Complex Professional Infographics for $50

Infographic is an effective way to make complex topics simple. I will revamp your complex data into awesome infographics solutions using the latest graphic design trends. Provided source file is fully scalable, editable file. You can edit it in Adobe Illustrator. It´s recommended for future changes, exporting other types of files etc. Why me: 100% unique and professional workProvide you all file format like jpg, png, pdf, etc.All size resolutions available A4, A3, A2, Web Quality or any custom size.Revisions includedCreative and modern design Thank you for checking my PROFESSIONAL INFOGRAPHIC DESIGN. Looking forward to work with you.

by: Maxved
Created: —
Category: Art & Design
Viewed: 268


Namimg Methods – How to name method with complex execution sequence?

This question: https://stackoverflow.com/questions/1866794/naming-classes-how-to-avoid-calling-everything-a-whatevermanager contains many examples of suffixes and prefixes that can be used to come up with precise name for your class.

What about methods? For example, how to name a method that should execute some action upon validation of some state – ExecuteIfSomething, if we imagine that some transition in state should be executed after checking if something is true – ValidateTransition (kind of ok, but reading it makes me think that it should just validate something – not additionally execute some action), TranslateUponValidation?

It would be very useful to have list of common parts that can be added to action/topic/… to describe method.

Here are some that I can come up with at the moment:

  • Get
  • Set
  • Contains
  • Add
  • Remove
  • Push
  • Pop
  • Clear
  • Close
  • Lock
  • Open
  • Unlock
  • Enqueue
  • Dequeue
  • Activate
  • Deactivate
  • Translate
  • Move
  • Jump
  • Fill
  • Empty
  • Draw
  • Take
  • Give
  • Stash
  • Group
  • Shuffle
  • Mix
  • Sort
  • Merge
  • Inline
  • Validate
  • Check
  • Execute
  • Apply
  • Compose
  • Decompose
  • Decay
  • Break
  • Gather
  • Fuse
  • Grow
  • Rise
  • Drop
  • Fall
  • Pick
  • Select
  • Accept
  • Decline
  • Retire
  • Upgrade
  • Degrade
  • Increase
  • Decrease
  • Stop
  • Continue
  • Pause
  • Resume
  • Process
  • Advance
  • Create
  • Destroy

Maybe, I have put too many of them.

As you can see now – many if not almost all verbs can be used depending on the situation. Using them or finding the matching one shouldn’t be a problem. The problem is on how to combine them or use some of them to describe complex situations or complex executing sequence. The one I have described as an example is the most common one that I haven’t found a good solution for. Personally I am interested in this particular one. But having some way/approach (not a formula like Object + Action + …) to define/come up with method/function names can be very useful.

Main question here is how do you name a method as the one described in the example? It might seem to be a duplicate of this question – Meaningful concise method naming guidelines – I can clarify and update my question if that is going to be required.

Namimg Methods – How to name method with complex execution sequence?

This question: https://stackoverflow.com/questions/1866794/naming-classes-how-to-avoid-calling-everything-a-whatevermanager contains many examples of suffixes and prefixes that can be used to come up with precise name for your class.

What about methods? For example, how to name a method that should execute some action upon validation of some state – ExecuteIfSomething, if we imagine that some transition in state should be executed after checking if something is true – ValidateTransition (kind of ok, but reading it makes me think that it should just validate something – not additionally execute some action), TranslateUponValidation?

It would be very useful to have list of common parts that can be added to action/topic/… to describe method.

Here are some that I can come up with at the moment:

  • Get
  • Set
  • Contains
  • Add
  • Remove
  • Push
  • Pop
  • Clear
  • Close
  • Lock
  • Open
  • Unlock
  • Enqueue
  • Dequeue
  • Activate
  • Deactivate
  • Translate
  • Move
  • Jump
  • Fill
  • Empty
  • Draw
  • Take
  • Give
  • Stash
  • Group
  • Shuffle
  • Mix
  • Sort
  • Merge
  • Inline
  • Validate
  • Check
  • Execute
  • Apply
  • Compose
  • Decompose
  • Decay
  • Break
  • Gather
  • Fuse
  • Grow
  • Rise
  • Drop
  • Fall
  • Pick
  • Select
  • Accept
  • Decline
  • Retire
  • Upgrade
  • Degrade
  • Increase
  • Decrease
  • Stop
  • Continue
  • Pause
  • Resume
  • Process
  • Advance
  • Create
  • Destroy

Maybe, I have put too many of them.

As you can see now – many if not almost all verbs can be used depending on the situation. Using them or finding the matching one shouldn’t be a problem. The problem is on how to combine them or use some of them to describe complex situations or complex executing sequence. The one I have described as an example is the most common one that I haven’t found a good solution for. Personally I am interested in this particular one. But having some way/approach (not a formula like Object + Action + …) to define/come up with method/function names can be very useful.

Main question here is how do you name a method as the one described in the example? It might seem to be a duplicate of this question – Meaningful concise method naming guidelines – I can clarify and update my question if that is going to be required.

Namimg Methods – How to name method with complex execution sequence?

This question: https://stackoverflow.com/questions/1866794/naming-classes-how-to-avoid-calling-everything-a-whatevermanager contains many examples of suffixes and prefixes that can be used to come up with precise name for your class.

What about methods? For example, how to name a method that should execute some action upon validation of some state – ExecuteIfSomething, if we imagine that some transition in state should be executed after checking if something is true – ValidateTransition (kind of ok, but reading it makes me think that it should just validate something – not additionally execute some action), TranslateUponValidation?

It would be very useful to have list of common parts that can be added to action/topic/… to describe method.

Here are some that I can come up with at the moment:

  • Get
  • Set
  • Contains
  • Add
  • Remove
  • Push
  • Pop
  • Clear
  • Close
  • Lock
  • Open
  • Unlock
  • Enqueue
  • Dequeue
  • Activate
  • Deactivate
  • Translate
  • Move
  • Jump
  • Fill
  • Empty
  • Draw
  • Take
  • Give
  • Stash
  • Group
  • Shuffle
  • Mix
  • Sort
  • Merge
  • Inline
  • Validate
  • Check
  • Execute
  • Apply
  • Compose
  • Decompose
  • Decay
  • Break
  • Gather
  • Fuse
  • Grow
  • Rise
  • Drop
  • Fall
  • Pick
  • Select
  • Accept
  • Decline
  • Retire
  • Upgrade
  • Degrade
  • Increase
  • Decrease
  • Stop
  • Continue
  • Pause
  • Resume
  • Process
  • Advance
  • Create
  • Destroy

Maybe, I have put too many of them.

As you can see now – many if not almost all verbs can be used depending on the situation. Using them or finding the matching one shouldn’t be a problem. The problem is on how to combine them or use some of them to describe complex situations or complex executing sequence. The one I have described as an example is the most common one that I haven’t found a good solution for. Personally I am interested in this particular one. But having some way/approach (not a formula like Object + Action + …) to define/come up with method/function names can be very useful.

Main question here is how do you name a method as the one described in the example? It might seem to be a duplicate of this question – Meaningful concise method naming guidelines – I can clarify and update my question if that is going to be required.

Namimg Methods – How to name method with complex execution sequence?

This question: https://stackoverflow.com/questions/1866794/naming-classes-how-to-avoid-calling-everything-a-whatevermanager contains many examples of suffixes and prefixes that can be used to come up with precise name for your class.

What about methods? For example, how to name a method that should execute some action upon validation of some state – ExecuteIfSomething, if we imagine that some transition in state should be executed after checking if something is true – ValidateTransition (kind of ok, but reading it makes me think that it should just validate something – not additionally execute some action), TranslateUponValidation?

It would be very useful to have list of common parts that can be added to action/topic/… to describe method.

Here are some that I can come up with at the moment:

  • Get
  • Set
  • Contains
  • Add
  • Remove
  • Push
  • Pop
  • Clear
  • Close
  • Lock
  • Open
  • Unlock
  • Enqueue
  • Dequeue
  • Activate
  • Deactivate
  • Translate
  • Move
  • Jump
  • Fill
  • Empty
  • Draw
  • Take
  • Give
  • Stash
  • Group
  • Shuffle
  • Mix
  • Sort
  • Merge
  • Inline
  • Validate
  • Check
  • Execute
  • Apply
  • Compose
  • Decompose
  • Decay
  • Break
  • Gather
  • Fuse
  • Grow
  • Rise
  • Drop
  • Fall
  • Pick
  • Select
  • Accept
  • Decline
  • Retire
  • Upgrade
  • Degrade
  • Increase
  • Decrease
  • Stop
  • Continue
  • Pause
  • Resume
  • Process
  • Advance
  • Create
  • Destroy

Maybe, I have put too many of them.

As you can see now – many if not almost all verbs can be used depending on the situation. Using them or finding the matching one shouldn’t be a problem. The problem is on how to combine them or use some of them to describe complex situations or complex executing sequence. The one I have described as an example is the most common one that I haven’t found a good solution for. Personally I am interested in this particular one. But having some way/approach (not a formula like Object + Action + …) to define/come up with method/function names can be very useful.

Main question here is how do you name a method as the one described in the example? It might seem to be a duplicate of this question – Meaningful concise method naming guidelines – I can clarify and update my question if that is going to be required.

Complex XSS exploitation scenario [on hold]

I want to exploit XSS vulnerability. But my exploitation scenario is a bit different rather than just stealing cookies via XSS, sending them to attacker’s website and reusing them later (life is hard).

We have a self-written forum with 3 user levels:

  • user (he is a noob)
  • moderator (can ban/unban users, delete messages, close topics)
  • administrator (god_mode=ON)

We have several pitfalls during the exploitation process:

  • First of all we are just a regular user
  • Session-cookie has HttpOnly=1 flag enabled. So we cannot just steal cookies and login as moderator/admin
  • Actions like ban/unban user, delete/create topic, delete/post message require anti-CSRF tokens. So we need to collect those tokens with XSS.
  • We know that moderator/admin has additional buttons, extra pages. They have a very special extended functionality (interface) to administrate that forum. Since we are just a regular user we don’t how their interface exactly looks like, hence we’ll call it unknown interface (We can compare it to stackoverflow‘s or facebook‘s mod/admin browser web interface). So obviously we need to explore it in real time.
  • We know that phpmyadmin is installed (e.g. from some log files), but it is only accessible from local network (IP check/firewall). Only admin can access it (because his IP matches). So we need that XSS to login as admin via his active browser into phpmyadmin (we found via arbitrary file read vulnerability credentials from database)
  • Since IP checks are implemented there are several pages that can be accessed only by administrator from his local network. If we try to access them from outside, they will return 404 not found. Hence we need admin‘s browser (with his IP) to scan that site with tools like: DirBuster, sqlmap, etc. So we need some sort of API. And yes I would like to perform internal network attacks (source (PDF, thesis))
  • XSS needs to survive closing a tab (where user/admin/mod got injected) = we need some sort of persistency (our XSS is non-persistent =( ). Persistency must be as silent as possible, so no huge Pop-Ups – that would be silly.
  • Our exploitation trials are limited (admin will notice the exploit OR admin will drive away for X weeks and we will need to wait so far OR admin is just a headless chrome 😉 OR …). So we have a very limited time frame where we can exploit that. so we need to do everything in live mode here and now: sending payloads, exploiting CVEs / sending Server/Browser exploits, analysis, scans, …
  • I am sitting behind a NAT (just like everyone out there) and no, my router doesn’t support port forwarding (… and if it would be, wouldn’t it be a total overkill to just exploit a stupid XSS?) , but I would like to exploit XSS from my computer, locally. I wished I could just use BeEF on my local machine without installing it on a public server. Drop some PHP-Script or create a proxy on that (my own personal, of course not that vulnerable forum, lol) public server would be OK, since we need to communicate through the NAT.
  • If we find a way to login as mod/admin (e.g. password bruteforce) our IP will be recorded and XSS will be fixed immediately, password will get changed, attacking user will get banned and blocked by IP (we live in a mad world). So we need to exploit it quietly only by using this XSS.

I have my own (maybe it was hacked too, but who cares) public, buggy, outdated, unusable, where most of cybersec tools won’t work without upgrading to a newer version FreeBSD 11.1 server with root access (actually it is only a local VirtualBox, but imagine it is public). I tested it with several tools and failed epicly:

  • JSShell (requires special python packages like werkzeug, flask, etc. etc. after installing all of them it still fails (in comparison SQL injection tool sqlmap works like a charm just by installing it as pkg install sqlmap with default python 2.7 shipped with FreeBSD)).
  • BeEF (ufff, this is a tough one. requires ruby. there are problems with libdl.so (on FreeBSD 11.1) because it requires that library to compile some code. So it doesn’t work, because this library is missing and it seems there is no way to compile that library by myself. I spent several days googling for solutions, compiling my own stuff etc. really a headache. Upgrading to FreeBSD 11.2 or 12.* or switching to some other OS‘s is not an option, sorry. I really love my buggy FreeBSD 11.1 because I managed somehow to install php and stuff. no ruby. forget about ruby (I really like it, but it is not working).)
  • xssshell-xsstunnell (XSS Shell uses ASP + MS Access database. So, no)
  • JShell (written in python. obviously too simple for my purpose)

All server headers are “fine” (from attackers perspective) it the sense that XSS is well exploitable. We can bypass NoScript, uMatrix, Chromes Auditor, etc.

How can I exploit it? Which tools will work? Are there any alternatives to BeEF which I don’t know (please, no ruby, please) which are perfectly designed to exploit that? I really want to hack Chuck Norris <3

Reminder: I don’t need XSS scanning tool. I need an XSS exploitation tool (or maybe multiple XSS exploitation tools which then I just could connect like bricks with each other?) without installing fancy packages – solution should be portable or at least majority of features of that wish tool has to work without breaking the whole tool. Like sqlmap it has to be easy to install without additional headache.

Name for design pattern used in complex or boolean search criteria

I am looking to see if there is a term that describes this type of design pattern or if there are well known examples of its implementation.

This is an extension of the design pattern where a search term is entered into an input field and becomes a filter/criteria for a search query (e.g. e-commerce website) or tagging of an entity (e.g. UXSE question).

In the diagram below, there are two input fields from which a user can select a combination of the values provided in each list (and it might have some logic embedded depending on the value selected). The values are then combined and presented as a lozenge/badge/chip UI element that can be selected and deleted.

enter image description here

Are there examples of this type of design pattern used anywhere? And is there a name that is commonly associated with it?

What’s the best kind of test for complex calculations without access to external resources?

I have two libraries that handle the mapping from one family of objects to another one. I had to create a middle set of objects for other transformations.

So, the NativeConverters libray converts elements NativeElement to MiddleElement, and the ViewModelConverters library converts MiddleElement to ViewModelElements.

I have unit tests (with NUnit) for both NativeConverters and ViewModelConverters. So the single conversion works well.

Now, I want to test the whole process: given a converter from NativeConverters and another one from ViewModelConverters, I want to test that a NativeElement gets converted correctly into a ViewModelElement.

I don’t need access to DB, file system or whaterver, so I’m not sure that Integration tests are the best choice. But I’m not testing a single method, so it shouldn’t be a unit test.

What kind of test do you think could best fit this case?
Do you know any library for C#?

write a complex text into file(include double quotation and single quotation)

I want write a complex string into a file in python but the problem is my text itself have a command and double quotation and single quotation too so python can’t write it and assume its a command too. for example i want write below text into file.txt:

(b'[{\n  "SourceFile": "/home/parsezan/work/hamclaasy-backend/media/3da78f6d-73a0-41d0-bca6-9b237ba13cdd/4550af6d-ac08-4d22-a80c-681bd171d295.jpg",\n  "ExifToolVersion": 10.80,\n  "FileName": "4550af6d-ac08-4d22-a80c-681bd171d295.jpg",\n  "Directory": "/home/parsezan/work/hamclaasy-backend/media/3da78f6d-73a0-41d0-bca6-9b237ba13cdd",\n  "FileSize": "112 kB",\n  "FileModifyDate": "2019:08:01 16:42:27+04:30",\n  "FileAccessDate": "2019:08:01 16:42:27+04:30",\n  "FileInodeChangeDate": "2019:08:01 16:42:27+04:30",\n  "FilePermissions": "rw-r--r--",\n  "FileType": "JPEG",\n  "FileTypeExtension": "jpg",\n  "MIMEType": "image/jpeg",\n  "JFIFVersion": 1.01,\n  "ExifByteOrder": "Big-endian (Motorola, MM)",\n  "Make": "HUAWEI",\n  "Model": "CHM-U01",\n  "Orientation": "Horizontal (normal)",\n  "XResolution": 72,\n  "YResolution": 72,\n  "ResolutionUnit": "inches",\n  "Software": "CHM-U01 V100R001C185B120",\n  "ModifyDate": "2019:07:07 11:33:18",\n  "YCbCrPositioning": "Centered",\n  "DocumentName": "",\n  "ExposureTime": "1/30",\n  "FNumber": 2.0,\n  "ExposureProgram": "Program AE",\n  "ISO": 260,\n  "ExifVersion": "0210",\n  "DateTimeOriginal": "2019:07:07 11:33:18",\n  "CreateDate": "2019:07:07 11:33:18",\n  "ComponentsConfiguration": "Y, Cb, Cr, -",\n  "ShutterSpeedValue": "1/30",\n  "ApertureValue": 2.0,\n  "BrightnessValue": 0,\n  "ExposureCompensation": 0,\n  "MeteringMode": "Average",\n  "LightSource": "Daylight",\n  "Flash": "Auto, Did not fire",\n  "FocalLength": "3.8 mm",\n  "MakerNoteUnknownText": "M[64] [e0,1] [ad,f5]",\n  "UserComment": "Hisilicon Balong",\n  "SubSecTime": 506779,\n  "SubSecTimeOriginal": 506779,\n  "SubSecTimeDigitized": 506779,\n  "FlashpixVersion": "0100",\n  "ColorSpace": "sRGB",\n  "ExifImageWidth": 4160,\n  "ExifImageHeight": 3120,\n  "InteropIndex": "R98 - DCF basic file (sRGB)",\n  "InteropVersion": "0100",\n  "SensingMethod": "One-chip color area",\n  "FileSource": "Digital Camera",\n  "SceneType": "Directly photographed",\n  "CustomRendered": "Custom",\n  "ExposureMode": "Auto",\n  "WhiteBalance": "Auto",\n  "DigitalZoomRatio": 1,\n  "FocalLengthIn35mmFormat": "27 mm",\n  "SceneCaptureType": "Standard",\n  "GainControl": "None",\n  "Contrast": "Normal",\n  "Saturation": "Normal",\n  "Sharpness": "Normal",\n  "SubjectDistanceRange": "Unknown",\n  "OffsetSchema": 60,\n  "DeviceSettingDescription": "(Binary data 4 bytes, use -b option to extract)",\n  "Compression": "JPEG (old-style)",\n  "ThumbnailOffset": 1134,\n  "ThumbnailLength": 6358,\n  "ImageWidth": 800,\n  "ImageHeight": 600,\n  "EncodingProcess": "Baseline DCT, Huffman coding",\n  "BitsPerSample": 8,\n  "ColorComponents": 3,\n  "YCbCrSubSampling": "YCbCr4:2:0 (2 2)",\n  "Aperture": 2.0,\n  "ImageSize": "800x600",\n  "Megapixels": 0.480,\n  "ScaleFactor35efl": 7.1,\n  "ShutterSpeed": "1/30",\n  "SubSecCreateDate": "2019:07:07 11:33:18.506779",\n  "SubSecDateTimeOriginal": "2019:07:07 11:33:18.506779",\n  "SubSecModifyDate": "2019:07:07 11:33:18.506779",\n  "ThumbnailImage": "(Binary data 6358 bytes, use -b option to extract)",\n  "CircleOfConfusion": "0.004 mm",\n  "FOV": "67.4 deg",\n  "FocalLength35efl": "3.8 mm (35 mm equivalent: 27.0 mm)",\n  "HyperfocalDistance": "1.70 m",\n  "LightValue": 5.5\n}]\n', None)"  

i try :

    result = 'echo "{result}" >> file.txt'.format(result=str(raw_result))     subprocess.Popen(result,                           stdout=subprocess.PIPE,                           stderr=subprocess.STDOUT,                           shell=True) 

then try to change it into dic:

    result = 'echo "{result}" >> /home/parsezan/work/django.txt'.format(result=str({'result': str(raw_result)}))     subprocess.Popen(result,                           stdout=subprocess.PIPE,                           stderr=subprocess.STDOUT,                           shell=True) 

but no one doesn’t work.any idea?thank you

Architecture strategies for a complex competition scoring system

Competition description:

  • There are about 10 teams competing against each other over a 6-week period.
  • Each team’s total score (out of a 1000 total available points) is based on the total of its scores in about 25,000 different scoring elements.
  • Most scoring elements are worth a small fraction of a point and there will about 10 X 25,000 = 250,000 total raw input data points.
  • The points for some scoring elements are awarded at frequent regular time intervals during the competition. The points for other scoring elements are awarded at either irregular time intervals or at just one moment in time.
  • There are about 20 different types of scoring elements.
  • Each of the 20 types of scoring elements has a different set of inputs, a different algorithm for calculating the earned score from the raw inputs, and a different number of total available points. The simplest algorithms require one input and one simple calculation. The most complex algorithms consist of hundreds or thousands of raw inputs and a more complicated calculation.
  • Some types of raw inputs are automatically generated. Other types of raw inputs are manually entered. All raw inputs are subject to possible manual retroactive adjustments by competition officials.

Primary requirements:

  • The scoring system UI for competitors and other competition followers will show current and historical total team scores, team standings, team scores by scoring element, raw input data (at several levels of aggregation, e.g. daily, weekly, etc.), and other metrics.
  • There will be charts, tables, and other widgets for displaying historical raw data inputs and scores.
  • There will be a quasi-real-time dashboard that will show current scores and raw data inputs.
  • Aggregate scores should be updated/refreshed whenever new raw data inputs arrive or existing raw data inputs are adjusted.
  • There will be a “scorekeeper UI” for manually entering new inputs, manually adjusting existing inputs, and manually adjusting calculated scores.

Decisions:

  • Should the scoring calculations be performed on the database layer (T-SQL/SQL Server, in my case) or on the application layer (C#/ASP.NET MVC, in my case)?
  • What are some recommended approaches for calculating updated total team scores whenever new raw inputs arrives? Calculating each of the teams’ total scores from scratch every time a new input arrives will probably slow the system to a crawl. I’ve considered some kind of “diff” approach, but that approach may pose problems for ad-hoc queries and some aggegates. I’m trying draw some sports analogies, but it’s tough because most games consist of no more than 20 or 30 scoring elements per game (I’m thinking of a high-scoring baseball game; football and soccer have fewer scoring events per game). Perhaps a financial balance sheet analogy makes more sense because financial “bottom line” calcs may be calculated from 250,000 or more transactions.
  • Should I be making heavy use of caching for this application?
  • Are there any obvious approaches or similar case studies that I may be overlooking?