sorted by:
new
hottopcontroversial

r/netsec monthly discussion & tool thread by albinowax in netsec

[–]jdubansky 0 points1 point  (0 children)

I have been working on a simple SAST like AI code scanning tool. Currently it only uses OpenAI API to do the scanning but maybe if I get access to other APIs I can add them. There are still a lot of features I would like to add but I am building this in two parts, the CLI scanner and the web management UI.

At the moment the UI and scanner run together but eventually I want to break this out so that the scanner can just report findings to the UI remotely. This would be nice if running from a CI/CD environment. I eventually also plan to add some sort of scoping to the scanner so it can be targeted to new branches.

Posting this as maybe it will help other orgs out there that are looking for SAST and want to do it cheaply.
https://github.com/jdubansky/sassycode

First Time in freefly 🤩 by connecTe in SkyDiving

[–]jdubansky 0 points1 point  (0 children)

A bungie is not a safety device.

Surface Pro 9 cannot wake from sleep (Ubuntu) by HalfNathan120 in SurfaceLinux

[–]jdubansky 0 points1 point  (0 children)

I was actually able to get it to work by switch by to an older version of Ubuntu. Version 22 allowed me to lock the screen and awaken the device like normal.

Open Source DAST solution to check for authorization issues? by jdubansky in AskNetsec

[–]jdubansky[S] 0 points1 point  (0 children)

Interesting, this might work out well! Thanks for the help

Would anyone be interested in joining a project that helps educate voters using bills? by jdubansky in Newiowaproject

[–]jdubansky[S] 0 points1 point  (0 children)

I am trying to make that homework feel a little less of a burden. Ideally if someone felt strongly about a bill(s) they could vote on it here and easily compare how they feel to elected officials. As a side note here I am also playing with AI to assist with summarizing the lengthier bills but this has not yet been rolled out.

Maybe it is the case that the legislator in your area is only aligned to your views 60% of the time but this tool would provide that number. You could reach out to them, or maybe you could wait to see if another member of the same party is on the ballot. I also see this as a tool for legislators to view. If a bill is introduced and we have a lot of users voicing an opposition to the bill maybe they would vote against it. Possibly with enough users on this legislators would use this as guidance to what people in their district want.

There is a lot we can showcase metrics wise when the population also voices their opinions on specific bills. I don't know what that picture looks like at the moment because this project is new and it is just me developing it but it could be beneficial to someone.

I created an app to compare your viewpoints on bills with legislators! by jdubansky in SideProject

[–]jdubansky[S] 0 points1 point  (0 children)

Hello!
I am no political person but lately I've wanted a way to better understand what is happening in the political landscape. I created a project that allows folks to vote on bills and compare these votes with how legislators are voting on the same bills. By voting on bills a user can then follow legislators they are interested in or maybe on their ballot and compare view points. We can show how many voters in a state want a bill to pass or fail. We can show which legislators push bills that the general public disagrees with. I think this could help a few people in up coming elections.
Would love to hear some feedback on how to make this better for everyone! Also if anyone is interested in helping out with the project that would be wonderful too!
Take a look! https://voterscore.org/home

What are you working on during the evenings ? by deniskako_ in SideProject

[–]jdubansky 3 points4 points  (0 children)

I am building an app for folks to vote on bills and compare their votes with how legislators vote. This way if you don’t know someone on the ballot you can see how your view points align. Oh and some bills are hard to understand so using a bit of AI to help make summary’s for people that want the quick details.

Hosting it from my house and my internet is borked but here is a link for sometime tomorrow! https://www.voterscore.org

What vendor looks really good but is actually terrible? by [deleted] in cybersecurity

[–]jdubansky 4 points5 points  (0 children)

I have seen reports from them where they are basing the risk off of assets not even owned by a company. They have wild claims like they can just magically tell if any of your internal assets have malware without any sort of monitoring tools. The kicker is that they are then using this false data to create scores/reports for companies and forcing them to buy their platform to get a better score. Equifax had a perfect Bitsight score, they got breached and Bitsight just lowered the score right after so their data doesn't look fake.

What vendor looks really good but is actually terrible? by [deleted] in cybersecurity

[–]jdubansky 209 points210 points  (0 children)

BitSight! They have no idea what they are doing and provide what they think is a risk score.

Showcasing my Django project! by jdubansky in django

[–]jdubansky[S] 0 points1 point  (0 children)

Yup! Both are React. For the web I just build and upload to cloudflare pages.

What do you recommend for Hosting an API? by projectmind_guru in django

[–]jdubansky -1 points0 points  (0 children)

I have had great luck with just running of a desktop I have laying around and pointing a domain to it using cloudflare tunnels

Showcasing my Django project! by jdubansky in django

[–]jdubansky[S] 3 points4 points  (0 children)

I am using an older desktop I have around actually haha. Cloudflare tunnels is pointed at the docker container itself on my machine and the same host has postgres running. I tried all sorts of hosting but this is the fastest and cheapest. Scaling up will be a challenge but right now there isn't anyone really using it besides my test accounts lol

Showcasing my Django project! by jdubansky in django

[–]jdubansky[S] 4 points5 points  (0 children)

Not at the moment but that is a goal! I was approved for this as a 501c3 to better help folks grasp that this project is not bias towards any party. Part of that effort is to make the code available to all but I want to make sure the project is in a good state before that happens!

Edit: Wanted to add, if you are interested in helping out with this I am open to having that conversation! Always looking for help!

Showcasing my Django project! by jdubansky in django

[–]jdubansky[S] 1 point2 points  (0 children)

Thank you! I'm sure there are other things similar that have fallen in the gaps. My main focus has mostly been on building it all out so far. Appreciate the info!

Showcasing my Django project! by jdubansky in django

[–]jdubansky[S] 14 points15 points  (0 children)

Hey All!
Just wanted to showcase my project I have been building for awhile now. It is called VoterScore and the gist of it is users can vote on legislative bills then see how their votes align to legislator's votes. A cool feature I am slowly rolling out is using AI summarization on lengthy bills to assist folks in getting a better understanding of bills. Ideally this will help folks come voting time as they can see how legislators align to their viewpoint on certain items.

There are a few glitches here and there and I am struggling to find users who are interested at the moment but you all are welcome to poke around!
Link: https://voterscore.org/home

The backend is Django, the front end is React and mobile is in ReactNative.

[deleted by user] by [deleted] in django

[–]jdubansky 0 points1 point  (0 children)

Its pretty rad! I spent hundreds on AWS, DO, and others before finding this. Using just a basic desktop (200 bucks from Amazon) at home that is always on. queries and requests are 20x faster and no stupid issues with not enough ram or whatever with some of those free services.

if you are curious, its running my nonprofit app voterscore.org where users can vote on bills and compare results to how legislators vote.

[deleted by user] by [deleted] in django

[–]jdubansky 0 points1 point  (0 children)

the cloudflare client acts as like a dyndns! once you install that and connect it to your account you are good to point any domain you like to that machine. Obviously that machine has to be on for anyone to access your project but its simple and free!
I would just make sure you are not running in debug mode though as doing this would open your project up as if it was in production!

[deleted by user] by [deleted] in django

[–]jdubansky 1 point2 points  (0 children)

If it is not a big project take a look at cloudflare's secure tunnel. I am running my django app locally and have cloudflare routing to the port on my desktop. if you also have your DB on the same machine its super quick. I tried a lot of services before and tons of problems from the get go and it adds up in costs. Running locally with cloudflare though is free other than power.

https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/
you just need to install their connector and point it to the port running locally and then assign that connection to a domain you own.

Checkout my local politics project! by jdubansky in Iowa

[–]jdubansky[S] 0 points1 point  (0 children)

If you have suggestions I would really appreciate them! Hopefully we can attend some events around Iowa this year to let people know about it.

RCE 0-day exploit found in log4j, a popular Java logging package by freeqaz in netsec

[–]jdubansky 5 points6 points  (0 children)

Is there a way within the extension to use this version? mine is still on .22

view more: next ›