ESP32 Bus Pirate Turns Low-Cost Boards into Multi-Protocol Debugging Tools
An open-source project called ESP32 Bus Pirate has been released, inspired by the classic Bus Pirate and adapted for modern ESP32-S3 hardware. Developed by Geo-tp, the firmware transforms low-cost ESP32 boards into versatile debugging devices that can probe, sniff, and interact with a wide range of digital and radio protocols. The firmware supports protocols such […] ⌘ Read more

yt-dlp will soon require a full JS runtime to overcome YouTube’s JS challenges
If you download YouTube videos, there’s a real chance you’re using yt-dlp, the long-running and widely-used command-line program for downloading YouTube videos. Even if you’re not using it directly, many other tools for downloading YouTube videos are built on top of yt-dlp, and even some media players which offer YouTube playback use it in the background. Now, yt-dlp has alway … ⌘ Read more

Run, Test, and Evaluate Models and MCP Locally with Docker + Promptfoo
Promptfoo is an open-source CLI and library for evaluating LLM apps. Docker Model Runner makes it easy to manage, run, and deploy AI models using Docker. The Docker MCP Toolkit is a local gateway that lets you set up, manage, and run containerized MCP servers and connect them to AI agents.  Together, these tools let… ⌘ Read more

Legacy Update 1.12 released
If you’re still running old versions of Windows from Windows 2000 and up, either for restrocomputing purposes or because you need to keep an old piece of software running, you’ve most likely heard of Legacy Update. This tool allows you to keep Windows Update running on Windows versions no longer supported by the service, and has basically become a must-have for anyone still playing around with older Windows versions. The project released a fairly major update today. Legacy Up … ⌘ Read more

MCP Horror Stories: The Drive-By Localhost Breach
This is Part 4 of our MCP Horror Stories series, where we examine real-world security incidents that expose the devastating vulnerabilities in AI infrastructure and demonstrate how Docker MCP Gateway provides enterprise-grade protection against sophisticated attack vectors. The Model Context Protocol (MCP) has transformed how developers integrate AI agents with their development environments. Tools like… ⌘ Read more

Here is just a small list of things™ that I’m aware will break, some quite badly, others in minor ways:

1. Link rot & migrations: domain changes, path reshuffles, CDN/mirror use, or moving from txt → jsonfeed will orphan replies unless every reader implements perfect 301/410 history, which they won’t.
   
2. Duplication & forks: mirrors/relays produce multiple valid locations for the same post; readers see several “parents” and split the thread.
   
3. Verification & spam-resistance: content addressing lets you dedupe and verify you’re pointing at exactly the post you meant (hash matches bytes). Location anchors can be replayed or spoofed more easily unless you add signing and canonicalization.
   
4. Offline/cached reading: without the original URL being reachable, readers can’t resolve anchors; with hashes they can match against local caches/archives.
   
5. Ecosystem churn: all existing clients, archives, and tools that assume content-derived IDs need migrations, mapping layers, and fallback logic. Expect long-lived threads to fracture across implementations.

Silent Component Updates & Redesigned Update Experience
Following on from our previous initiative to improve how Docker Desktop delivers updates, we are excited to announce another major improvement to how Docker Desktop keeps your development tools up to date. Starting with Docker Desktop 4.46, we’re introducing automatic component updates and a completely redesigned update experience that puts your productivity first. Why We’re… ⌘ Read more

@kat@yarn.girlonthemoon.xyz it is not showing for me, on a validator. Missing something?

Winemaker shares devastation after lithium battery fire guts warehouse
A long-time winemaker says he opened his door to explosions and a black ball of smoke as a fire caused by a cordless screwdriver destroyed a lifetime collection of tools and machinery. ⌘ Read more

Erlang Solutions: Supporting the BEAM Community with Free CI/CD Security Audits
At Erlang Solutions, our support for the BEAM community is long-standing and built into everything we do. From contributing to open-source tools and sponsoring events to improving security and shaping ecosystem standards, we’re proud to play an active role in helping the BEAM ecosystem grow and thrive.

One way we’re putting that support into action is by offering free CI/CD-based security … ⌘ Read more

@kat@yarn.girlonthemoon.xyz dmenu is such a great tool. So simple, yet so versatile.

@prologic@twtxt.net @bender@twtxt.net That’s what I thought as well, sounds way too expensive to me. But I have no idea what the prices are over here. Probably also astronomical. Campers sit around most of the time, one really would need to use them a lot to justify spending so much money on them.

But yeah, each to their own (expensive) hobbies. :-) I, for example, burn my money on tools that I don’t really™ need. :-P

@prologic@twtxt.net Ah, I’m referring to software that’s similar to that of suckless.org: Small, minimal codebases, small tools, but still useful. dmenu is probably the best example and also farbfeld.

Here’s the author of Anubis talking about some of their experiences:

https://xeiaso.net/blog/why-i-use-suckless-tools-2020-06-05/

(You can skip the long config and keybinds part.)

@eldersnake@we.loveprivacy.club This was an interesting read for sure! 👍 I don’t think it had anything I hadn’t already considered in terms of the ethical/moral points of view. I’m not sure where I stand myself either to be honest. I’ve forced myself to get familiar with the ecosystem and tooling, because in my line of work as a tech lead (staff engineer in sre) you don’t want to be that one guy that ya know 😉 Ethically/Morally though, I’m definitely with the sentiment of this post 😅 Much like the whole Crypto hype yaers back (if y’all remember?!) this is also one of the most energy hungry pieces of “tech” (if you can call it that?) in a while. Then there’s these other issues “stealing people’s work”, “reliance is causing humans to become cognitively weak and neural connections to shrink”, to name a few…

@lyse@lyse.isobeef.org I have to say, this sounds much worse than our stuff at work. 🫩 (We don’t use any Microsoft services, at least not for core tools.)

It annoys me when I clone a git repository A in order to build and self-host some software, only to realize later that I also needed to clone repos B, C and D. I’m not saying that’s a bad thing–logical separation of code between, say, a client and a server is very handy–but some projects do not communicate very well when you need multiple tools to get it running independently.

@bender@twtxt.net Maybe one day I’ll take back over my prologic.blog domain from µBlog and redoit with my handy zs tool with some nice CSS 🤣

12 Development Tools
A small list of useful open source tools

Comments ⌘ Read more

container: tool for creating and running Linux containers using lightweight virtual machines on a Mac
Comments ⌘ Read more

Ish: Grep-like text search with optimal alignment, built with Mojo
Associated preprint: https://www.biorxiv.org/content/10.1101/2025.06.04.657890v1

The “built with Mojo” is there because this tool exists specifically to test run Mojo as a language for bioinformatics tool development.

Comments ⌘ Read more

50 Command Line Tools You Wish You Knew Sooner

Image

Master the terminal with these essential commands that will transform your Linux experience from novice to power user.

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/50-command-line-tools-you-wis … ⌘ Read more

105 vibe-coded tools
Comments ⌘ Read more

A tool for burning visible pictures on a compact disc surface
Comments ⌘ Read more

21 Secret Linux Commands Hackers and Sysadmins Don’t Want You to Know About

Image

Not your usual ‘ls’ and ‘pwd’ — these are the real tools used by professionals.

[Continue reading on InfoSec Write-ups »](https://info … ⌘ Read more

GPU Memory Consistency: Specifications, Testing, and Opportunities for Performance Tooling
Comments ⌘ Read more

@lyse@lyse.isobeef.org oh it wouldn’t be very long, maybe that’d make for a fun blog post! i just used the same tool that the nerd font people use to add glyphs, but for a “custom glyph set” i just added. the whole noto font LMAO

How to Make an AI Chatbot from Scratch using Docker Model Runner
Today, we’ll show you how to build a fully functional Generative AI chatbot using Docker Model Runner and powerful observability tools, including Prometheus, Grafana, and Jaeger. We’ll walk you through the common challenges developers face when building AI-powered applications, demonstrate how Docker Model Runner solves these pain points, and then guide you step-by-step through building… ⌘ Read more

**2. Setting Up the Ultimate Hacker’s Lab (Free Tools Only) **

Image

“You don’t need a fortune to break into bug bounty. You just need the right mindset — and the right setup.”

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/2-se … ⌘ Read more

Less TODO, more done: The difference between coding agent and agent mode in GitHub Copilot
We’ll decode these two tools—and show you how to use them both to work more efficiently.

The post Less TODO, more done: The difference between coding agent and agent mode in GitHub Copilot appeared first on [Th … ⌘ Read more

Tools and datasets to support, sustain, and secure critical digital infrastructure
Comments ⌘ Read more

Learning YARA: A Beginner SOC Analyst’s Notes

Image

Learn how to build a YARA-powered malware detection and automation system using n8n, GPT, and hybrid analysis tools. This hands-on guide…

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/learnin … ⌘ Read more

Using lots of little tools to aggressively reject the bots
Comments ⌘ Read more

Tools built on tree-sitter’s concrete syntax trees
Comments ⌘ Read more

FOSS tools for infrastructure testing
Comments ⌘ Read more

GitHub Universe 2025: Here’s what’s in store at this year’s developer wonderland
Sharpen your skills, test out new tools, and connect with people who build like you.

The post GitHub Universe 2025: Here’s what’s in store at this year’s developer wonderland appeared first on The GitHub Blog. ⌘ Read more

Types and other techniques as an accessibility tool for the ADHD brain
Comments ⌘ Read more

Grog: the mono-repo build tool for the grug-brained dev
Comments ⌘ Read more

MikeBot3000: Can We Build an AI Mike from Open Source Tools? - Computerphile ⌘ Read more

I Tried 10 Recon Tools for 7 Days — Here’s What Actually Found Bugs

Image

Free Article Link

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/i-tried-10-recon-tools-for-7-days-heres-what-actually-found-bug … ⌘ Read more

Klinge FPGA Computer Targets Secure, Headless Linux Deployments
Klinge is a compact FPGA-based headless computer designed by Lone Dynamics Corporation. It targets secure networking and long-term Linux applications, and can be used as a blade server in modular enclosures or standalone setups. Klinge uses the Lattice ECP5 FPGA (LFE5U-25F), offering 24K LUTs when compiled with open-source tools. The board includes 512MB of DDR3L […] ⌘ Read more

Large Language Models can run tools in your terminal with LLM 0.26
Comments ⌘ Read more

love-hate and otel: using it while avoiding complexity
I quite appreciated his workflow for keeping OTel’s complexity at arm’s length. Also, he’s got a generic tool that can parse logs and turn them into otel spans that combines well will canonical logs and “wide events”: https://github.com/jonjohnsonjr/logspan

Comments ⌘ Read more

MITM HTTPS Payload with Python

Image

A lightweight MITM tool for monitoring encrypted traffic and detecting threats powered by AI and built in Python

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/mitm-https-payload-with-python-499ebf8e933f?source=rss—-7b722bfd1b8d— … ⌘ Read more

Armbian 25.5 Adds New Board Support, Application Modules, and Receives Community Recognition
The Armbian team has released version 25.5, bringing expanded hardware compatibility, improved system tools, and a growing library of post-install application modules. The update also coincides with Armbian being recognized by NetBox Labs with a 2025 NetBox Hero Award for its role in open infrastructure innovation. New in Armbian v25.5 The latest release include … ⌘ Read more

You Can Choose Tools That Make You Happy
Comments ⌘ Read more

From Zero to $1000/Month | Bug Bounty Automation Blueprint

Image

Proven Tactics, Tools, and Code to Automate Your Way to Consistent Bounties

[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/from-zero-to-1000-month-bug-boun … ⌘ Read more

@bender@twtxt.net Here’s a short-list:

• Simple, minimal syntax—master the core in hours, not months.
  
• CSP-style concurrency (goroutines & channels)—safe, scalable parallelism.
  
• Blazing-fast compiler & single-binary deploys—zero runtime dependencies.
  
• Rich stdlib & built-in tooling (gofmt, go test, modules).
  
• No heavy frameworks or hidden magic—unlike Java/C++/Python overhead.

Open Source SQL Workbench Says “No Republicans Allowed!”
The Apache licensed SQL query tool says Republicans (and many others) are not welcome to use their software due to “despicable politics” and “contempt for human rights.” ⌘ Read more

Sandboxing AI Tools with Guix Containers
Comments ⌘ Read more

Google’s “AI” is convinced Solaris uses systemd
Who doesn’t love a bug bounty program? Fix some bugs, get some money – you scratch my back, I pay you for it. The CycloneDX Rust (Cargo) Plugin decided to run one, funded by the Bug Resilience Program run by the Sovereign Tech Fund. That is, until “AI” killed it. We received almost entirely AI slop reports that are irrelevant to our tool. It’s a library and most reporters didn’t even bother to read the rules or even look at what the intend … ⌘ Read more