Suri sponnusa

Secure GCP infrastructure checklists

Initial setup

Configure org policies
- Restrict allowed IAM domains
- Disable key download
- Disable default network
- Disable external IP
- Require shielded VM
Prepare for VPC service controls (data protection)

So you want to modify the text of a PDF by hand...

If you, like me, resent every dollar spent on commercial PDF tools, you might want to know how to change the text content of a PDF without having to pay for Adobe Acrobat or another PDF tool. I didn't see an obvious open-source tool that lets you dig into PDF internals, but I did discover a few useful facts about how PDFs are structured that I think may prove useful to others (or myself) in the future. They are recorded here. They are surely not universally applicable --
the PDF standard is truly Byzantine -- but they worked for my case.

CUSTOM GAME ENGINES: A Small Study

WARNING: Article moved to separate repo to allow users contributions: https://github.com/raysan5/custom_game_engines

A couple of weeks ago I played (and finished) A Plague Tale, a game by Asobo Studio. I was really captivated by the game, not only by the beautiful graphics but also by the story and the locations in the game. I decided to investigate a bit about the game tech and I was surprised to see it was developed with a custom engine by a relatively small studio. I know there are some companies using custom engines but it's very difficult to find a detailed market study with that kind of information curated and updated. So this article.

Nowadays lots of companies choose engines like [Unreal](https:

GreHack2019 CTF challenge

One of the challenges of the GreHack2019 CTF was a white-box. The White-box has been pushed to the SideChannelMarvels Project.

1. White-box? What is that?

White-box cryptography is presented here : http://www.whiteboxcrypto.com/. If you are not fammilair with the concept, Brecht Wyseur itroduced it well in "white-box cryptography: hiding keys in software", MISC magazine, April 2012

2. GreHack2019 White-box

The GreHack2019 CTF white-box is very classic AES128 white-box implementation. The fact that it implements an AES can be found by having a look to the code and by identifying the 11 rounds or by simply looking to the input sample "Who Is Rijndael".

	/* Utilities */

	var RANDOM = function() {};

	function _randomInt(min, max) {
	return Math.floor(Math.random() * (max - min + 1)) + min;
	}

	function _randomHex(len) {
	var hex = '0123456789abcdef';

	#!/bin/sh

	# A value between 0-1.0
	strength=0.6
	white="#e8a2c9"
	black="#813722"

	# https://unix.stackexchange.com/questions/40786/how-to-do-integer-float-calculations-in-bash-or-other-languages-frameworks/40897#40897
	calc() { awk "BEGIN{print $*}"; }
	strength_inv=$(calc 1-$strength)

	# This is a basic workflow to help you get started with Actions
	# workflow - цепочка действий
	# Имя процесса Билдится на всех типах 📦 🐍
	name: CMake Build Matrix

	# Controls when the action will run. Triggers the workflow on push
	on:
	push:
	pull_request:
	release:

	# Default Check (where KDU writes by default)
	write-host -ForegroundColor green "Checking Default Location"
	$discoveries=@()
	gi "HKLM:\" \| % {
	$parent = $_.PSpath
	(gp $_.PSpath).PsObject.Properties \| % {
	if($_.Value[0] -eq 77 -and $_.Value[1] -eq 90 -and $_.Value.length -gt 100){
	write-host -ForegroundColor red "Discovered a potential driver rootkit embedded in registry: "
	write-host -ForegroundColor red "$parent$($_.Name)"
	$discoveries += "$parent$($_.Name)"


	typedef interface IEditionUpgradeManager IEditionUpgradeManager;

	typedef struct IEditionUpgradeManagerVtbl {

	BEGIN_INTERFACE

	HRESULT(STDMETHODCALLTYPE *QueryInterface)(
	__RPC__in IEditionUpgradeManager * This,
	__RPC__in REFIID riid,