IT |
気になる、記になる… |
Amazon、読み放題サービス「Kindle Unlimited」が2ヶ月99円で利用出来るキャンペーンを開催中(表示されたユーザーのみ対象) |
https://taisy0.com/2023/03/18/169732.html
|
kindleunlim |
2023-03-18 08:50:37 |
IT |
InfoQ |
Meta AI’s Large Language Model With 10x Fewer Parameters |
https://www.infoq.com/news/2023/03/meta-ai-large-language-model/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=global
|
Meta AI s Large Language Model With x Fewer ParametersMeta AI recently released a new large language model called Language Large Models Meta AI LLaMA that outperforms foundational models such as GPT and is competitive with PaLM despite having times fewer parameters LLaMA has better performance in language tasks such as natural questions common sense reasoning and mathematical reasoning By Bruno Santos |
2023-03-18 09:00:00 |
TECH |
Techable(テッカブル) |
コールセンターを月額7000円で簡単構築!シフト管理や雇用の電子契約もできるサブスクが登場 |
https://techable.jp/archives/200284
|
motcallcenter |
2023-03-18 08:00:47 |
python |
Pythonタグが付けられた新着投稿 - Qiita |
特許庁公開IPC分類表(excel)からIPC説明リストを作る |
https://qiita.com/morizones/items/d481d950c33709e62f26
|
excel |
2023-03-18 17:22:18 |
js |
JavaScriptタグが付けられた新着投稿 - Qiita |
Amazon Elastic Beanstalkへのデプロイで502 Bad Gatewayにハマった |
https://qiita.com/takuyaaaaan/items/14e9836ce150885467d1
|
amazonelasticbeanstalk |
2023-03-18 17:54:32 |
js |
JavaScriptタグが付けられた新着投稿 - Qiita |
素の JavaScript でペライチ web ページ作る |
https://qiita.com/zono_0/items/5da15874328d300c9da1
|
javascript |
2023-03-18 17:08:07 |
Ruby |
Rubyタグが付けられた新着投稿 - Qiita |
Thinreportsのlistを使っている時に、ページ毎で表示を切り替えたりしたい |
https://qiita.com/github0013@github/items/abc9387ea06b3cb6a68f
|
addrow |
2023-03-18 17:50:40 |
AWS |
AWSタグが付けられた新着投稿 - Qiita |
S3バージョニング機能によるフォルダ削除時の復旧方法 |
https://qiita.com/koma_aws/items/4240f4d6b63c1ebb453f
|
|
2023-03-18 17:57:14 |
AWS |
AWSタグが付けられた新着投稿 - Qiita |
Amazon Linx 2023 に Teraterm から SSH 接続してみた : ssh-rsa 署名無効化対応 |
https://qiita.com/sugimount-a/items/78b5c02d4c286b7c266b
|
amazon |
2023-03-18 17:54:54 |
AWS |
AWSタグが付けられた新着投稿 - Qiita |
Amazon Elastic Beanstalkへのデプロイで502 Bad Gatewayにハマった |
https://qiita.com/takuyaaaaan/items/14e9836ce150885467d1
|
amazonelasticbeanstalk |
2023-03-18 17:54:32 |
海外TECH |
MakeUseOf |
5 Fitness Challenge Apps to Compete With Friends to Lose Weight and Get Healthy |
https://www.makeuseof.com/fitness-challenge-apps-compete-with-friends-to-lose-weight/
|
challenge |
2023-03-18 08:30:16 |
海外TECH |
DEV Community |
Automated Fuzz Testing: The Power of Code Intelligence App |
https://dev.to/bobur/automated-fuzz-testing-the-power-of-code-intelligence-app-4610
|
Automated Fuzz Testing The Power of Code Intelligence AppSoftware applications are becoming increasingly complex and with complexity comes an increased risk of security vulnerabilities and defects While traditional testing methods can help identify many of these issues they are often insufficient when it comes to discovering vulnerabilities in software that processes unstructured or user generated input This is where Fuzz testing also known as fuzzing comes in In this article we will explore what fuzz testing is how it works and how to achieve automated Fuzz testing for improving software security Learning objectives You will learn and get an answer to the following questions throughout the article What s Fuzz Testing How Does Fuzz Testing Work A modern way to apply security testing with Code Intelligence An automated approach to Fuzz testing CI App Demo for Fuzz testing What is Fuzz Testing Fuzz testing is a software testing technique that involves providing unexpected invalid or random data as input to a program The goal of fuzz testing is to discover vulnerabilities and defects in software applications that may not be easily discovered through other testing methods The basic idea behind fuzz testing is to simulate an attacker trying to exploit vulnerabilities in the software By providing unexpected or invalid inputs the tester is trying to discover how the program will behave under unusual circumstances This can help identify security vulnerabilities memory leaks crashes and other defects that could be exploited by attackers How Does Fuzz Testing Work Fuzz testing typically involves four main steps Input Generation The tester uses a fuzzing tool such as CI Fuzz or Jazzer to generate random or unexpected inputs to the software application Input Injection The generated inputs are then injected into the application either through the user interface network input or other means Monitoring The application s behavior is monitored for any unusual behavior or errors such as crashes or memory leaks Analysis Once the testing is complete the results are analyzed to identify any vulnerabilities or defects in the software There are several types of fuzz testing techniques including black box white box and grey box fuzz testing Black box fuzz testing involves testing the program without any knowledge of its internal workings while white box fuzz testing involves testing the program with full access to its source code and internal data structures Grey box fuzz testing is a combination of both approaches where the tester has some knowledge of the internal workings of the program but not full access What is Code Intelligence Code Intelligence offers automated testing solutions such as CI Fuzz is an open source command line tool designed to create fuzz tests and automate the fuzz testing process It can be integrated into Continuous Integration CI pipelines making it easier to run and manage the testing process For example it can help developers ship secure software by providing the necessary integrations to test their code at each pull request CI Fuzz supports a wide range of programming languages including C C JavaScript Java Kotlin and other JVM based languages You can check other projects developed by Code Intelligence on GitHub repository An automated approach to Fuzz testingYou can also leverage CI App together with the CLI tool to run Fuzz tests It provides detailed reports on the results of Fuzz tests This includes information on the number of test cases run the number of bugs found coverage metrics and the severity of each bug This helps you to prioritize and address the most critical issues first Follow the CI App Quick Start guide to install and configure it on your local system For this demo purpose we are going to use an already deployed and built in CI App solution on the Code Intelligence website Now you are going to learn how to enable application security testing features with easy steps CI App Demo for Fuzz testing Step Open your browser and navigate to the CI App playground on Code the Code Intelligence website and login into the system using your GitHub account Once you logged in you will see the CI App dashboard with the empty project because we haven t added our project there yet You can also play with some featured projects out there Step Now you can try to find your first bug in your project We are going to use a simple ready java project that has two already vulnerabilities a SQL injection and an RCE Step In the navigation bar open the Projects dropdown and click Add Project It will open a new pop up menu where you specify Project Name and provide a GitHub URL link to our sample Java project Step In the sample Java project we have existing fuzz tests You can check the test under this folder and it has GitHub action is set up Only thing you need us to set into a GitHub Workflow file is an action secret called CI FUZZ API TOKEN with your API token You can generate it under your Account setting on the Tokens tab Follow this instruction to create encrypted secrets for a repository on GitHub Step Up to now everything is set up you may need to trigger your CI CD either manually or by submitting a new PR Then you will be able to see the two vulnerabilities that CI Fuzz detected and step into the code directly to see the underlying cause For example to view additional details about coverage just click Code Coverage on the left sidebar This will show you the overall coverage and a breakdown of the coverage by file What next ️Overall fuzz testing is a powerful technique for improving software quality and security by identifying and fixing defects before they can be exploited by attackers or cause problems for users Tools such as CI Fuzz is a powerful tools that can help you automate the fuzz testing process By integrating CI Fuzz into your software development pipeline you can save time improve reliability increase security and reduce costs Next steps you can observe other features of the CI App and start to develop your own tests using the programming languages you are most familiar with Related resources What Is Fuzz Testing About CI AppAbout CI Fuzz Recommended content Best Practices for REST API TestingBest Practices for JUnit Testing CommunityJoin the Code Intelligence Community About the author Visit my personal blog www iambobur com |
2023-03-18 08:07:00 |
海外ニュース |
Japan Times latest articles |
Arrest warrant from criminal court pierces Putin’s aura of impunity |
https://www.japantimes.co.jp/news/2023/03/18/world/russia-vladimir-putin-icc-arrest-warrant/
|
Arrest warrant from criminal court pierces Putin s aura of impunityA highly symbolic move by the International Criminal Court which accused President Vladimir Putin of war crimes carries moral weight |
2023-03-18 17:30:14 |
海外ニュース |
Japan Times latest articles |
Germany seeks closer ties with Japan amid supply chain tension |
https://www.japantimes.co.jp/news/2023/03/18/world/politics-diplomacy-world/olaf-scholz-germany-japan-visit/
|
Germany seeks closer ties with Japan amid supply chain tensionAmid global supply chain tensions Chancellor Olaf Scholz and Prime Minister Fumio Kishida kicked off a government consultation involving Cabinet members from both countries |
2023-03-18 17:30:01 |
IT |
週刊アスキー |
アップル「iPhone 15 Pro」iPhone 14 Proから値上げの可能性 |
https://weekly.ascii.jp/elem/000/004/129/4129194/
|
iphonepro |
2023-03-18 17:30:00 |
海外TECH |
reddit |
My neighbor complained about me having my CURTAINS OPEN during the day to the police??? |
https://www.reddit.com/r/japanlife/comments/11uifvq/my_neighbor_complained_about_me_having_my/
|
My neighbor complained about me having my CURTAINS OPEN during the day to the police Pretty much as the title says I m floored that my landlord even contacted me about this I live on the first floor of a four floor apartment building with a balcony that faces out into a sort of narrow back lot On the other side of the lot so maybe about feet away from my balcony is a house with a few windows that look directly out onto my balcony and those of my apartment neighbors I m a Japanese American woman in my s and I work from as a web designer I like to keep my curtains open all during the day as I work from home and I like the sunlight in my room I also have plants that like to get sunlight so my curtains are pretty much always open during the day The neighbors who complained are a middle aged couple who I believe are in their s or so The wife is always home The complaint is that they don t like having to see me all day every day whenever their curtains are open and that because their windows are a bit more elevated and they have a straight view into my apartment that they quot can t ignore quot the sight of me Mind you I am never running around the house naked or anything I always always close the curtain before I get changed etc precisely because of all the neighbors that can see into my apartment The one thing I can think of that may have bothered them is my doing yoga every afternoon evening as I like to keep the windows and curtains open when I do this But again I am not wearing revealing clothing at all just leggings and a baggy T shirt tied at the waist when I do this Maybe the wife saw me doing yoga and thought I was doing quot suggestive quot poses on purpose To bother them That s the only thing I can think of I d like to reiterate again that most of my day is spent just sitting in front of my desk in front of the window on my computer My landlord contacted me asking me to keep my curtains shut during the day but I feel like this is a completely unreasonable request I d go crazy working all day at home without sunlight and all my plants would die Has anyone else experienced this before and does anyone else think this is crazy Edit Also I don t think this is xenophobia racism or anything like that as I m Japanese speak fluent Japanese and even work completely in Japanese so don t think they d be able to tell I m not Japanese submitted by u chubbymochipigeon to r japanlife link comments |
2023-03-18 08:29:44 |
コメント
コメントを投稿