Programming

The earliest memory I have of ‘programming’ is in the early/mid 90s when my father brought home a computer from work. We could play games on it … so of course I took the spreadsheet program he used (LOTUS 123, did I date myself with that?) and tried to modify it to print out a helpful message for him. It … halfway worked? At least I could undo it so he could get back to work…

After that, I picked up programming for real in QBASIC (I still have a few of those programs lying around), got my own (junky) Linux desktop from my cousin, tried to learn VBasic (without a Windows machine), and eventually made it to high school… In college, I studied computer science and mathematics, mostly programming in Java/.NET, although with a bit of everything in the mix. A few of my oldest programming posts on this blog are from that time.

After that, on to grad school! Originally, I was going to study computational linguistics, but that fell through. Then programming languages (the school’s specialty). And finally I ended up studying censorship and computer security… before taking a hard turn into the private sector to follow my PhD advisor.

Since then, I’ve worked in the computer security space at a couple of different companies. Some don’t exist any more, some you’ve probably heard of. I still program for fun too, and not just in security.

But really, I still have a habit of doing a little bit of everything. Whatever seems interesting at the time!

All posts

2025-05-29: Parsing PEM Certificates & ASN.1 in Javascript
2025-04-21: Solving Woodworm
2025-02-19: A quick mitmproxy setup
2025-02-05: WebCrypto SHA-256 HMAC
2025-01-23: Freshly (Frosted) Solved
2024-12-25: AoC 2024 Day 25: Christmas Lockpickinator
2024-12-24: AoC 2024 Day 24: Ripple Carrinator
2024-12-23: AoC 2024 Day 23: LAN Partinator
2024-12-22: AoC 2024 Day 22: Xorshiftinator
2024-12-21: AoC 2024 Day 21: Busy Workinator
2024-12-20: AoC 2024 Day 20: Shadow Catinator
2024-12-19: AoC 2024 Day 19: Regexinator
2024-12-18: AoC 2024 Day 18: Last Chancinator
2024-12-17: AoC 2024 Day 17: Virtual Machininator
2024-12-16: AoC 2024 Day 16: Astarinator
2024-12-15: AoC 2024 Day 15: Sokobaninator
2024-12-14: AoC 2024 Day 14: Chaosinator
2024-12-13: AoC 2024 Day 13: Cramerinator
2024-12-12: AoC 2024 Day 12: Edginator
2024-12-11: AoC 2024 Day 11: Exponential Growthinator
2024-12-10: AoC 2024 Day 10: Take-a-Hikinator
2024-12-09: AoC 2024 Day 9: Defraginator
2024-12-08: AoC 2024 Day 8: Vectorinator
2024-12-07: AoC 2024 Day 7: Mathinator
2024-12-06: AoC 2024 Day 6: Wanderinator
2024-12-05: AoC 2024 Day 5: (Not) Transitivinator
2024-12-04: AoC 2024 Day 4: Gridnator
2024-12-03: AoC 2024 Day 3: Mulinator
2024-12-02: AoC 2024 Day 2: Safinator
2024-12-01: AoC 2024 Day 1: Sortinator
2024-12-01: Advent of Code 2024
2024-10-07: Ludum Dare(ish) 56: BugShine
2024-10-05: Finish Myself a Grep
2024-09-04: CodeCrafters: Build Myself an Interpreter
2024-09-02: Solving Cosmic Express
2024-08-28: CodeCrafters: Build Myself a Grep
2024-08-19: TestIT - Integration Testing for My Rust Solvers
2024-06-17: The Golf (Peaks) of Solving
2024-04-06: Solving Sokobond
2024-03-28: A Good Snowman Is Hard To ... Solve?
2024-03-14: Infinite Craft Bot
2023-12-28: Advent of Code 2023 - Testing and Timing
2023-12-25: AoC 2023 Day 25: Graph Splitinator
2023-12-24: AoC 2023 Day 24: Collisionator
2023-12-23: AoC 2023 Day 23: Looong Mazinator
2023-12-22: AoC 2023 Day 22: Block Dropinator
2023-12-21: AoC 2023 Day 21: Step Step Stepinator
2023-12-20: AoC 2023 Day 20: Flip-Flopinator
2023-12-19: AoC 2023 Day 19: Assembly Lininator
2023-12-18: AoC 2023 Day 18: Flood Fillinator
2023-12-17: AoC 2023 Day 17: A-Starinator
2023-12-16: AoC 2023 Day 16: Reflectinator
2023-12-15: AoC 2023 Day 15: Hashinator
2023-12-14: AoC 2023 Day 14: Spininator
2023-12-13: AoC 2023 Day 13: Reflectinator
2023-12-12: AoC 2023 Day 12: Question Markinator
2023-12-11: AoC 2023 Day 11: Big Banginator
2023-12-10: AoC 2023 Day 10: Pipinator
2023-12-09: AoC 2023 Day 9: Stackinator
2023-12-08: AoC 2023 Day 8: Mazinator
2023-12-07: AoC 2023 Day 7: Pokinator
2023-12-06: AoC 2023 Day 6: Racinator
2023-12-05: AoC 2023 Day 5: Growinator
2023-12-04: AoC 2023 Day 4: Scratchinator
2023-12-03: AoC 2023 Day 3: Gearinator
2023-12-02: AoC 2023 Day 2: Playinator
2023-12-01: AoC 2023 Day 1: Calibrationinator
2023-12-01: Advent of Code 2023
2023-11-14: Rebuilding Streams with TShark
2023-11-09: SQLite Metadata via SQL Injection
2023-11-07: Mongo DB Data Exfiltration via Search Conditions
2023-09-25: Adding local search to Hugo with Pagefind
2023-08-21: Crosslinks by Title in Hugo--But Better!
2023-08-12: StackLang Part IX: Better Testing
2023-08-11: StackLang Part VIII: Compiler Stacks
2023-08-05: StackLang Part VII: New CLI and Datatypes
2023-07-16: StackLang Part VI: Some Examples
2023-07-12: StackLang Part V: Compiling to C
2023-05-01: StackLang Part IV: An Interpreter
2023-04-24: StackLang Part III: The Parser
2023-04-16: StackLang Part II: The Lexer
2023-04-14: StackLang Part I: The Idea
2023-03-27: Wildcard Let's Encrypt certificates with Nginx Proxy Manager and Cloudflare
2023-03-27: Automated transcripts from video with Whisper(.cpp)
2023-03-26: Redis in Rust: Evictions and Implementations
2023-03-19: Keyboard Chords with Hammerspoon
2023-03-03: Genuary 2023.31: Break a previous image
2023-03-02: Genuary 2023.30: Minimalism
2023-03-01: Genuary 2023.29: Maximalism
2023-02-28: Genuary 2023.28: Generative poetry
2023-02-28: Redis in Rust: Testing redis-cli + GET/SET support
2023-02-27: Genuary 2023.27: In the style of Hilma Af Klint
2023-02-26: Genuary 2023.26: My kid could have made that
2023-02-25: Genuary 2023.25: Yayoi Kusama
2023-02-24: Genuary 2023.24: Textile
2023-02-23: Genuary 2023.23: Moiré
2023-02-22: Genuary 2023.22: Shadows
2023-02-21: Genuary 2023.21: Persian Carpet
2023-02-20: Genuary 2023.20: Art Deco
2023-02-19: Genuary 2023.19: Black and white
2023-02-18: Genuary 2023.18: Definitely not a grid
2023-02-17: Genuary 2023.17: A grid inside a grid inside a grid
2023-02-16: Genuary 2023.16: Reflections of a Reflection
2023-02-15: Genuary 2023.15: Sine Waves
2023-02-14: Genuary 2023.14: Asemic Writing
2023-02-13: Genuary 2023.13: Something you've always wanted to learn
2023-02-12: Genuary 2023.12: Tessellation
2023-02-11: Genuary 2023.11: Suprematism
2023-02-10: Genuary 2023.10: Generative Music
2023-02-09: Redis in Rust: A REPL Client [Part 3]
2023-02-09: Genuary 2023.09: Plants
2023-02-08: Genuary 2023.08: Signed Distance Functions
2023-02-07: Genuary 2023.07: Sample a color palette
2023-02-06: Genuary 2023.06: Steal like an artist
2023-02-05: Genuary 2023.05: Debug view
2023-02-04: Redis in Rust: An Echo Server [Part 2]
2023-02-04: Genuary 2023.04: Intersections
2023-02-03: Genuary 2023.03: Glitch art
2023-02-02: Genuary 2023.02: Made in 10 minutes
2023-02-01: Genuary 2023.01: Perfect loop
2023-01-31: Cloning Redis in Rust: RESP [Part 1]
2023-01-30: Next/Previous 'Space' in Hammerspoon
2023-01-23: Once Again, to Hammerspoon
2023-01-19: Local JS/CSS with Hugo Pipe
2023-01-17: Proc Macro Workshop: derive(Builder) [Part 2]
2023-01-16: A Justfile for my blog
2023-01-15: Proc Macro Workshop: derive(Builder) [Part 1]
2023-01-12: Writing a curry! macro for MacroKata
2022-12-25: AoC 2022 Day 25: Snafuinator
2022-12-24: AoC 2022 Day 24: Blizzinator
2022-12-23: AoC 2022 Day 23: Elf Scattinator
2022-12-22: AoC 2022 Day 22: Wonderator
2022-12-21: AoC 2022 Day 21: Yellinator
2022-12-20: AoC 2022 Day 20: Deencryptinator
2022-12-19: AoC 2022 Day 19: Blueprintinator
2022-12-18: AoC 2022 Day 18: Lavinator
2022-12-17: AoC 2022 Day 17: Tetrisinator
2022-12-16: AoC 2022 Day 16: Pressurinator
2022-12-15: AoC 2022 Day 15: Beaconator
2022-12-14: AoC 2022 Day 14: Sandinator
2022-12-13: AoC 2022 Day 13: List Parsinator
2022-12-12: AoC 2022 Day 12: Climbiantor
2022-12-11: AoC 2022 Day 11: Monkeyinator
2022-12-10: AoC 2022 Day 10: Interpretator
2022-12-09: AoC 2022 Day 9: Ropeinator
2022-12-08: AoC 2022 Day 8: Treetopinator
2022-12-07: AoC 2022 Day 7: Recursive Fileinator
2022-12-06: AoC 2022 Day 6: Ring Buffinator
2022-12-05: AoC 2022 Day 5: Stackinator
2022-12-04: AoC 2022 Day 4: Overlapinator
2022-12-03: AoC 2022 Day 3: Rucksackinator
2022-12-02: AoC 2022 Day 2: Roshamboinator
2022-12-01: AoC 2022 Day 1: Calorinator
2022-12-01: Advent of Code 2022
2022-10-16: Stateful Solvers and Iterators
2022-10-04: Solving Sudoku (again)
2022-10-02: Cleaner Lunar Arithmetic in Rust
2022-09-21: Lunar Arithmetic in Rust
2022-08-29: Runelang: A Summoning Circle Generator
2022-08-25: Runelang: A Bind Rune Generator
2022-07-16: Runelang: Evaluation
2022-03-18: Runelang: The Parser (Part 2: Expressions)
2022-03-15: Runelang: The Parser (Part 1)
2022-02-24: Runelang: The Lexer
2022-02-23: Runelang: Language Specification
2022-02-11: Go is faster than Python? (an example parsing huge JSON logs)
2022-02-03: A CLI Tool for Bulk Processing Github Dependabot Alerts (with GraphQL!)
2022-02-01: A simple Flask Logging/Echo Server
2022-01-25: Pulling more than 5000 logs from datadog
2021-12-25: AoC 2021 Day 25: Cucumbinator
2021-12-24: AoC 2021 Day 24: Aluinator
2021-12-23: AoC 2021 Day 23: Amphipodinator
2021-12-22: AoC 2021 Day 22: Cubinator
2021-12-21: AoC 2021 Day 21: Dicinator
2021-12-20: AoC 2021 Day 20: Enhancinator
2021-12-19: AoC 2021 Day 19: Point Matchinator
2021-12-18: AoC 2021 Day 18: Pairs of Pairs
2021-12-17: AoC 2021 Day 17: Pew-Pewinator
2021-12-16: AoC 2021 Day 16: Depacketinator
2021-12-15: AoC 2021 Day 15: Low Ceiling Simulator
2021-12-14: AoC 2021 Day 14: Polymerizationinator
2021-12-13: AoC 2021 Day 13: Foldinator
2021-12-12: AoC 2021 Day 12: Submarine Spider
2021-12-11: AoC 2021 Day 11: Octopus Flashinator
2021-12-10: AoC 2021 Day 10: Chunkinator
2021-12-09: AoC 2021 Day 9: Local Minimum Deminifier
2021-12-08: AoC 2021 Day 8: Seven Segment Demystifier
2021-12-07: AoC 2021 Day 7: Brachyura Aligner
2021-12-06: AoC 2021 Day 6: We All Glow Down Here
2021-12-05: AoC 2021 Day 5: Linear Avoidinator
2021-12-04: AoC 2021 Day 4: His Name Oh
2021-12-03: AoC 2021 Day 3: Binary Contraption
2021-12-02: AoC 2021 Day 2: Submarine Simulator
2021-12-01: AoC 2021 Day 1: Depth Finder
2021-12-01: Advent of Code 2021
2021-09-06: Neural Network Cellular Automata
2021-08-18: Solving Snakebird
2021-08-17: Immutable.js Solvers
2021-08-10: Splitting Images
2021-08-05: raco pkg install noise
2021-07-15: Crosslinks by Title in Hugo
2021-06-28: Ordering Board Game Geek GeekLists by Rank
2021-06-26: Generating a Book Bingo Chart in Hugo
2021-06-25: A Generic Brute Force Backtracking Solver
2021-06-24: Categorizing r/Fantasy Book Bingo Books
2021-04-20: Partitioning a Linked List
2021-04-13: Dynamic Programming over a Matrix
2021-04-09: Phone Words--In English!
2021-04-06: Phone Words
2021-03-24: A quick ruby DSL for creating L-Systems
2021-01-27: A Tabbed View for Hugo
2021-01-26: A DSL for rendering magic circles and runes
2021-01-25: GMail Oldest First
2021-01-08: Genuary: Triple Nested Loops
2021-01-05: yt-cast: Generating podcasts from YouTube URLs
2020-12-11: Pictogenesis: Stack Transpiling
2020-12-09: Pictogenesis: Stack Machine
2020-12-03: Pictogenesis: Transpiling
2020-12-01: Pictogenesis: Wrapping Modes
2020-11-24: Pictogenesis: Register Machine
2020-11-23: Pictogenesis: The Idea
2020-11-20: Backtracking Worm Coral
2020-11-19: Worm Coral
2020-11-18: p5js Boids
2020-11-17: p5js Worms
2020-08-11: Extending my EC2 script
2020-08-01: Docker Magic - Arbitrary docker runtimes in place
2020-07-16: An SPF DNS Server
2020-07-14: Directly monitoring Sidekiq in Redis
2020-07-07: A Smart MySQL Wrapper
2020-06-30: SSRF Protection in Rails
2020-06-10: Observation Server
2020-05-12: LD46: Tetris Life Scoring
2020-04-20: LD46: My favorites (so far)
2020-04-19: LD46: Tetris Life v1.0
2020-04-19: LD46: I made a GAME!
2020-04-19: LD46: Score, Scaling, and BURNING! Oh my.
2020-04-18: LD46: IT'S WORKING!
2020-04-18: LD46: Particles!
2020-04-18: LD46: Squishy squishy
2020-04-18: LD46: Tetris is working! (sort of)
2020-04-17: Ludum Dare 46: Tetris Sand
2020-04-09: Command line AES with openssl (and tar)
2020-04-01: Get kitten
2020-03-30: Split a file with headers
2020-01-29: Wrapping xattr as a racket module
2020-01-16: Rack::Cors Configuration Tricks
2019-05-07: work-on: A Quick Script for Context Switching
2019-05-02: Prevent JavaScript links by parsing URLs
2019-04-30: Forcing Secure Cookies Behind an ELB in Ruby/Rails
2019-04-27: Tiny Helper Scripts for Command Line MySQL
2019-01-04: Listing and Downloading S3 Versions
2018-12-14: AoC 2018 Day 14: Functionally Circular Elfs
2018-12-13: AoC 2018 Day 13: Mine Cart Madness
2018-12-12: AoC 2018 Day 12: Fat Cellular Automaton
2018-12-11: AoC 2018 Day 11: Gridlocked Fuel
2018-12-10: AoC 2018 Day 10: It's Full of Stars!
2018-12-09: AoC 2018 Day 9: Marble Madness
2018-12-08: AoC 2018 Day 8: Checksum Treeification
2018-12-07: AoC 2018 Day 7: Job Simulator
2018-12-06: AoC 2018 Day 6: Infinite Area Simulator
2018-12-05: AoC 2018 Day 5: Alchemical reduction
2018-12-04: AoC 2018 Day 4: Sleeping on the job
2018-12-03: AoC 2018 Day 3: Regionification
2018-12-02: AoC 2018 Day 2: Counting letters
2018-12-01: AoC 2018 Day 1: Sum-thing to start with
2018-12-01: Advent of Code 2018
2018-09-26: Simple LocalStorage Notepad
2018-07-18: Adding HSTS to Redirects in Apache
2018-07-15: Counting and Sizing S3 Buckets
2018-07-09: Creating a temporary SMTP server to 'catch' domain validation emails
2018-04-01: Deep Dreams with Fish and Docker
2018-03-12: Generating zone files from Route53
2018-02-15: Automatic self-signed HTTPS for local development
2018-01-12: Making Fish Shell Smile
2018-01-08: Advent of Code 2017
2018-01-03: Advent of Code 2016
2017-12-25: AoC 2017 Day 25: Turing
2017-12-24: AoC 2017 Day 24: Maker Of Bridges
2017-12-23: AoC 2017 Day 23: Duetvmc
2017-12-22: AoC 2017 Day 22: Langton's Ant
2017-12-21: AoC 2017 Day 21: Fractal Expander
2017-12-20: AoC 2017 Day 20: Miniature Universe Simulator
2017-12-19: AoC 2017 Day 19: Networkout
2017-12-18: AoC 2017 Day 18: Duetvm
2017-12-18: SSH Config ProxyCommand Tricks
2017-12-17: AoC 2017 Day 17: Spinlock
2017-12-16: AoC 2017 Day 16: Swing Your Partner
2017-12-15: AoC 2017 Day 15: Two Generators
2017-12-14: AoC 2017 Day 14: Knot Hash Gridinator
2017-12-13: AoC 2017 Day 13: Firewall Puncher
2017-12-13: Dynamic Automatic Proxies
2017-12-12: AoC 2017 Day 12: Gridlock
2017-12-11: AoC 2017 Day 11: It's Full Of Hexagons
2017-12-11: Deterministic Shuffling Using Hashes
2017-12-10: AoC 2017 Day 10: Knot Cool
2017-12-09: AoC 2017 Day 9: Garbage Gobbler
2017-12-08: AoC 2017 Day 8: Conditiputer
2017-12-07: AoC 2017 Day 7: Tree
2017-12-06: AoC 2017 Day 6: Tightrope
2017-12-05: AoC 2017 Day 5: 21 Jump Street
2017-12-04: AoC 2017 Day 4: Password Validator
2017-12-03: AoC 2017 Day 3: Spiraly
2017-12-02: AoC 2017 Day 2: Check It
2017-12-01: AoC 2017 Day 1: Ahctpat
2017-12-01: AoC 2017: Library Functions
2017-11-15: Clock drift in Docker containers
2016-12-25: AoC 2016 Day 25: Assembunny3
2016-12-24: AoC 2016 Day 24: Venti
2016-12-23: AoC 2016 Day 23: Assembunny2
2016-12-22: AoC 2016 Day 22: Data Mover
2016-12-21: AoC 2016 Day 21: Scrambler
2016-12-20: AoC 2016 Day 20: Filter Table
2016-12-19: AoC 2016 Day 19: Blist Table
2016-12-18: AoC 2016 Day 18: Its A Trap
2016-12-17: AoC 2016 Day 17: Md5 Maze
2016-12-16: AoC 2016 Day 16: Dragon Data
2016-12-15: AoC 2016 Day 15: Capsule Dropper
2016-12-14: AoC 2016 Day 14: Bad One Time Pads
2016-12-13: AoC 2016 Day 13: Noisy Puzzle
2016-12-12: AoC 2016 Day 12: Assembunny
2016-12-11: AoC 2016 Day 11: Radiation Avoider
2016-12-10: AoC 2016 Day 10: Bot Simulator
2016-12-09: AoC 2016 Day 9: Decompressinator
2016-12-08: AoC 2016 Day 8: Tiny Screen Simulator
2016-12-07: AoC 2016 Day 7: IPv7 Support Counter
2016-12-06: AoC 2016 Day 6: Signal Unjammer
2016-12-05: AoC 2016 Day 5: Password Cracker
2016-12-04: AoC 2016 Day 4: Room Validator
2016-12-03: AoC 2016 Day 3: Triangle Validator
2016-12-02: AoC 2016 Day 2: Pin Typer
2016-12-01: AoC 2016 Day 1: Taxicab Simulator
2016-07-14: Solving Loop Puzzles
2016-06-22: Mirror iTunes playlists to Spotify
2016-06-04: Parsing Motorola Surfboard stats
2016-06-03: Automatically uploading files
2016-04-19: Ensuring docker-machine is running
2016-02-26: Audiobooks to Podcasts
2016-02-08: Duplicating AeroSnap on OSX with Hammerspoon
2016-01-06: Command line unicode search
2016-01-04: Command line emoji search
2016-01-02: Inlining plaintext attachments in Gmail
2015-12-25: Advent of Code: Day 25
2015-12-24: Advent of Code: Day 24
2015-12-23: Advent of Code: Day 23
2015-12-22: Advent of Code: Day 22
2015-12-21: Advent of Code: Day 21
2015-12-20: Advent of Code: Day 20
2015-12-19: Advent of Code: Day 19
2015-12-18: Advent of Code: Day 18
2015-12-17: Advent of Code: Day 17
2015-12-16: Advent of Code: Day 16
2015-12-15: Advent of Code: Day 15
2015-12-14: Advent of Code: Day 14
2015-12-13: Advent of Code: Day 13
2015-12-12: Advent of Code: Day 12
2015-12-11: CSV to JSON
2015-12-11: Advent of Code: Day 11
2015-12-10: Advent of Code: Day 10
2015-12-09: Advent of Code: Day 9
2015-12-08: Advent of Code: Day 8
2015-12-07: Advent of Code: Day 7
2015-12-06: Advent of Code: Day 6
2015-12-05: Advent of Code: Day 5
2015-12-04: Advent of Code: Day 4
2015-12-03: Advent of Code: Day 3
2015-12-02: Advent of Code: Day 2
2015-12-02: Glorious Gification of HipChat Rooms
2015-12-01: Advent of Code: Day 1
2015-12-01: Advent of Code
2015-12-01: Iterating the GitHub API (For users sans MFA)
2015-10-30: Finding EC2 instances by tag
2015-10-29: Takuzu solver
2015-09-14: Mandelbrot
2015-09-08: Backing up GitHub repositories
2015-08-24: Adjacency Matrix Generator
2015-08-10: Setting up Postfix and OpenDKIM
2015-07-22: Finding AWS IAM users by access key
2015-07-20: Configuring Websockets behind an AWS ELB
2015-07-16: Automagically storing Python objects in Redis
2015-07-10: Backing up Moves Data
2015-07-02: Scraping Kindle Highlights
2015-05-11: Generating YouTube user RSS feeds
2015-05-07: Tupper's self-referential formula
2015-04-17: It's all Greek to me
2015-04-14: A Quick Look at RC4
2015-04-07: Generating perfect portmanteaus
2015-04-03: Performance problems with Flask and Docker
2015-04-01: Parsing AWS instance data with jq
2015-03-05: gif shrinkage with ImageMagick
2015-02-26: ts: Timestamping stdout
2015-02-11: update-dotfiles encryption
2015-02-04: docker-bash and docker-stop-all
2015-01-29: iOS Backups in Racket: Apps
2015-01-27: iOS Backups in Racket: Messages
2015-01-23: iOS Backups in Racket: Contacts
2015-01-22: iOS Backups in Racket: Groundwork
2015-01-09: Let it snow!
2015-01-01: Generating omnichromatic images
2014-12-23: Palette Swapping
2014-11-13: A "one" line echo server using let in Racket
2014-11-04: Clockception
2014-10-28: Tile Puzzle
2014-10-05: Regular Expression Fractals
2014-09-17: Invader Fractals
2014-09-16: Fractal Invaders
2014-09-15: Look and Say
2014-09-14: Procedural Invaders
2014-09-04: Chess Puzzles: Knight's Tour
2014-09-03: Chess Puzzles: N Queens
2014-09-03: Removing large files from git history
2014-08-28: Chess Puzzles 2: Board?
2014-08-24: Sandbox Battle!
2014-08-24: Ludum Dare 30: Demo mode
2014-08-23: Ludum Dare 30: Programmer art and simple AI
2014-08-23: Ludum Dare 30: 24 hours
2014-08-23: Ludum Dare 30: Hints of a game
2014-08-22: Ludum Dare 30: Sandbox Battle
2014-08-21: Chess Puzzles 1: Get moving!
2014-08-13: Minimal palindromic base
2014-08-13: Number words
2014-08-08: Onwards and upwards
2014-08-07: Langton's ant
2014-08-04: Updating dotfiles
2014-08-01: slowcat
2014-07-31: Regex search and replace
2014-07-28: Git aliases: undo, ud, and wipe
2014-07-22: Parsing human readable times
2014-07-10: Cracker Barrel Peg Game, Part 3
2014-07-09: Cracker Barrel Peg Game, Part 2
2014-07-05: Cracker Barrel Peg Game
2014-06-17: Factor trees
2014-06-11: Call stack bracket matcher
2014-06-10: What the (be)funge‽
2014-05-30: Braille unicode pixelation
2014-05-28: Quadtree image compression
2014-05-23: Amicable chains
2014-05-21: Phone networks
2014-05-19: Novel compression
2014-05-02: Trigonometric Triangle Trouble
2014-04-01: Gorellian sorting
2014-03-12: Caesar cipher
2014-03-11: Brownian trees
2014-02-27: Dis/re-emvowelification
2014-02-27: Crossing hands
2014-02-16: Exploring parallelism in Racket with SHA-512 mining
2014-02-07: Command line user agent parsing
2014-02-07: Combining sort and uniq
2014-01-27: Factoring factorials
2014-01-15: Graph coloring
2014-01-14: Graph radius
2014-01-13: CSRF protection injection with jQuery and Zend
2014-01-03: Overlapping circles
2013-12-23: Edges to adjacency
2013-12-21: Rock-paper-scissors
2013-11-30: Twitter puddle
2013-11-12: Making music, part 3: Making noise
2013-11-07: Making music, part 2: Taking shape
2013-10-29: Making music, part 1: Reading ABC notation
2013-10-09: Functions as lists
2013-09-27: Large scale asynchronous DNS scans
2013-09-27: Wombat IDE is moving to GitHub
2013-09-25: Extending Racket's DNS capabilities
2013-09-23: Extending Racket structs to bitfields
2013-09-20: Deploy Racket libraries to Planet 2
2013-09-19: Smallest consecutive four-factor composites
2013-09-14: Diffie-Hellman Key Exchange
2013-08-30: Visualizing the Monkey Grid
2013-08-26: Wombat IDE - New semester / bug fixes
2013-08-22: 'Tiny' Turing completeness without MMOV
2013-08-21: A 'Tiny' virtual machine in Racket
2013-08-06: Adventures in Racket: gzip
2013-08-06: Authorship attribution: Part 3
2013-08-02: Authorship attribution: Part 2
2013-07-30: Authorship attribution: Part 1
2013-07-19: Racket Roguelike: Post-mortem
2013-07-05: Racket Roguelike 10: Levels via automata!
2013-06-29: A programming puzzle: f(f(n)) = -n
2013-06-28: Racket Roguelike 9: Daedalus' wrath!
2013-06-26: Swap list nodes
2013-06-21: Racket Roguelike 8: A million words!
2013-05-24: Racket Roguelike - Going on hiatus
2013-05-21: Ludum Dare 26 - VTanks - Results
2013-05-17: Racket Roguelike 7: Into darkness!
2013-05-10: Racket Roguelike 6: Dig deeper!
2013-05-02: Racket Roguelike 5: Armors and weapons and potions, oh my!
2013-04-29: VTanks for Ludum Dare 26
2013-04-25: Racket Roguelike 4: Slightly smarter critters!
2013-04-23: User space continuation-based thread pool
2013-04-18: Racket Roguelike 3: Rats, rats, everywhere!
2013-04-18: A prototype object system for Racket
2013-04-16: Adventures in optimization, re: Typed Racket
2013-04-11: Racket Roguelike 2: Infinite caves!
2013-04-11: Perlin and simplex noise in Racket
2013-04-09: Cyclic equality
2013-04-04: Racket Roguelike 1: A GUI, screens, I/O, and you!
2013-03-28: Writing a roguelike - in Racket! (Day 0)
2013-03-28: Path to philosophy
2013-03-18: Approximating Pi with Buffon's Needle
2013-03-17: The House on the Hill - Postmortem
2013-03-16: The House on the Hill - Day 5
2013-03-15: The House on the Hill - Day 4
2013-03-14: The House on the Hill - Day 3
2013-03-13: The House on the Hill – Day 2
2013-03-12: The House on the Hill - Day 1
2013-03-11: Knight moves
2013-03-06: Partitioning the Dutch national flag
2013-03-01: February #1GAM post-mortem
2013-02-22: Making Floupian Change
2013-02-20: NPR Sunday Puzzle
2013-02-13: Predecessor and successor in a binary search tree
2013-02-06: Numbers as words in arbitrary bases
2013-02-06: The 147 Puzzle
2013-02-01: #1GAM - ChessLike 1.0 - Did it!
2013-01-31: #1GAM - ChessLike 0.2.0 - Dungeons!
2013-01-30: #1GAM - ChessLike 0.1.5
2013-01-25: An optimal alphabetizing cipher
2013-01-25: Gregorian/Mayan conversion
2013-01-24: Splay heaps redux-imperative model
2013-01-23: Sorting via splay heap
2013-01-20: Triangle Trilemma
2013-01-17: Decoding escaped Unicode strings
2013-01-16: Translate CSV to HTML
2013-01-06: Wombat IDE - It's Alive! (bug fixes)
2013-01-03: Four points, a square?
2013-01-02: Happy New Year
2012-12-31: Parallel BF
2012-12-30: A Brainf**k Interpreter
2012-12-22: Nested Primes
2012-12-18: Ludum Dare 25 - First favorites
2012-12-14: Narcissistic Numbers
2012-12-12: Generating non-repeating strings
2012-12-10: Numbers of Wirth
2012-11-29: One Billion Primes - Segmented Sieve
2012-11-21: List algorithms and efficiency
2012-11-15: Project Euler 9
2012-11-14: Project Euler 8
2012-11-12: Project Euler 7
2012-11-11: Project Euler 6
2012-11-10: Taxicab numbers
2012-11-08: Project Euler 5
2012-11-07: Project Euler 4
2012-11-05: Project Euler 3
2012-11-04: Project Euler 2
2012-11-03: Project Euler 1
2012-11-03: Project Euler
2012-11-01: The Sum Of The First Billion Primes
2012-10-31: Pandigital Sums
2012-10-29: Bitvectors in Racket
2012-10-27: Pythagorean Triples
2012-10-25: Determining country by latitude/longitude
2012-10-24: Determining country by IP
2012-10-22: Prime Partitions II: The Listing
2012-10-20: Prime Partitions
2012-10-20: Memoization in Racket
2012-10-19: Small projects source code on GitHub
2012-10-18: The Evolution Of Flibs
2012-10-17: Rule 30 RNG
2012-10-15: Chopping words
2012-10-14: Dodgson’s Doublets
2012-10-13: Word cubes
2012-10-11: Squaring the Bishop
2012-10-11: Dictionary tries in Racket
2012-10-10: Two Word Games
2012-10-08: Evaluating prefix/infix/postfix expressions
2012-10-07: Three ways to write expressions
2012-10-06: Generated HTML index
2012-10-04: Querying CSV files with SQL
2012-10-03: Elementary cellular automaton
2012-10-01: The Birthday Paradox
2012-09-29: Pickles and memoization
2012-09-27: HTML5 Bugs
2012-09-26: Line art with an HTML5 canvas
2012-09-24: n-queens in 18 lines of code
2012-09-22: Sampling stdin
2012-09-20: Playing with loaded dice
2012-09-19: A piece of the abc conjecture
2012-09-17: Who wants to win the lottery?
2012-09-16: A needle in a Pi-stack
2012-09-15: Expanding L-systems
2012-09-13: Optimizing Voronoi
2012-09-10: Fun with turtle graphics and stars
2012-09-09: Generating Voronoi diagrams
2012-09-08: The First Two Problems
2012-09-06: Generating epubs
2012-09-05: Backing up Google Reader / Calendar
2012-09-03: Backing up Gmail
2012-08-31: Wombat IDE - The return of screen sharing
2012-08-30: Random Access Lists
2012-08-29: Hash Tables With Open Addressing
2012-08-27: 4sum
2012-08-24: Minimum scalar product
2012-08-23: Two More Random Exercises
2012-08-22: Two Random Exercises
2012-08-21: SEND + MORE = MONEY
2012-08-20: Life isn't fair...
2012-08-17: The loneliest number...
2012-07-20: OpenID - Part 2
2012-07-19: Adventures in OpenID land
2012-07-04: Analyzing the dice game
2012-06-09: Wombat IDE - Two bug fixes
2012-05-25: Wombat IDE - OSX Dock Icon
2012-05-20: Wombat IDE - Another bug fix / feature post
2012-05-03: Wombat IDE - Vector of vector functions
2012-04-30: Wombat IDE - Updated syntax, documentation
2012-04-29: Wombat IDE - Help and image bug fixes
2012-04-19: Wombat IDE - Another round of issues
2012-04-13: Wombat IDE - Animated turtles
2012-04-13: Wombat IDE - Turtle graphics
2012-04-12: Wombat IDE - A pile of features and bugs
2012-04-11: Wombat IDE - A new way
2012-03-27: Wombat IDE - Busy day for small changes
2012-03-22: Wombat IDE - A helping hand and image library updates
2012-03-09: Wombat IDE - Assorted bug fixes (λ‎ mode fixed)
2012-02-29: Wombat IDE - Updated draw-image
2012-02-27: Wombat IDE - 64 bit Petite
2012-02-24: Wombat IDE - λ mode
2012-02-23: Wombat IDE - Scheme/Java Interop
2012-02-18: Wombat IDE - Updated tree and image libraries
2012-02-17: Wombat IDE - Upload button and λ‎
2012-02-16: Wombat IDE - Generated host IDs
2012-02-15: Wombat IDE - Pair programming
2012-02-05: Wombat IDE - Threads are *fun*
2012-01-27: Wombat IDE - Enhancements and forward thinking
2012-01-22: Wombat IDE - Bug fixes galore!
2012-01-21: Wombat IDE - Shutdown hook
2012-01-20: Wombat IDE 2.x
2012-01-19: Wombat IDE - The first Petite versions
2012-01-08: Wombat IDE - Yeah... Maybe I was crazy
2012-01-04: Wombat IDE - Call me crazy...
2011-12-13: Wombat IDE - C211 Matrix Library
2011-12-07: Wombat IDE - A problem with characters
2011-11-26: Wombat IDE - Images are annoying sometimes
2011-11-24: Wombat IDE - A pile of minor changes
2011-11-03: Wombat IDE - A bug fix and a timing function
2011-11-02: Wombat IDE - Big fixes and confusion removal
2011-10-29: Wombat IDE - Automatic updating
2011-10-25: Wombat IDE - A bunch of new procedures
2011-10-17: Wombat IDE - Minor bug fixes
2011-10-14: Wombat IDE - Bug fixes and new image code
2011-10-06: Wombat IDE - Git
2011-09-28: Wombat IDE - Bug fixes, memory issues, and screen sharing
2011-09-16: Wombat IDE - More toolbar! And a right margin
2011-09-15: Wombat IDE - Bug fixes
2011-09-13: Wombat IDE - Line counter
2011-09-13: Wombat IDE - Defining define
2011-09-11: Wombat IDE - Ant build script
2011-09-10: Wombat IDE - Bug fixes and undo/redo
2011-09-02: Wombat IDE - Stopping and syntax editing
2011-09-01: Wombat IDE - A few minor fixes/enchancments
2011-08-29: Wombat IDE - Formatting issues
2011-08-27: Wombat IDE - C211 tree and image libraries
2011-08-26: Wombat IDE - Enter the bug tracker
2011-08-25: Wombat IDE - A ray of Hope
2011-08-14: Wombat IDE - A busy day of bug fixes
2011-08-13: Wombat IDE - Moving to Eclipse and Kawa
2011-07-29: Wombat IDE - Options options everywhere
2011-07-26: Wombat IDE - Docking windows
2011-07-26: Wombat IDE - And so it begins
2011-07-07: Wombat IDE - A bit of history
2010-02-06: Sandbox - It's Alive!
2009-12-09: Sandbox - Multiple definitions
2009-11-29: Sandbox - Bugfix
2009-11-29: Sandbox - More user friendly
2009-11-29: Sandbox - Interactivity
2009-11-28: Sandbox - Reactions
2009-11-28: Sandbox - And so it begins
2009-11-23: FLAIRS 2010
2009-11-12: AIGS 2009 Update
2009-11-07: AIGS 2009 Update
2009-11-02: AIGS 2009 Update
2009-10-30: AIGS 2009 Update
2009-09-30: AIGS 2009 Update
2009-09-22: AIGS 2009 Update
2009-09-17: AIGS 2009 Update
2009-09-09: AIGS 2009 Update
2009-09-01: AIGS 2009 Overview
2008-10-31: AIGS 2008 Update
2008-10-15: AIGS 2008 Update
2008-10-10: AIGS 2008 Update
2008-10-01: AIGS 2008 Overview
2007-10-20: PyMint - A Python Multi-Interpreter
2007-09-26: PyBallWorlds
2007-06-13: Colorizer for Java code
2006-12-14: Markov Random Text

SSRF Protection in Rails

2020-06-30

One of the more subtle bugs that a lot of companies miss is Server Side Request Forgery (SSRF). Like it’s cousin CSRF (cross-site request forgery), SSRF involves carefully crafting a request that runs in a way that the original developers didn’t expect to do things that shouldn’t be done. In the case of CSRF, one site is making a request on behalf of another in a user’s browser (cross-site), but in SSRF, a request is being made by a server on behalf of a client, but you can trick it into making a request that wasn’t intended.

For a perhaps more obvious example, consider a website with a service that will render webpages as preview images–consider sharing links on a social network. A user makes a request such as /render?url=https://www.google.com. This goes to the server, which will then fetch https://www.google.com, render the page to a screenshot, and then return that as a thumbnail.

This seems like rather useful functionality, but what if instead, the user gives the url: /render?url=https://secret-internal-site.company.com. Normally, company.com would be an internal only domain that cannot be viewed by users, but in this case–the server is within the corporate network. Off the server goes, helpfully taking and returning a screenshot. Another option–if you’re hosted on AWS–is the AWS metadata endpoint: http://169.254.169.254/latest/meta-data/. All sorts of interesting private things there. Or even more insidious, /render?url=file:///etc/password. That shouldn’t work in most cases, since most libraries know better than to rener file:// protocol URLs, but… not always!

Observation Server

2020-06-10

For a number of years now, I’ve been writing down my ‘observations’. Essentially, it’s a semi-structured set of text files that I keep in Dropbox. One for each day, in a folder by month. I record interesting people I see, things I did worth doing, and things my children did which were adorable.

After a while, I started wanting to look back, so first, I wrote a relatively simple script that would go back through my archives and send me everything I did 1/2/3/4/etc years ago. That worked well enough, but it ended up generating a lot of emails to go through some days. So the second generation is a server that can format those pages and display them as a nice webpage.

The most interesting part perhaps was dealing with the tarballs that I keep the archives in (they’re plain text, so they compress very well). I wanted to keep them compressed, so I had to decompress them in memory on the fly.

LD46: Tetris Life Scoring

2020-05-12

And so it ends.

Results

Category	Place	Score	Ratings
Overal	282^nd	3.688	26
Fun	408^th	3.438	26
Innovation	17^th	4.28	27
Theme	290^th	3.917	26
Graphics	608^th	3.313	26
Audio	436^th	3.182	24
Humor	761^st	2.205	24
Mood	529^th	3.208	26

LD46: My favorites (so far)

2020-04-20

As part of Ludum Dare, you’re supposed to review games. Here are some of my favorites (in the order I reveiwed them, so no particular order).

LD46: Tetris Life v1.0

2020-04-19

Controls:

Left and right to move the block and forth
Z and X to rotate it (or crash into things)
If a block gets stuck, you can hit ENTER to lock it in place
ESC to quit the current level

Goals:

To win: Get the plants to the top of the level
To lose: Kill off all of the plants #keepitalive

EDIT: I have included a v1.1 update that fixes a few minor bugs. Feel free to play either the official v1.0 build or the slightly updated (~10 minutes) v1.1 build with:

Add a ceiling
Correctly scale target
Scale control speed by difficulty

And there you have it. This page will serve as the main entry for Ludum Dare. If you’d rather download an executable for Windows/OSX/Linux, you can do so on the GitHub release page:

GitHub: Tetris Life v1.0

Speaking of which, per the Ludum Dare rules (and because I would have anyways), the full source code:

GitHub: Tetris Life source

MIT Licensed. I would appreciate a comment if you do anything cool with it.

Ludum Dare page, if you’d like to see my entry:

Ludum Dare: Tetris Sand

Some updates since last time:

Music!
More elements!
Polish!

LD46: I made a GAME!

2020-04-19

I made a game y’all!

Big changes:

It’s got a menu!
And a demo mode!
PLANTS GROW BY THEMSELVES!
And win/lose screens!

LD46: Score, Scaling, and BURNING! Oh my.

2020-04-19

Got some sleep and BACK AT IT!

Big changes:

We have scores now!
And proper scaling (which also fixes the performance issue, at least on my machine, turns out 1/16 as many updates helps)
Proper resetting