💚🧡 𝘏𝘢𝘤𝘒𝘢𝘯

old.reddit.com/r/drawsteel/...

Today’s a big for MCDM! Thanks to everyone who made the Crack the Sun crowdfunding campaign a success! It’s gonna be magic! As of today, I’m no longer the Lead Designer of Draw Steel products, and I’m stepping into the role of Game Director of our next RPG, Crows. I can’t wait to play it with you.

RSA test vector crowdsourcing instructions

Do you have an idle cluster? Can you spare a couple core-years?

Help me bruteforce some test vectors for RSA key generation edge cases!

Here are the instructions, it's just a matter of running a single self-contained cross-compilable Go binary that will report the results autonomously.

The vibes are off (Cloudflare CEO’s corporate MAGAism), but they are right on the specific. Piracy Shield is a dangerous erosion of net neutrality and free speech principles, all just to protect Serie A (Italy’s premier football league).

I just vibecoded with exe.dev and Opus 4.5 a backoffice for our FIPS 140 validation, with a separate view for the lab (where they can also upload test vectors), public links for clients, and guided scripts for testing.

I have not looked at the code once. It works great.

I am... processing this.

If you are a resident of California, the state now has a portal where you can demand deletion of your personal data from 500+ registered data brokers with a single request form, for free.

consumer.drop.privacy.ca.gov

GitHub - FiloSottile/age: A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability. A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability. - FiloSottile/age

Really big age release coming tomorrow! 🎅🏻

- native post-quantum keys
- built-in recipients for hw plugins
- age-inspect tool
- plugin framework
- batchpass plugin
- many improved error messages

Building a Transparent Keyserver We apply a transparency log to a centralized keyserver step-by-step, in less than 500 lines, with privacy protections, anti-poisoning, and witness cosigning.

Using an age keyserver as a demo, this article demonstrates how to add a transparency log to a centralized service step-by-step.

We use Tessera for the tlog, VRFs for privacy, and the Witness Network. It all takes just 500 lines to integrate!

The result of years of work making tlogs accessible.

GitHub - geomys/ct-archive: A directory of archived Certificate Transparency (CT) logs and tools to archive RFC 6962 and Static CT logs. A directory of archived Certificate Transparency (CT) logs and tools to archive RFC 6962 and Static CT logs. - geomys/ct-archive

If you want to help seed the Certificate Transparency archive (github.com/geomys/ct-ar...), there is now an RSS feed for your BitTorrent client! Don't forget to set unlimited seed ratio ✨

raw.githubusercontent.com/geomys/ct-ar...

You know what? Keep posting tremendous art, and at some point we are gonna start demanding to fight this dude!!😁

Save 20% on Go Slimey Go! on Steam Help Slimey, our tiny slippery protagonist, visit his friends for some well deserved teatime after some thrilling platforming challenges!

Hey hey!
Go Slimey Go! is now out!!
Muy cousin and his team worked super hard to bring this project to life.
Support Latin games 😎😃
store.steampowered.com/app/3215230/...
#GoSlimeyGo

A screenshot of the tool's encounter builder section, with dropdowns for monsters, automatic calculation of challenge levels, and more.

My Draw Steel Adventure Tools!

This spreadsheet helps you create combat encounters, montages, negotiations, and more, all following official recommendations! Available on my Patreon at patreon.com/Alphastream

www.youtube.com/watch?v=DtbB...

#DrawSteel #TTRPG

Save 20% on Go Slimey Go! on Steam Help Slimey, our tiny slippery protagonist, visit his friends for some well deserved teatime after some thrilling platforming challenges!

Hey hey!
Go Slimey Go! is now out!!
Muy cousin and his team worked super hard to bring this project to life.
Support Latin games 😎😃
store.steampowered.com/app/3215230/...
#GoSlimeyGo

Good King Omund's Box of Dice A new game for a new age! Draw Steel is the breathtaking new, action-oriented, fantasy RPG from MCDM that’s both fun to play and fun to run!

We only have a few of these left from the Dicefunder earlier this year and we will be selling them on Friday.

screenshot of text: Triple-Base64 Encoding All exfiltrated data is encoded through three layers of base64 before upload: content → base64 → base64 → base64 This serves multiple anti-forensic purposes: Evades GitHub's built-in secret scanning Bypasses third-party secret detection tools Makes casual browsing of repository contents ineffective Complicates forensic analysis of stolen data

movie: we can't trace their payload, it's behind two layers of base64!

computer knowers: *groan*

reality:

YouTube video by BarcodeDM Level 4 DRAW STEEL Metal Troubadour - Riffs and a Song for the abilities!

This is amazing, have people seen this??

www.youtube.com/watch?v=BhOe...

28 Points Later A definitive guide to the Russian zombie diplomacy of Trump’s peace plan for Ukraine — aka what happens when you let the Russians eat your brains

The “peace plan” for Ukraine is just a framework for Russia & the US to take assets away from Ukrainian recovery, and to ensure Russia evades accountability for war crimes

Europe can, and must, craft better with Ukraine

A point by point analysis of the shambles:

www.greatpower.us/p/28-points-...

YouTube video by Matthew Colville Draw Steel Ancestry Guide - Part 1! #drawsteel

Draw Steel Ancestries, Part One!

youtu.be/97wxQueVXcc

Amazing, thanks!

Excellent, thanks!

Does draw steel backers get access as well? I don't remember

@hellomcdm.bsky.social hey guys, i have a quick question regarding discord: i was trying to join the server but it errors out; observing the request, i see a 403 response with "the user is banned from this guild", which is interesting, as I have never been in the server before :thinking:
any clues?

Memos to Federal Employees Were Written By People With Ties to Project 2025, Metadata Shows James Sherk and Noah Peters appear as the authors of memos sent by the Office of Personnel Management.

Some of the OPM memos ordering federal employees to return to offices and ordering hiring freezes were written by people who worked on Project 2025, according to metadata on the documents www.404media.co/opm-memos-to...

Accelerando - Charlie's Diary I hope that if you enjoy the ebook you'll consider buying my other books, but this is the only reminder you'll get. (I'm not into shareware with nag screens ...)

Accelerando is one of my favorite sci-fi novels. I would say it's been highly influential in tech.
Today I learned it is available for free under a CC license below.

(Yes, I am kind of slow for ebook news I prefer the physical stuff)

www.antipope.org/charlie/blog...

But that's not it: this been there for a while, we also need to look at the past to we what has the attacker done so far! Its quite bad.
Luckily, as far as we know, it doesn't call home, right? Please tell me it doesn't.

I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission.

The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().

It's RCE, not auth bypass, and gated/unreplayable.