Noise from the Basement | Saturday Morning Production's behind the scenes blog.

SaturdayMP Show #26: Human Resource Machine

Posted on January 3, 2024 by Chris C

In this episode I play Human Resource Machine by Tomorrow Corporation, a game that simulates programming in assembly. Anyone have any suggestions for optimizing the number of steps in the Fibonacci Visitor (Year 22)?

Thanks to the person on the Dev Edmonton Slack you asked about the game. I didn’t review it but hopefully this video helps you decide if you should buy it or not.

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Fun, Saturday MP Show, Software Development | Tagged assembly, Computer Games, fun, human resource machine, saturdaymp show | Comments Off

SaturdayMP Show #25: TPS Report Uploader CFT Walkthrough (Vulnerable Blazor Application)

Posted on December 27, 2023 by Chris C

Happy Holidays!

In this episode I do a walkthrough of the TPS Report Uploader capture the flag (CTF) I created. The walkthrough includes how to exploit the vulnerabilities and how to fix them in this .NET 8 Blazor application. You can try the CTF, or just follow along with the video, by downloading the TPS Report Uploader repo.

Tools used in this walkthrough:

.NET 8
Entity Framework 8
Rider
GoBuster
Burp Suite
Burp Suite Extension: Blazor Traffic Processor

Thanks to Edmonton .NET User Group (EDMUG) letting me to present this walkthrough for the first time.

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Security, Software Development | Tagged .NET, blazor, Burp Suite, gobuster, saturdaymp show, security | Comments Off

SaturdayMP Show #24: Can you use Docker Compose Watch without a Dockerfile?

Posted on December 20, 2023 by Chris C

In this episode I answer a viewer’s question if you can use Docker Compose Watch without a Dockerfile. Actually, it’s more me checking if they are correct. Spoiler alert, they are correct and you can’t use Docker Compose Watch without a Dockerfile. You will get an error message: “can’t watch service [service-name] without a build context”.

Previous video about Docker Compose Watch:

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Software Development | Tagged Docker, docker compose, docker compose watch, saturdaymp show | Comments Off

Happy Holidays!

Posted on December 19, 2023 by Chris C

May your holidays be filled with more joy then discovering a legacy project with 90% test coverage, the happiness that rivals getting a project out the door on-time and under budget, and secure from sensitive information leaks from too much Christmas cheer.

Happy holidays from SaturdayMP and all the best in 2024!

P.S. – The SaturdayMP virtual office will be closed from Dec 21st to Jan 1st. I’ll still be checking and responding to message but much slower then normal.

Posted in Fun | Tagged Happy Holidays | Comments Off

SaturdayMP Show #23: Adding Basic Auth to NGINX Passenger Docker (Part 3)

Posted on December 15, 2023 by Chris C

In this stunning conclusion to the 3 part series I finally get HTTP Basic Authentication working. Including merging my changes into the main branch in GitLab and making sure it works in staging and production in Render. The video is so long because I made dumb mistake 10 minutes in.

Spoiler: When using the Passenger Docker image it’s really important you don’t delete:

RUN rm -f /etc/service/nginx/down

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Security, Software Development | Tagged Docker, gitlab, http basic auth, nginx, passenger, render, ruby on rails, saturdaympshow | Comments Off

SaturdayMP Show #22: Adding Basic Auth to NGINX Passenger Docker (Part 2)

Posted on December 4, 2023 by Chris C

In this episode I get the Basic Authentication NGINX configuration working using the envsubst tool to replace environment variables in the config file. Ran out of time to test the fix in actual staging. That will hopefully be done in the 3rd part of this series.

Watch the previous video in the series:

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Code Examples, Saturday MP Show, Software Development | Tagged Docker, http basic auth, nginx, passenger, ruby on rails, saturdaymp show | Comments Off

SaturdayMP Show #21: Adding Basic Auth to NGINX Passenger Docker (Part 1)

Posted on November 29, 2023 by Chris C

In this episode I explain and then start to add HTTP Basic Authentication to the Saturday MP website which is a Ruby on Rails application hosted on a Passenger Docker image. As usual I ran into some trouble and at the end of the video figured out I should use the envsubst command to dynamically set the Basic Auth, and other values, in the NGINX config.

Found this video useful? Then help others find it by liking, subscribing, and sharing.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Software Development | Tagged Docker, http basic auth, nginx, passenger, ruby on rails, saturdaymp show | Comments Off

SaturdayMP Show #20: Hack the Box – Busqueda Part 3 (Root Flag)

Posted on November 22, 2023 by Chris C

In this episode I find the root flag for the Busqueda machine on Hack the Box. Took a wrong turn looking for Gitea and Git vulnerabilities but eventually found the root flag with help from the walkthrough.

Watch part 2 of me hacking the Busqueda machine:

Thanks to Hack the Box for creating a playground for myself, and others, to learn cyber security skills. Thanks to kavigihan for creating the Busqueda machine.

Found this video useful? Then help others find it by sharing it.

Have question you want answered in a future video? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Security | Tagged hack the box, saturdaymp show, security | Comments Off

Saturday MP Show #19: Comparing Docker Volumes to Docker Compose Watch

Posted on November 15, 2023 by Chris C

In this episode I answer a viewer question from episode #16: Are Docker Volumes are a two way sync?. The answer is kind-of.

You can view the question in the comments section of episode #16 where I try out Docker Compose Watch for the first time.

Thanks to victorajayi9056 for asking the question. Thanks to Docker for creating Docker. That sounded weird. Anyway it has been an invaluable tool for creating development environments for my clients.

Have question you want answered in a future video? A question I should ask you? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions consulting.

Posted in Saturday MP Show | Tagged docker compose, docker compose watch, docker volumes, saturdaymp show | Comments Off

SaturdayMP Show #18: Hack the Box – Busqueda Part 2 (Reverse Shell)

Posted on November 8, 2023 by Chris C

In this episode I get a reverse shell working and make some progress on capturing the root flag. Spoiler: There is a self hosted GitHub like website.

Watch part 1 of me hacking the Busqueda machine at:

Thanks to Hack The Box for creating a playground for myself, and others, to learn cyber security skills. Thanks to kavigihan for creating the Busqueda machine:

Have question you want answered in a future video? A question I should ask you? Pair on a problem? Constructive feedback? Send an email to ask@saturdaymp.com.

Need help shipping secure high quality software faster? Check out Saturday Morning Productions.

Posted in Saturday MP Show, Security | Tagged hack the box, reverse shell, saturdaymp show, security | Comments Off

Ship secure high quality software faster.
info@saturdamp.com
780-886-3406
Latest Posts
Tag! Your it!
.NET .NET Core ASP.NET MVC BackAndForth Behemoth Garden BEMCheckBox Birm C# DataGrip Docker Edmonton .NET User Group Entity Framework fun GitHub hack the box Introduction to ORMs for DBAs ios jetbrains kids thinking outside the box Mini-Compressor native-binding nginx NUnit ORM react Reduce image size Reduce photo size ruby RubyMine ruby on rails saturdaymp show security Smaller images software development sql-server standard ruby Takeaways TeamCity Temporal Database Today I Learned Ubuntu xamarin xamarin ios .net native-binding xplugins xplugins.iOS.BEMCheckBox
Archives
April 2024

M T W T F S S

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

29 30

« Mar

Ship secure high quality software faster.

Latest Posts

Tag! Your it!

Archives