Skip to content

Instantly share code, notes, and snippets.

View mxschmitt's full-sized avatar

Max Schmitt mxschmitt

2.1k followers · 31 following
View GitHub Profile
@mxschmitt
mxschmitt / running-clubs-comparison.md
Last active June 2, 2026 07:04

Running Clubs Berlin vs Running FOMO — Club Comparison

Overview

  • runningclubsberlin.de has ~47 clubs listed
  • Running FOMO has 102 clubs listed
  • We already share 38 clubs in common
  • They have 10 clubs we don't have
@mxschmitt
mxschmitt / investigation.md
Last active May 22, 2026 18:01
DCV Cursor Capture Investigation — train/inference mismatch + migration plan to GPU instances

DCV Cursor Capture Investigation

RECOMMENDED PATH FORWARD: Patch ffmpeg gdigrab (PROVEN WORKING)

The Fix

Patch ffmpeg's libavdevice/gdigrab.c:paint_mouse_pointer() to accept CURSOR_SUPPRESSED and use GetCursor() + AttachThreadInput() for the cursor handle. This is proven working — we built and tested a patched ffmpeg on a headless EC2 instance (2026-05-22).

Results:

  • Baseline (unpatched): ffmpeg gdigrab -draw_mouse 1 → 131KB video, NO cursor visible
@mxschmitt
mxschmitt / 2026-04-04-replay-engine-poc.md
Last active April 1, 2026 23:46
Replay Engine PoC - All-Hands April 4, 2026
marp true
theme default
paginate true

Nova Act Realtime Pod

First update

An agent that keeps up with you. Sees what you see. Adjusts when you adjust.

@mxschmitt
mxschmitt / claude-skills-copilot-review-SKILL.md
Last active April 4, 2026 01:16
Claude Code skill that triages GitHub Copilot PR reviews for you — fetches all comments, evaluates each like a senior engineer, lets you pick which to apply, then commits, resolves threads, and minimizes noise. One command, clean PR. Place it in ~/.claude/skills/copilot-review/SKILL.md and run /copilot-review on any open PR.
name copilot-review
description Review GitHub Copilot PR comments, evaluate and apply valid ones, resolve all threads
argument-hint [PR-number-or-url]
disable-model-invocation true
allowed-tools Bash(gh *), Read, Edit, Write, Grep, Glob, Agent

Review Copilot PR Comments

@mxschmitt
mxschmitt / Cursor-Cloud-Agent.md
Created March 9, 2026 21:35

Cursor Cloud Agent — Architecture & Internals

Reverse-engineered from a live Cursor Cloud Agent session running claude-4.6-opus-high-thinking. All findings are based on runtime inspection of /exec-daemon/index.js (15MB webpack bundle, 379K lines), process inspection, network analysis, and system introspection. Date: February 25, 2026.

Table of Contents

@mxschmitt
mxschmitt / Odyssey Stealer writeup.md
Last active February 5, 2026 18:58

Odyssey Stealer (ClickFix Campaign) - Malware Investigation

Summary

This repository contains an analysis of a macOS infostealer delivered via a ClickFix social engineering attack hosted on testdino.com. The malware is an instance of Odyssey Stealer (a rebrand of Poseidon Stealer, itself a fork of AMOS/Atomic Stealer) -- a sophisticated macOS credential and cryptocurrency theft tool distributed as Malware-as-a-Service (MaaS) by a Russian-speaking threat actor known as "Rodrigo."

The victim was tricked into pasting a malicious command into their macOS Terminal through a fake CAPTCHA verification page.

@mxschmitt
mxschmitt / workflow.yml
Created September 9, 2025 12:27
windows-rdp-github-actions-via-tmate
- name: Download
run: Invoke-WebRequest https://bin.equinox.io/c/bNyj1mQVY4c/ngrok-v3-stable-windows-amd64.zip -OutFile ngrok.zip
- name: Extract
run: Expand-Archive ngrok.zip
- name: Auth
run: .\ngrok\ngrok.exe authtoken $Env:NGROK_AUTH_TOKEN
env:
NGROK_AUTH_TOKEN: ...
- name: Enable TS
run: Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server'-name "fDenyTSConnections" -Value 0
@mxschmitt
mxschmitt / gist:1853efa074b7461a1fd5c402e566a7fe
Last active September 11, 2023 16:41
Docker image cache overview

.NET:

  • no cache hit (probably because we sign and its then different, or because we do a local install)
  • we still have the 600 MB cache folder (which never gets used)

Python:

  • no cache hit
  • 0MB cache (probably local install does not end up in the cache)

Java:

@mxschmitt
mxschmitt / bisect.md
Created April 27, 2023 15:25
Node.js nightly manual bisect

Get your list of versions from here: https://nodejs.org/download/nightly/

v20.0.0-nightly20221021eb32a8443a/                 21-Oct-2022 07:30                   - good
v20.0.0-nightly20221031e43ecd5fec/                 31-Oct-2022 07:30                   -
v20.0.0-nightly20221101590cf569fe/                 01-Nov-2022 07:00                   -
v20.0.0-nightly20221111916af4ef2d/                 11-Nov-2022 06:30                   -
v20.0.0-nightly20221121abadaca982/                 22-Nov-2022 19:00                   -
v20.0.0-nightly202212013bed5f11e0/                 01-Dec-2022 07:00                   -
v20.0.0-nightly20221202cc2732d764/                 05-Dec-2022 17:00                   -
@mxschmitt
mxschmitt / polyfill.ts
Created March 2, 2023 10:16
window.safari.pushNotification Polyfill
// Writing a polyfill for window.safari.pushNotification.
// Source https://developer.apple.com/library/archive/documentation/NetworkingInternet/Conceptual/NotificationProgrammingGuideForWebsites/PushNotifications/PushNotifications.html
(() => {
type Permission = 'default' | 'denied' | 'granted';
class SafariRemoteNotification {
permission(websitePushID: string) {
return new SafariRemoteNotificationPermission(null, 'default')
}