Exploring the WebAuthn API; a bare-bones JS app

Posted on by David Vassallo

I had no idea the WebAuthn API even existed until I came across this article by @herrjemand. In that article, the author used WebAuthn to automatically generate and save passwords in the Chrome credential manager. What more can this browser API do? How would you use it? What is WebAuthn - and why the buzz? We know passwords are a necessary evil. Credential managers are a hassle to setup and use, passwords are re-used across sites and applications - and we often choose weak or easily-guessed passwords. WebAuthn is oft touted as a "password killer". We've seen … Continue reading Exploring the WebAuthn API; a bare-bones JS app

Advertisements

Part 2 – Inspired by Gatsby.js : Rolling your own GraphQL powered WordPress API (this time with Spring Boot)

Posted on by David Vassallo

In the first part of this two-article series, we explored rolling your own WordPress GraphQL adapter, inspired by the work done by GatsbyJS, written in Javascript and hosted on GraphCool. In this article, we'll build the same thing, this time using Java. Spring Boot and GraphQL Java Kickstart make this quite easy. Pre-requisites For anyone … Continue reading Part 2 – Inspired by Gatsby.js : Rolling your own GraphQL powered WordPress API (this time with Spring Boot)

Inspired by Gatsby.js : Rolling your own GraphQL powered WordPress API

Posted on by David Vassallo

Gatsby.js has been making the rounds in the Twitterverse and it's easy to see why. By cleverly combining various opensource projects they've made it easy to build web applications which are "static" in that the code can be hosted on any CDN, and it's the client (web-browser or mobile app) which does the work of … Continue reading Inspired by Gatsby.js : Rolling your own GraphQL powered WordPress API

Nugget Post: How I remember the distinction between the JPA / Spring Data annotations of ManyToOne vs OneToMany

Posted on by David Vassallo

I find the below mental map (and example) easy to remember and to reason about the distinctions between @ManyToOne and @OneToMany in the context of Java JPA / Spring Data applications For a larger image download my original one here: https://docs.google.com/drawings/d/e/2PACX-1vSW7PyvGLhRWTa84vhFb9qnhP3lKu1WyUZthKGssh3W2-xnANgAiucfaFnLpF9svfT_Fuo6LwE6UqY0/pub?w=1443&h=966

Voice Controlled Christmas Tree Lights

Posted on by David Vassallo

What we're building: https://youtu.be/Lgtpi0k7FD8 It's a great project to get started with learning about IoT, and Alexa. Hardware Particle Photon micro-controllerAdafruit Featherwing mini-relay (https://learn.adafruit.com/mini-relay-featherwings/overview)Amazon Alexa (Dot in my case...)Optional for some extra holiday cheer: Adafruit NeoPixel Stick (https://www.adafruit.com/product/1426) Circuit Diagram Fritzing file can be found here: https://github.com/dvas0004/SmartMote/blob/master/SmartMote_v1.fzz Notes, tips and tricks about the Hardware The … Continue reading Voice Controlled Christmas Tree Lights

Penetration Testing Techniques: Conducting effective recon for enhanced phishing (Office 365 edition)

Posted on by David Vassallo

This article describes a typical penetration testing / hacking scenario : gathering as many email addresses of a target company in order to carry out more effective phishing campaigns. Note this is only one possible approach out of many... In this particular example, we're picking on Kaspersky Labs, for no particular reason, just as an … Continue reading Penetration Testing Techniques: Conducting effective recon for enhanced phishing (Office 365 edition)

Z-Wave : Lessons Learned – Python OpenZwave

Posted on by David Vassallo

This article explains a few missing pieces of the puzzle I had when setting up a home automation network using ZWave. Most of this information is available publicly but it took a while to find or to actually make the connection between what I wanted and what I needed to look for in the documentation.   … Continue reading Z-Wave : Lessons Learned – Python OpenZwave