GitHubからお金をもらった話

•

5 likes•1,946 views

A security researcher earned a $500 bounty from GitHub for reporting a vulnerability they discovered. GitHub runs a bug bounty program that rewards individuals for responsibly disclosing security flaws. The researcher found an issue and alerted GitHub through their coordinated disclosure process, which led to them receiving the bounty for their helpful report.

Engineering

Earning $500 bounty for reporting vulnerability to GitHub

The document discusses exception handling in the Zend VM. It provides code examples of throwing, catching, and rethrowing exceptions. Key points include: - Exceptions are thrown using THROW and the VM will search the EXCEPTION TABLE for a matching CATCH block. - If no match is found, the exception is rethrown until it reaches the outermost catch block or causes a fatal error. - Finally blocks are executed after catch blocks and any exceptions thrown in finally will override the original.

Zend VMにおける例外の実装

ぼくのかんがえる さいきょうの銀行振込

「OKグーグル! 銀行振込1000円」

浮動小数点数とOSSのバグの話

This document discusses finding bugs related to floating point numbers in open source projects. It notes that converting cents to dollars by multiplying by 0.01 can result in small inaccuracies due to floating point representation, as seen when converting 35 cents which results in 0.35000000000000003. It also explains that comparisons between floating point numbers can be problematic due to these small inaccuracies, like comparing 0.5 to 0.49999999999999994 which would incorrectly evaluate to not equal. The document recommends techniques like establishing tolerances when comparing floating point numbers to avoid issues arising from their inherent approximate nature.

PHP拡張をPECLに登録してわかったこと

Yoshio Hanawa

The document discusses the author's experience registering their own PHP extensions with PECL. They noticed that the registration process was straightforward but required ensuring the extensions met PECL's standards for documentation, testing, and compatibility. While the review process took some time, working with PECL to address any issues and ensure quality allowed the extensions to ultimately be accepted into the repository.

iOS/macOSとAndroid/Linuxのサンドボックス機構について調べた

Yoshio Hanawa

This document discusses a new policy that will impact employee benefits. The policy changes health insurance eligibility so that employees must work a minimum of 30 hours per week to qualify for benefits, up from the previous minimum of 20 hours. This change will affect some current part-time employees who may lose their health insurance coverage as a result of not meeting the new hourly requirement under the new policy.

Laungage Update PHP編

Yoshio Hanawa

PHPの拡張モジュールをGoで作る

Yoshio Hanawa

GitHubにバグ報告して賞金$500を頂いた話

Yoshio Hanawa

php-buildがいかに便利かを力説する

Yoshio Hanawa

OPcacheの新機能ファイルベースキャッシュの内部実装を読んでみた

Yoshio Hanawa

PHP7の拡張モジュール事情

Yoshio Hanawa

PHP7の内部実装から学ぶ性能改善テクニック

Yoshio Hanawa

PHPの正規表現と最長一致

Yoshio Hanawa

PHP7で変わること ——言語仕様とエンジンの改善ポイント

Yoshio Hanawa

偶然にも500万個のSSH公開鍵を手に入れた俺たちは

Yoshio Hanawa

PHP7はなぜ速いのか

Yoshio Hanawa

PHPNGの動向Yoshio Hanawa

zval をダイエットしてみたYoshio Hanawa

Zend OPcacheの速さの秘密を探るYoshio Hanawa

浮動小数点数の話 2013年度版

Yoshio Hanawa

PHP-FPMとuWSGI——mod_php以外の選択肢を探るYoshio Hanawa

Testing PHP extension on Travis CIYoshio Hanawa

php-timecopを実戦投入してみたYoshio Hanawa

Building Electrical System Design & Installation

symbo111

ACRP 4-09 Risk Assessment Method to Support Modification of Airfield Separat...

Mukeshwaran Balu

Recently uploaded

Building Electrical System Design & Installation

symbo111

ACRP 4-09 Risk Assessment Method to Support Modification of Airfield Separat...

Mukeshwaran Balu

New techniques for characterising damage in rock slopes.pdf

wisnuprabawa3

sieving analysis and results interpretation

ssuser36d3051

[JPP-1] - (JEE 3.0) - Kinematics 1D - 14th May..pdf

awadeshbabu

Technical Drawings introduction to drawing of prisms

heavyhaig

Modelagem de um CSTR com reação endotermica.pdf

camseq

Exception Handling notes in java exception

Ratnakar Mikkili

一比一原版(UMich毕业证)密歇根大学|安娜堡分校毕业证成绩单专业办理

zwunae

UMich毕业证原版定制【微信：176555708】【密歇根大学|安娜堡分校毕业证成绩单-学位证】【微信：176555708】（留信学历认证永久存档查询）采用学校原版纸张、特殊工艺完全按照原版一比一制作（包括：隐形水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠，文字图案浮雕，激光镭射，紫外荧光，温感，复印防伪）行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备，十五年致力于帮助留学生解决难题，业务范围有加拿大、英国、澳洲、韩国、美国、新加坡，新西兰等学历材料，包您满意。 ◆◆◆◆◆ — — — — — — — — 【留学教育】留学归国服务中心 — — — — — -◆◆◆◆◆ 【主营项目】一.毕业证【微信：176555708】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【微信：176555708】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分→ 【关于价格问题（保证一手价格）我们所定的价格是非常合理的，而且我们现在做得单子大多数都是代理和回头客户介绍的所以一般现在有新的单子我给客户的都是第一手的代理价格，因为我想坦诚对待大家不想跟大家在价格方面浪费时间对于老客户或者被老客户介绍过来的朋友，我们都会适当给一些优惠。 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才选择实体注册公司办理，更放心，更安全！我们的承诺：可来公司面谈，可签订合同，会陪同客户一起到教育部认证窗口递交认证材料，客户在教育部官方认证查询网站查询到认证通过结果后付款，不成功不收费！学历顾问：微信：176555708

DEEP LEARNING FOR SMART GRID INTRUSION DETECTION: A HYBRID CNN-LSTM-BASED MODEL

gerogepatton

As digital technology becomes more deeply embedded in power systems, protecting the communication networks of Smart Grids (SG) has emerged as a critical concern. Distributed Network Protocol 3 (DNP3) represents a multi-tiered application layer protocol extensively utilized in Supervisory Control and Data Acquisition (SCADA)-based smart grids to facilitate real-time data gathering and control functionalities. Robust Intrusion Detection Systems (IDS) are necessary for early threat detection and mitigation because of the interconnection of these networks, which makes them vulnerable to a variety of cyberattacks. To solve this issue, this paper develops a hybrid Deep Learning (DL) model specifically designed for intrusion detection in smart grids. The proposed approach is a combination of the Convolutional Neural Network (CNN) and the Long-Short-Term Memory algorithms (LSTM). We employed a recent intrusion detection dataset (DNP3), which focuses on unauthorized commands and Denial of Service (DoS) cyberattacks, to train and test our model. The results of our experiments show that our CNN-LSTM method is much better at finding smart grid intrusions than other deep learning algorithms used for classification. In addition, our proposed approach improves accuracy, precision, recall, and F1 score, achieving a high detection accuracy rate of 99.50%.

CHINA’S GEO-ECONOMIC OUTREACH IN CENTRAL ASIAN COUNTRIES AND FUTURE PROSPECT

jpsjournal1

The rivalry between prominent international actors for dominance over Central Asia's hydrocarbon reserves and the ancient silk trade route, along with China's diplomatic endeavours in the area, has been referred to as the "New Great Game." This research centres on the power struggle, considering geopolitical, geostrategic, and geoeconomic variables. Topics including trade, political hegemony, oil politics, and conventional and nontraditional security are all explored and explained by the researcher. Using Mackinder's Heartland, Spykman Rimland, and Hegemonic Stability theories, examines China's role in Central Asia. This study adheres to the empirical epistemological method and has taken care of objectivity. This study analyze primary and secondary research documents critically to elaborate role of china’s geo economic outreach in central Asian countries and its future prospect. China is thriving in trade, pipeline politics, and winning states, according to this study, thanks to important instruments like the Shanghai Cooperation Organisation and the Belt and Road Economic Initiative. According to this study, China is seeing significant success in commerce, pipeline politics, and gaining influence on other governments. This success may be attributed to the effective utilisation of key tools such as the Shanghai Cooperation Organisation and the Belt and Road Economic Initiative.

在线办理(ANU毕业证书)澳洲国立大学毕业证录取通知书一模一样

obonagu

学校原件一模一样【微信：741003700 】《(ANU毕业证书)澳洲国立大学毕业证》【微信：741003700 】学位证，留信认证（真实可查，永久存档）原件一模一样纸张工艺/offer、雅思、外壳等材料/诚信可靠,可直接看成品样本，帮您解决无法毕业带来的各种难题！外壳，原版制作，诚信可靠，可直接看成品样本。行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备。十五年致力于帮助留学生解决难题，包您满意。本公司拥有海外各大学样板无数，能完美还原。 1:1完美还原海外各大学毕业材料上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微741003700 【主营项目】一.毕业证【q微741003700】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【q/微741003700】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才

ACEP Magazine edition 4th launched on 05.06.2024

Rahul

This document provides information about the third edition of the magazine "Sthapatya" published by the Association of Civil Engineers (Practicing) Aurangabad. It includes messages from current and past presidents of ACEP, memories and photos from past ACEP events, information on life time achievement awards given by ACEP, and a technical article on concrete maintenance, repairs and strengthening. The document highlights activities of ACEP and provides a technical educational article for members.

This is my Environmental physics presentation

ZainabHashmi17

Self-Control of Emotions by Slidesgo.pptx

iemerc2024

Recycled Concrete Aggregate in Construction Part III

Aditya Rajan Patra

Tutorial for 16S rRNA Gene Analysis with QIIME2.pdf

aqil azizi

Design and Analysis of Algorithms-DP,Backtracking,Graphs,B&B

Sreedhar Chowdam

Series of visio cisco devices Cisco_Icons.ppt

PauloRodrigues104553

Low power architecture of logic gates using adiabatic techniques

nooriasukmaningtyas

The growing significance of portable systems to limit power consumption in ultra-large-scale-integration chips of very high density, has recently led to rapid and inventive progresses in low-power design. The most effective technique is adiabatic logic circuit design in energy-efficient hardware. This paper presents two adiabatic approaches for the design of low power circuits, modified positive feedback adiabatic logic (modified PFAL) and the other is direct current diode based positive feedback adiabatic logic (DC-DB PFAL). Logic gates are the preliminary components in any digital circuit design. By improving the performance of basic gates, one can improvise the whole system performance. In this paper proposed circuit design of the low power architecture of OR/NOR, AND/NAND, and XOR/XNOR gates are presented using the said approaches and their results are analyzed for powerdissipation, delay, power-delay-product and rise time and compared with the other adiabatic techniques along with the conventional complementary metal oxide semiconductor (CMOS) designs reported in the literature. It has been found that the designs with DC-DB PFAL technique outperform with the percentage improvement of 65% for NOR gate and 7% for NAND gate and 34% for XNOR gate over the modified PFAL techniques at 10 MHz respectively.