frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Maybenot: A framework for traffic analysis defenses

https://github.com/maybenot-io/maybenot
2•todsacerdoti•3m ago•0 comments

Persuadable Episode 3: Former cult member connects cults and conspiracies [video]

https://www.youtube.com/watch?v=6Ibk5vJ-4-o
1•fuzztester•4m ago•0 comments

Stardust XR Philosophy

https://stardustxr.org/blog/2025/04/04/Stardust-XR-Philosophy
1•LorenDB•7m ago•0 comments

Delta, United sued for selling windowless 'window seats'

https://www.reuters.com/sustainability/boards-policy-regulation/delta-united-sued-selling-windowless-window-seats-2025-08-19/
3•c420•9m ago•0 comments

Latent Wave Field: The Resonant Domain Within Artificial Intelligence

https://medium.com/@bulanramai2558/latent-wave-field-the-resonant-domain-within-artificial-intelligence-c8b9e1fd1507
2•SupatMod•16m ago•0 comments

Mexican city with one of the highest homicide rates fired most police

https://www.latimes.com/world-nation/story/2025-08-03/a-mexican-town-fired-its-police-and-embraced-the-military-heres-what-happened-next
3•PaulHoule•31m ago•0 comments

Some key facts about passkeys and how they work

https://sixcolors.com/post/2025/08/some-key-facts-about-passkeys-and-how-they-work/
3•CharlesW•32m ago•0 comments

Show HN: Rucat – Cat for Prompt Engineers

https://github.com/brianredbeard/rucat
4•thebeardisred•33m ago•0 comments

Winning in the US: Founder's Guide to Building a Global Company from Europe

https://www.indexventures.com/winning-in-the-us/
3•contingencies•36m ago•0 comments

Show HN: Harbor Guard – Manage and Scan Container Images (Open Source)

https://github.com/HarborGuard/HarborGuard
3•rakeda•36m ago•0 comments

Stele of Sulaiman

https://en.wikipedia.org/wiki/Stele_of_Sulaiman
3•teleforce•36m ago•1 comments

Fed up with U.S. health care costs, these Americans moved abroad

https://www.washingtonpost.com/business/2025/08/17/us-healthcare-americans-move-abroad/
2•littlexsparkee•37m ago•0 comments

Lovable for video-games: Not as easy as we thought

https://static-acknowledge-975429.framer.app/
1•LucaStirbat•41m ago•0 comments

Ask HN: Are companies changing technical interviews for the AI era?

1•jburbank•44m ago•0 comments

Using Claude Code to Create Home Assistant Automations

https://old.reddit.com/r/homeassistant/comments/1muyb99/using_claude_code_to_do_all_my_automations_open/
1•philippb•44m ago•0 comments

DeepSeek-v3.1

https://huggingface.co/collections/deepseek-ai/deepseek-v31-68a491bed32bd77e7fca048f
7•bparsons•46m ago•0 comments

Senior Machine Learning Engineer, Platform

https://www.simplepractice.com/careers-list/
2•fragmata•51m ago•1 comments

The 10x PM Paradox: Why Organization Beats Genius Every Time

https://zakelfassi.com/blog/2025/2025-08-19-the-10x-pm-paradox-organization-beats-genius
1•zakelfassi•53m ago•0 comments

SpaceX says states should dump fiber plans, give all grant money to Starlink

https://arstechnica.com/tech-policy/2025/08/starlink-keeps-trying-to-block-fiber-deployment-says-us-must-nix-louisiana-plan/
5•unsnap_biceps•54m ago•3 comments

Tiny Microbe Challenges the Definition of Cellular Life

https://nautil.us/a-rogue-new-life-form-1232095/
3•jnord•56m ago•0 comments

Ghostty: AI tooling must be disclosed for contributions

https://twitter.com/mitchellh/status/1957926641004605822
2•ridruejo•1h ago•0 comments

Change to Custom Directory Alias with Completions in Zsh (2021)

https://hacdias.com/2021/05/30/cd-alias-completions-zsh/
2•todsacerdoti•1h ago•0 comments

Gera's Profile in Phrack

https://phrack.org/issues/72/2
1•wslh•1h ago•0 comments

Show HN: Hexora – static analysis tool for malicious Python scripts

https://github.com/rushter/hexora
1•rushter•1h ago•0 comments

Using Podman, Compose and BuildKit · Emersion

https://emersion.fr/blog/2025/using-podman-compose-and-buildkit/
2•Bogdanp•1h ago•0 comments

The Incredible Demo Scene – Making Art with Code [video]

https://www.youtube.com/watch?v=vIQ74_DRWEM
2•ibobev•1h ago•0 comments

Researcher Exposes 0-Day Clickjacking Vulnerabilities in Major Password Managers

https://socket.dev/blog/password-manager-clickjacking
4•gpi•1h ago•0 comments

Anno 1800 Frame Analysis

https://blog.thomaspoulet.fr/posts/anno-1800-frame-analysis/
1•ibobev•1h ago•0 comments

AI Is Designing New Physics Experiments That Work

https://www.wired.com/story/ai-comes-up-with-bizarre-physics-experiments-but-they-work/
2•creer•1h ago•0 comments

AI Telehealth Experiences Powered by Pipecat AI and Daily

https://tonohealth.substack.com/p/ai-telehealth-experiences-powered
3•beefancohen•1h ago•0 comments
Open in hackernews

Show HN: Hexora – static analysis tool for malicious Python scripts

https://github.com/rushter/hexora
1•rushter•1h ago
I made a new library to detect malicious and harmful behaviour in Python scripts.

There are alternative libraries, but they usually rely on regexes, which can be fragile and tricked. My library uses AST and tracks some of the obfuscation techniques, such as import/call reassignment.

Currently, I'm testing it on public files where some of them implement malicious behavior, as well as past malicious packages on PyPI.

You can see some of the detection examples here:

https://github.com/rushter/hexora/blob/main/docs/examples.md

I'd love to hear your feedback and ideas on how to improve this and identify missing rules.