HackerTrans
TopNewTrendsCommentsPastAskShowJobs

bscript

no profile record

Submissions

[untitled]

1 points·by bscript·قبل 29 يومًا·0 comments

[untitled]

1 points·by bscript·قبل 3 أشهر·0 comments

[untitled]

1 points·by bscript·قبل 3 أشهر·0 comments

Show HN: Developer-friendly HTTP request testing inside the browser

github.com
1 points·by bscript·قبل 7 أشهر·0 comments

Rep+ Helped Me Identify a Critical Supabase JWT Exposure

bour.ch
2 points·by bscript·قبل 7 أشهر·0 comments

Gmail Same-Tab Switcher: keep account switches in one tab

twitter.com
2 points·by bscript·قبل 7 أشهر·1 comments

Rep+ – Chrome DevTools HTTP Repeater with AI Insights

github.com
1 points·by bscript·قبل 8 أشهر·0 comments

Rep+: Fast AI-Powered HTTP Repeater in Chrome

github.com
3 points·by bscript·قبل 8 أشهر·1 comments

Rep+: A Lightweight Alternative to Burp Suite for Quick Browser Testing

bscript.substack.com
2 points·by bscript·قبل 8 أشهر·0 comments

Show HN: Rep+: Burp Repeater Inside Chrome DevTools for Bug Bounty and AppSec

github.com
3 points·by bscript·قبل 8 أشهر·1 comments

rep+: A Lightweight Burp Suite Repeater Inside Chrome DevTools

github.com
2 points·by bscript·قبل 8 أشهر·1 comments

What If an LLM Could Profile You from the Browser History?

medium.com
1 points·by bscript·السنة الماضية·0 comments

What If an LLM Could Profile You from the Browser History?

medium.com
1 points·by bscript·السنة الماضية·0 comments

Show HN: AWS IAM Policy Visualizer – Interactive Graphs

iam-liart.vercel.app
2 points·by bscript·السنة الماضية·2 comments

I Built a Bitcoin Investment Tracker to Replace My Messy Spreadsheet

satfolio.vercel.app
1 points·by bscript·السنة الماضية·0 comments

A Forgotten Receipt Can Lead to a Clever Scam

medium.com
2 points·by bscript·قبل سنتين·3 comments

[untitled]

1 points·by bscript·قبل سنتين·0 comments

[untitled]

1 points·by bscript·قبل سنتين·0 comments

[untitled]

1 points·by bscript·قبل سنتين·0 comments

I accidentally became an admin on 600 servers

bor.hashnode.dev
6 points·by bscript·قبل سنتين·0 comments

comments

bscript
·قبل 7 أشهر·discuss
Code: https://github.com/bscript/same-tab-gmail
bscript
·قبل 7 أشهر·discuss
Hey all! I’m the maintainer of rep+. Happy to answer any questions or hear feature suggestions. Repo is here: https://github.com/bscript/rep
bscript
·قبل 8 أشهر·discuss
Demo: https://video.twimg.com/amplify_video/1992382891196571648/pl...
bscript
·قبل 8 أشهر·discuss
There are a few Chrome extensions that let you edit or replay HTTP requests, but none matched the fast, Burp-Repeater-style workflow I wanted inside DevTools. So I built rep+, with the help of an LLM.

rep+ gives you:

- Automatic capture of all HTTP requests

- Replay + full editing of method, path, headers, and body

- Search & filters

- Star important requests, copy raw blocks, browse edit history

It’s perfect when you need quick, iterative testing without spinning up the full Burp Suite UI.

Open DevTools → rep+ panel → start hacking.
bscript
·قبل سنتين·discuss
I like it, but this will add more work to people …
bscript
·قبل سنتين·discuss
Can’t see the cons ?
bscript
·قبل سنتين·discuss
True, the information-gathering phase did take a couple of days, but the actual process of cracking the lock was incredibly quick once I had that info. It just goes to show how a little bit of observation can significantly cut down the time and effort needed for tasks like this. It's more about the strategy than the brute force!
bscript
·قبل سنتين·discuss
Yes, using a true random combination is significantly better than sticking to a fixed number or making minor adjustments. True randomness ensures that the sequence of numbers is unpredictable, making it much harder for anyone to guess the combination.

If you consistently scramble the digits but only move them by small increments (like ±2), you're essentially creating a pattern that can be detected over time, which is exactly what happened in this case. A better approach would be to randomly choose entirely different digits each time you reset the lock, making it much more difficult for someone to exploit any predictable patterns …
bscript
·قبل سنتين·discuss
https://www.linkedin.com/posts/bohr_remember-my-aws-checklis...
bscript
·قبل سنتين·discuss
The AWS Security Review tool helps you create multiple applications and select AWS services for your project, generating targeted questions on security, performance, and data management. It allows customization, labeling, and easy report sharing for a thorough review process.

Features:

- Create multiple applications and select AWS services to be used in the project.

- Automatically generate relevant questions on security, performance, and data management.

- Add custom questions based on your business requirements.

- Label and mark questions as reviewed, not applicable, or needing investigation.

- Export and share reports with your team or clients.

Will Add more AWS services + detailed descriptions about the questions, steps to implement solutions, and helpful resources in the future.

A note on privacy: The application is just a front-end tool and does not store any data on servers. All the information you use is stored in IndexDB in your browser. Your custom questions and data remain in your browser and won't be deleted unless you clear the database from the developer tools or use the delete functionality in the tool.

The tool enhances the review process by providing a more customized approach, working alongside scanners to ensure a robust and comprehensive

Thoughts?

Thanks
bscript
·قبل سنتين·discuss
Will add the link to the website ;)
bscript
·قبل سنتين·discuss
Client side only, you can check the github repo
bscript
·قبل سنتين·discuss
you can move the section to the top, just drag and drop.
bscript
·قبل سنتين·discuss
paste it to the IAM Policy JSON input or zip your json files and upload the zip.
bscript
·قبل سنتين·discuss
Good point. Thanks
bscript
·قبل سنتين·discuss
wow, I learned something new today
bscript
·قبل سنتين·discuss
You might be right. My focus wasn't on the name; I just wanted to create something useful for my day-to-day job and share it with others. The goal was never to commercialize the product … so maybe that’s why the name was bad!
bscript
·قبل سنتين·discuss
First time here, did not know about Show NH
bscript
·قبل سنتين·discuss
Sometimes, reading AWS IAM policies can be tough for me. I prefer visuals, so I often use the IAM Policy Simulator. To make things even easier, I built a small tool that turns IAM policies into simple graphs. awsviz.dev is a good tool designed to help users visualize, analyze, and improve their AWS IAM policies.

More details: https://medium.com/@Bohr/introducing-awsviz-dev-simplifying-...