[20200720]cloud native develoment - Nelson LinHanLing Shen
There is no shortage now of development and CI/CD tools for cloud-native application development. But how do we put the cloud-native concept and think as the cloud-native way on the leftmost side of CI/CD pipeline.
During developing phrase, the tools provided with cloud code can help you expedite iteration of source codes, run and debug cloud native applications in an easy and fast way, making cloud-native development turn into real-time process, reduce the gap between deployment and development.
現在不乏用於雲原生應用程序開發的開發和 CI/CD工具。 但是,我們如何將雲原生概念放在的 CI/CD 流水線的最左側呢?
在開發階段,如何用 Cloud code 協助您加快原始碼的迭代速度,以簡便快捷的方式運行和調用雲原生應用程序,使雲原生開發變為即使過程,縮小開發與部署之間的差
Production sec ops with kubernetes in dockerDocker, Inc.
In this talk, Scott Coulton will walk through how to build a container as a service platform with Docker EE. Starting from scratch he will help you figure out what orchestrator to choose by deep diving into the technical differences between swarm and kubernetes on the EE platform as well as cover some of the practical considerations that could influence your decision. He will also share various automation solutions to deploy your cluster into production. Once the cluster is up and and running, Scott will delve into sec ops and discuss security best practices - including signing images in DTR (Docker Trusted Registry) and CVE scanning to provide a secure supply chain into production. You’ll leave this talk with the knowledge needed to build your own container platform in production. And did I mention it will all be done live, step-by-step?
[20200720]cloud native develoment - Nelson LinHanLing Shen
There is no shortage now of development and CI/CD tools for cloud-native application development. But how do we put the cloud-native concept and think as the cloud-native way on the leftmost side of CI/CD pipeline.
During developing phrase, the tools provided with cloud code can help you expedite iteration of source codes, run and debug cloud native applications in an easy and fast way, making cloud-native development turn into real-time process, reduce the gap between deployment and development.
現在不乏用於雲原生應用程序開發的開發和 CI/CD工具。 但是,我們如何將雲原生概念放在的 CI/CD 流水線的最左側呢?
在開發階段,如何用 Cloud code 協助您加快原始碼的迭代速度,以簡便快捷的方式運行和調用雲原生應用程序,使雲原生開發變為即使過程,縮小開發與部署之間的差
Production sec ops with kubernetes in dockerDocker, Inc.
In this talk, Scott Coulton will walk through how to build a container as a service platform with Docker EE. Starting from scratch he will help you figure out what orchestrator to choose by deep diving into the technical differences between swarm and kubernetes on the EE platform as well as cover some of the practical considerations that could influence your decision. He will also share various automation solutions to deploy your cluster into production. Once the cluster is up and and running, Scott will delve into sec ops and discuss security best practices - including signing images in DTR (Docker Trusted Registry) and CVE scanning to provide a secure supply chain into production. You’ll leave this talk with the knowledge needed to build your own container platform in production. And did I mention it will all be done live, step-by-step?
Deploy Angular to the Cloud (ngBucharest)Simona Cotin
Getting started with Angular is now easier than ever... said no one ever. Yet with the right tool-set we too can create magic. When I code with Angular I can deploy to Azure within minutes. We'll go through a simple development to production workflow. First, we code with a little help from the Angular CLI. Then we build for production - Webpack to the rescue. We then push our code to Github and deploy it to Node on Azure. Mission accomplished, the application is now up in the cloud!
Getting started with Angular is now easier than ever ... said no one ever. Yet with the right toolset, we too can create magic. When I code with Angular I can deploy to Azure within minutes. We'll go through a simple development to production workflow. First, we code with a little help from the Angular CLI. Then we build for production - Webpack to the rescue. We then push our code to Github and deploy it on Node to Azure. Mission accomplished, the application is now up in the cloud!
Microservices DevOps on Google Cloud PlatformSunnyvale
A typical CI/CD development process built on top of Google Cloud Platform to deliver a Java microservice using Helidon.io native-compiled with GraalVM and scheduled on a Google Kubernetes Engine cluster.
Gray Cover_ The dangers of cloudshells.pdfColin Estep
A malicious insider or attacker can abuse the Google Cloud Shell service to exfiltrate data and evade detection. All of your Google Workspace/GCP users have access to it by default, and it is very difficult to detect. With limited detection options, we’ll cover the attack and how to mitigate the risk.
In this talk, we’ll show how a malicious insider or an attacker can abuse the Google Cloud Shell service to exfiltrate data and evade detection. There’s no need for any privilege escalation or lateral movement, your GCP users will have the ability to instantiate a Cloud Shell instance by default.
First we’ll introduce the Cloud Shell service and demonstrate how it can be used to easily copy files from your local computer to the Cloud Shell instance via the command line or web console. Then we’ll show that once the files are on the instance, they can be sent to another location on the Internet.
Next we’ll cover why this attack is so hard to detect. Uploading files to Cloud Shell will likely blend in with normal network activity from your organization’s endpoints. Since CloudShell is not run on servers that you provision, but are managed by Google itself, you can not implement any firewall rules to control this traffic and you do not have any network logs from CloudShell instances that reflect what’s being sent to the Internet. In addition, there is no visibility into the commands being run by your users on these instances by default.
Google makes Cloud Shell very easy to use and accessible to everyone by design. However, this opens a very dangerous avenue for malicious activity because you are not able to restrict its use. Red teamers should consider this method to evade detection when attempting to exfiltrate data, and blue teamers should strongly consider disabling it for most users.
We describe the deployment and use of Globus Compute for remote computation. This content is aimed at researchers who wish to compute on remote resources using a unified programming interface, as well as system administrators who will deploy and operate Globus Compute services on their research computing infrastructure.
Building CI pipeline based on TeamCity & Docker in Android TeamPaweł Gajda
Nowadays, there are a lot of hosted CI solutions that offer quick integration with our repositories and need just few clicks to finish initial setup. Other services, coming with enhanced functionality, but requiring a server to maintain are often not given a try. First problems occur when we start coping with long compilation time and limited resources, especially during instrumented tests running on the Android Emulator. Here TeamCity comes with a rescue. With simplified setup (using Docker) and few tricks, reducing time for possible management, we do not need to hire a DevOps engineer.
Introduction to Google Cloud Platform (GCP) | Google Cloud Tutorial for Begin...Edureka!
(Google Cloud Certification Training - Cloud Architect: edureka.co/google-cloud-architect-certification-training)
This Edureka tutorial will provide you with a detailed introduction to Google Cloud Platform and it's various Cloud Services Services. Learn why GCP is preferred over other cloud Providers and also learn about the different Zones and Regions where the servers are hosted, with a great demo.
Learn how to get Kubernetes up and running on Google Cloud Platform with GKE. Go over why you should use Kubernetes, and why using a managed service like GKE is important. After that we will go over how to deploy both simple and advanced applications to your cluster.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Deploy Angular to the Cloud (ngBucharest)Simona Cotin
Getting started with Angular is now easier than ever... said no one ever. Yet with the right tool-set we too can create magic. When I code with Angular I can deploy to Azure within minutes. We'll go through a simple development to production workflow. First, we code with a little help from the Angular CLI. Then we build for production - Webpack to the rescue. We then push our code to Github and deploy it to Node on Azure. Mission accomplished, the application is now up in the cloud!
Getting started with Angular is now easier than ever ... said no one ever. Yet with the right toolset, we too can create magic. When I code with Angular I can deploy to Azure within minutes. We'll go through a simple development to production workflow. First, we code with a little help from the Angular CLI. Then we build for production - Webpack to the rescue. We then push our code to Github and deploy it on Node to Azure. Mission accomplished, the application is now up in the cloud!
Microservices DevOps on Google Cloud PlatformSunnyvale
A typical CI/CD development process built on top of Google Cloud Platform to deliver a Java microservice using Helidon.io native-compiled with GraalVM and scheduled on a Google Kubernetes Engine cluster.
Gray Cover_ The dangers of cloudshells.pdfColin Estep
A malicious insider or attacker can abuse the Google Cloud Shell service to exfiltrate data and evade detection. All of your Google Workspace/GCP users have access to it by default, and it is very difficult to detect. With limited detection options, we’ll cover the attack and how to mitigate the risk.
In this talk, we’ll show how a malicious insider or an attacker can abuse the Google Cloud Shell service to exfiltrate data and evade detection. There’s no need for any privilege escalation or lateral movement, your GCP users will have the ability to instantiate a Cloud Shell instance by default.
First we’ll introduce the Cloud Shell service and demonstrate how it can be used to easily copy files from your local computer to the Cloud Shell instance via the command line or web console. Then we’ll show that once the files are on the instance, they can be sent to another location on the Internet.
Next we’ll cover why this attack is so hard to detect. Uploading files to Cloud Shell will likely blend in with normal network activity from your organization’s endpoints. Since CloudShell is not run on servers that you provision, but are managed by Google itself, you can not implement any firewall rules to control this traffic and you do not have any network logs from CloudShell instances that reflect what’s being sent to the Internet. In addition, there is no visibility into the commands being run by your users on these instances by default.
Google makes Cloud Shell very easy to use and accessible to everyone by design. However, this opens a very dangerous avenue for malicious activity because you are not able to restrict its use. Red teamers should consider this method to evade detection when attempting to exfiltrate data, and blue teamers should strongly consider disabling it for most users.
We describe the deployment and use of Globus Compute for remote computation. This content is aimed at researchers who wish to compute on remote resources using a unified programming interface, as well as system administrators who will deploy and operate Globus Compute services on their research computing infrastructure.
Building CI pipeline based on TeamCity & Docker in Android TeamPaweł Gajda
Nowadays, there are a lot of hosted CI solutions that offer quick integration with our repositories and need just few clicks to finish initial setup. Other services, coming with enhanced functionality, but requiring a server to maintain are often not given a try. First problems occur when we start coping with long compilation time and limited resources, especially during instrumented tests running on the Android Emulator. Here TeamCity comes with a rescue. With simplified setup (using Docker) and few tricks, reducing time for possible management, we do not need to hire a DevOps engineer.
Introduction to Google Cloud Platform (GCP) | Google Cloud Tutorial for Begin...Edureka!
(Google Cloud Certification Training - Cloud Architect: edureka.co/google-cloud-architect-certification-training)
This Edureka tutorial will provide you with a detailed introduction to Google Cloud Platform and it's various Cloud Services Services. Learn why GCP is preferred over other cloud Providers and also learn about the different Zones and Regions where the servers are hosted, with a great demo.
Learn how to get Kubernetes up and running on Google Cloud Platform with GKE. Go over why you should use Kubernetes, and why using a managed service like GKE is important. After that we will go over how to deploy both simple and advanced applications to your cluster.
Similar to Google Cloud CLI - CCD Bhopal.pptx (20)
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
4. Why CLI?
● Gives better control
● Navigation in the GUI can be confusing
● Better Speed
● Consume less memory needed on the computer to operate
● Automation
5. Does all Cloud Providers provide CLI?
DOCTL
AWS CLI Azure CLI
Linode CLI
Vultr CLI
Gcloud CLI