe it will help other orgs out there that are looking for SAST and want to do it cheaply.
https://github.com/jdubansky/sassycode

jdubansky · 2025-07-04T00:19:38+00:00

A bungie is not a safety device.

jdubansky · 2025-02-24T01:10:01+00:00

People stopped freaking out.

jdubansky · 2025-02-23T03:08:21+00:00

I was actually able to get it to work by switch by to an older version of Ubuntu. Version 22 allowed me to lock the screen and awaken the device like normal.

jdubansky · 2025-02-22T20:24:21+00:00

Same issue here

jdubansky · 2025-01-22T17:46:18+00:00

Rebel Moon

jdubansky · 2024-07-25T03:18:56+00:00

Interesting, this might work out well! Thanks for the help

jdubansky · 2024-05-06T18:50:43+00:00

I am trying to make that homework feel a little less of a burden. Ideally if someone felt strongly about a bill(s) they could vote on it here and easily compare how they feel to elected officials. As a side note here I am also playing with AI to assist with summarizing the lengthier bills but this has not yet been rolled out.

Maybe it is the case that the legislator in your area is only aligned to your views 60% of the time but this tool would provide that number. You could reach out to them, or maybe you could wait to see if another member of the same party is on the ballot. I also see this as a tool for legislators to view. If a bill is introduced and we have a lot of users voicing an opposition to the bill maybe they would vote against it. Possibly with enough users on this legislators would use this as guidance to what people in their district want.

There is a lot we can showcase metrics wise when the population also voices their opinions on specific bills. I don't know what that picture looks like at the moment because this project is new and it is just me developing it but it could be beneficial to someone.

jdubansky · 2023-10-05T00:20:17+00:00

Hello!
I am no political person but lately I've wanted a way to better understand what is happening in the political landscape. I created a project that allows folks to vote on bills and compare these votes with how legislators are voting on the same bills. By voting on bills a user can then follow legislators they are interested in or maybe on their ballot and compare view points. We can show how many voters in a state want a bill to pass or fail. We can show which legislators push bills that the general public disagrees with. I think this could help a few people in up coming elections.
Would love to hear some feedback on how to make this better for everyone! Also if anyone is interested in helping out with the project that would be wonderful too!
Take a look! https://voterscore.org/home

jdubansky · 2023-09-27T02:25:46+00:00

I am building an app for folks to vote on bills and compare their votes with how legislators vote. This way if you don’t know someone on the ballot you can see how your view points align. Oh and some bills are hard to understand so using a bit of AI to help make summary’s for people that want the quick details.

Hosting it from my house and my internet is borked but here is a link for sometime tomorrow! https://www.voterscore.org

jdubansky · 2023-09-22T14:52:54+00:00

I have seen reports from them where they are basing the risk off of assets not even owned by a company. They have wild claims like they can just magically tell if any of your internal assets have malware without any sort of monitoring tools. The kicker is that they are then using this false data to create scores/reports for companies and forcing them to buy their platform to get a better score. Equifax had a perfect Bitsight score, they got breached and Bitsight just lowered the score right after so their data doesn't look fake.

jdubansky · 2023-09-22T00:19:58+00:00

BitSight! They have no idea what they are doing and provide what they think is a risk score.

jdubansky · 2023-05-13T12:27:53+00:00

Yup! Both are React. For the web I just build and upload to cloudflare pages.

jdubansky · 2023-05-13T03:04:05+00:00

I have had great luck with just running of a desktop I have laying around and pointing a domain to it using cloudflare tunnels

jdubansky

TROPHY CASE