This document provides an overview and tips for debugging webOS applications. It discusses various debugging tools available through the Palm SDK including the JavaScript debugger, Palm Inspector, Palm WORM, and the Ares IDE debugger. It also provides tips for using the Palm emulator effectively and debugging directly on devices using novaterm or SSH. General topics covered include JavaScript logging, setting breakpoints, using the debugger console, and common debugger commands. The document demonstrates debugging a sample application in both the command line debugger and Ares IDE debugger. It also lists helpful debugging resources and support channels.
Variable refrigerant flow (VRF) is an air-condition system configuration where there is one outdoor condensing unit and multiple indoor units. The term variable refrigerant flow refers to the ability of the system to control the amount of refrigerant flowing to the multiple evaporators (indoor units), enabling the use of many evaporators of differing capacities and configurations connected to a single condensing unit. The arrangement provides an individualized comfort control, and simultaneous heating and cooling in different zones.
This is a lightning presentation given by Gorkey Vemulapalli to our team introducing the basics of Palm's new WebOS platform being used on the Palm Pre device.
Android Services Black Magic by Aleksandar GargentaMarakana Inc.
Presented at Android Builders Summit on February 14th in Redwood Shores, CA by Aleksandar (Saša) Gargenta, from Marakana Inc.
For the complete slides from this talk go to http://mrkn.co/munz7
"The most interesting part of Android stack are the Android System Services. The 60+ such services expose the low level functionality, such as Power Management, Wifi, Camera, Sensors, GPS, Display, Audio, Media, and so on, all the hardware all the way up to the application layer. While each one is different, the all have certain similarities, namely the way they rely on Binder (Android's IPC mechanism), use JNI to cross Java-C boundary, and use of shared libraries to abstract the Linux drivers. In this talk, we'll explore the common system services in Android and discuss their architecture. You will get to see the diagrams of the inner workings of some of the previously undocumented parts of the Android stack. By the end of the talk, you should have a better understanding of the underpinnings of the backbone of Android OS."
https://events.linuxfoundation.org/events/android-builders-summit/gargentaa
WebOS, also known as Open WebOS or LG WebOS, (previously known as HP WebOS and Palm WebOS, stylized as webOS)[2] is a Linux kernel-based multitask operating system for smart devices like TVs and smartwatches. It was formerly a mobile operating system
[HES2013] Virtually secure, analysis to remote root 0day on an industry leadi...Hackito Ergo Sum
Today most networks present one “gateway” to the whole network – The SSL-VPN. A vector that is often overlooked and considered “secure”, we decided to take apart an industry leading SSL-VPN appliance and analyze it to bits to thoroughly understand how secure it really is. During this talk we will examine the internals of the F5 FirePass SSL-VPN Appliance. We discover that even though many security protections are in-place, the internals of the appliance hides interesting vulnerabilities we can exploit. Through processes ranging from reverse engineering to binary planting, we decrypt the file-system and begin examining the environment. As we go down the rabbit hole, our misconceptions about “security appliances” are revealed.
Using a combination of web vulnerabilities, format string vulnerabilities and a bunch of frustration, we manage to overcome the multiple limitations and protections presented by the appliance to gain a remote unauthenticated root shell. Due to the magnitude of this vulnerability and the potential for impact against dozens of fortune 500 companies, we contacted F5 and received one of the best vendor responses we’ve experienced – EVER!
https://www.hackitoergosum.org
Variable refrigerant flow (VRF) is an air-condition system configuration where there is one outdoor condensing unit and multiple indoor units. The term variable refrigerant flow refers to the ability of the system to control the amount of refrigerant flowing to the multiple evaporators (indoor units), enabling the use of many evaporators of differing capacities and configurations connected to a single condensing unit. The arrangement provides an individualized comfort control, and simultaneous heating and cooling in different zones.
This is a lightning presentation given by Gorkey Vemulapalli to our team introducing the basics of Palm's new WebOS platform being used on the Palm Pre device.
Android Services Black Magic by Aleksandar GargentaMarakana Inc.
Presented at Android Builders Summit on February 14th in Redwood Shores, CA by Aleksandar (Saša) Gargenta, from Marakana Inc.
For the complete slides from this talk go to http://mrkn.co/munz7
"The most interesting part of Android stack are the Android System Services. The 60+ such services expose the low level functionality, such as Power Management, Wifi, Camera, Sensors, GPS, Display, Audio, Media, and so on, all the hardware all the way up to the application layer. While each one is different, the all have certain similarities, namely the way they rely on Binder (Android's IPC mechanism), use JNI to cross Java-C boundary, and use of shared libraries to abstract the Linux drivers. In this talk, we'll explore the common system services in Android and discuss their architecture. You will get to see the diagrams of the inner workings of some of the previously undocumented parts of the Android stack. By the end of the talk, you should have a better understanding of the underpinnings of the backbone of Android OS."
https://events.linuxfoundation.org/events/android-builders-summit/gargentaa
WebOS, also known as Open WebOS or LG WebOS, (previously known as HP WebOS and Palm WebOS, stylized as webOS)[2] is a Linux kernel-based multitask operating system for smart devices like TVs and smartwatches. It was formerly a mobile operating system
[HES2013] Virtually secure, analysis to remote root 0day on an industry leadi...Hackito Ergo Sum
Today most networks present one “gateway” to the whole network – The SSL-VPN. A vector that is often overlooked and considered “secure”, we decided to take apart an industry leading SSL-VPN appliance and analyze it to bits to thoroughly understand how secure it really is. During this talk we will examine the internals of the F5 FirePass SSL-VPN Appliance. We discover that even though many security protections are in-place, the internals of the appliance hides interesting vulnerabilities we can exploit. Through processes ranging from reverse engineering to binary planting, we decrypt the file-system and begin examining the environment. As we go down the rabbit hole, our misconceptions about “security appliances” are revealed.
Using a combination of web vulnerabilities, format string vulnerabilities and a bunch of frustration, we manage to overcome the multiple limitations and protections presented by the appliance to gain a remote unauthenticated root shell. Due to the magnitude of this vulnerability and the potential for impact against dozens of fortune 500 companies, we contacted F5 and received one of the best vendor responses we’ve experienced – EVER!
https://www.hackitoergosum.org
In recent years there has been a tremendous amount of progress and innovation around tools and applications available to web developers that improve the quality, efficiency and speed of our applications, and it is hard to keep up with all of it.
Sensu and Sensibility - Puppetconf 2014Tomas Doran
As the Yelp infrastructure and engineering team grew, so did the pain of managing Nagios. Problems like splitting alerting across multiple teams, providing high availability and managing nagios systems in multiple environments had become pressing. As we grew towards a service oriented architecture and pushed some services out into the cloud, we rapidly needed more automated monitoring configuration.
An evolutionary solution wasn’t going to solve all of our problems, we needed to revolutionize our monitoring. Sensu is built from the ground up to solve many of our issues and be easy to extend.
This talk covers our puppet ‘monitoring_check’ API (that sets up monitoring for our services within puppet), how and why we deploy Sensu and our custom handlers and escalations, along with how we provide automatic ‘self service’ monitoring for dynamic services and how we deal with the challenges posed by the more ephemeral nature of cloud architectures.
Here Be Dragons – Advanced JavaScript DebuggingFITC
Presented at Web Unleashed on September 16-17, 2015 in Toronto, Canada
More info at www.fitc.ca/webu
Here Be Dragons – Advanced JavaScript Debugging
with Rami Sayar
Have you ever cried yourself to sleep unable to find the cause of a horrendous bug in your node app? Cry no more, your tears will be reshaped into blinding swords as we explore uncharted territories laced with mystical creatures.
JavaScript debugging is an often avoided topic due to the uncertainty of how best to accomplish it and the lack of powerful introspective tools. This talk will explore new territory and showcase tools that help you debug complex and difficult issues in your node or frontend app. Libraries and tools such as node-debugger, Visual Studio Code, vorlon.js, and memory leak catchers will be used to slay dragons.
No more shall you fear building complex apps with JavaScript!
OBJECTIVE
Slaying dragons hiding in your JavaScript apps a.k.a. Advanced JavaScript Debugging
TARGET AUDIENCE
JavaScript Developers.
ASSUMED AUDIENCE KNOWLEDGE
JavaScript.
FIVE THINGS AUDIENCE MEMBERS WILL LEARN
Common causes of bugs in JavaScript
How to hunt for bugs using node-debugger
How to use introspective tools
How to debug your front-end with vorlon.js
Slaying dragons
FITC - Here Be Dragons: Advanced JavaScript DebuggingRami Sayar
Have you ever cried yourself to sleep unable to find the cause of a horrendous bug in your node app? Cry no more, your tears will be reshaped into blinding swords as we explore uncharted territories laced with mystical creatures.
JavaScript debugging is an often avoided topic due to the uncertainty of how best to accomplish it and the lack of powerful introspective tools. This talk will explore new territory and showcase tools that help you debug complex and difficult issues in your node or frontend app. Libraries and tools such as node-debugger, Visual Studio Code, vorlon.js, and memory leak catchers will be used to slay dragons.
No more shall you fear building complex apps with JavaScript!
A talk on ZAP Automation in CI/CD given remotely to OWASP Switzerland on 9th Febrary 2021 by Simon Bennetts.
Full video: https://www.youtube.com/watch?v=5oMp5O9CeSg
Understanding salt modular sub-systems and customizationjasondenning
Overview of the modular sub-systems in SaltStack, and basics for writing custom execution modules and state modules for Salt. Presented to the Portland SaltStack Users Group (http://www.meetup.com/Portland-SaltStack-Users-Group/) by me (Jason Denning) on 04/21/2015.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Dr. Sean Tan, Head of Data Science, Changi Airport Group
Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
UiPath Test Automation using UiPath Test Suite series, part 5
Debugging webOS applications
1. Debugging webOS
Applications
Steve Lemke
webOS Tools Engineering
April 23, 2010
2. About Me
• Tools Engineer at Palm
• Palm (webOS) Emulator
• Internal and external SDK/PDK tools
• Previously
• Palm Computing (acquired by US Robotics)
• US Robotics (acquired by 3Com)
• 3Com (spun out Palm Inc.)
• Palm Inc. (spun out PalmSource)
• PalmSource (acquired by Access Systems)
3. Overview
• General Connectivity
• JavaScript Logging
• Palm Inspector and WORM
• Host Mode for WebKit Inspector
• Command Line Debugging
• Ares Debugger
• Emulator Tips and Tricks
• Command Line Tips
• Helpful Resources
• Q&A
4. General Connectivity
• IP vs. USB
• IP over USB is tricky
• novacom and novaterm
• Default target is most recently connected target
• Helpful if you realize it; confusing if not
• Leave emulator running
• Tip: connect device only when needed, then disconnect
• ssh
• Built-in to emulator (localhost:5522)
• Can be added to device (“pdk-device-install”)
• Useful on Windows (Putty)
• Can tunnel other ports (but novacom will too)
6. JavaScript Logging
• To enable logging in framework_config.json:
• “loglevel”:99 (enable Mojo.Log.info/warn)
• “logEvents”:true (log framework/mouse events)
• “timingEnabled”:true (log scene transition timing)
• Restore default settings before shipping!
• “loglevel”:0 (disable Mojo.Log.info/warn)
• “logEvents”:false (no framework/mouse events)
• “timingEnabled”:false (no scene transition timing)
• MUST change system log level to see info/warn on device!
• Default is “error” only
• Type: palm-log --system-log-level info
7. Palm Inspector
• Launch application with “palm-launch -i <appname>”
• Launch “Palm Inspector” app
• Type “palm-inspector” on Linux
• Emulator only
8.
9. Palm WORM
• Launch “palm-worm” app
• Live graphs of:
• Total DOM nodes
• Open service handles
• JavaScript heap usage
• Emulator only
10.
11. Host Mode for WebKit Inspector
• Web server running inside Palm Emulator
• Set up a tunnel from host port 5581
• ssh -p 5522 -L 5581:localhost:8080 root@localhost
• See hints for Windows tunnel on developer.palm.com
• Use Safari (or Chrome) to inspect your app
• http://localhost:5581/Apps
• http://localhost:5581/PalmApps
• Enable “Develop Menu” in Safari: Prefs: Advanced
• Right-click and select “Inspect Element”
12.
13. Command Line Debugging
• novaterm or ssh to device
• Type “debug” to run JavaScript debugger (like gdb)
• Hit “enter” to stop/re-start
• Common commands:
• “help” and “scripts filename.js”
• “break /path/to/file.js:<lineno>”, “en exc all” (catch exceptions)
• “info break” and “clear <#>”
• “c” (continue), “fin” (step out), “next” (step over), “step” (into)
• “bt”, “down”, “up”, “frame <#>”, “scope”
• “list, “list -” or “list 5,10”
• “info args” or “info locals”
• “print <expr>” or “set <var> = <expr>”
15. Command Line Debugging
• Demo (cont’d)
• scripts first-assistant.js (list script path)
• b file:///media/…/first-assistant.js:25 (set brkpt)
• en exc all (enable exceptions all)
• c (continue, trigger brkpt)
• bt (backtrace)
• l (list)
• n (step over, hit exception)
• print Mojo.Controller.stageController
• set window.scene = Mojo.Controller.stageController.topScene()
• p scene
• p scene.sceneElement.querySelector('.palm-header').innerHTML
• p scene.sceneElement.querySelector('.palm-header').innerHTML=“foo”
• c (continue; observe header change)
• clear 1 (clear breakpoint; exit debugger)
16. Ares (IDE) Debugger
• Better than command-line debugger
• Source-level debugging
• Integrated log viewer
• Interactive console
• Don’t have to develop in Ares to debug with it
• http://ares.palm.com
• Import your project, run, and debug
• Use svn (or hg) to avoid re-importing to update
17. Ares (Standalone) Debugger
• Stand-alone Ares Debugger (NEW!)
• Separate from IDE; no sources needed
• Just attach and debug
• http://ares.palm.com/AresDebug
• Stand-alone Ares Log Viewer
• http://ares.palm.com/AresLog
• Ares will also be able to debug devices over USB