Bonsai 27B just changed the local LLM game forever.
1-bit quantization shrinks it from 54GB to just 3.8GB (-93%), while retaining 90% of its intelligence. That's insane.
With custom WebGPU kernels written by Fable 5 and GPT 5.6 Sol, the model now runs locally in your browser!
We collaborated with AWS on a complete guide to LLM Quantization and Deployment.
Learn about:
• Model formats, dynamic quants & making your own
• GGUF, NVFP4 or FP8
• Right tools & deploy on Amazon SageMaker
• Benchmark quality, latency & cost
Read: https://t.co/Okv7E4ANHj
Every project management tool was designed by project managers, for project managers.
This one was designed for ADHD, dyslexic, and autistic brains instead. And it turns out that also makes it better for literally everyone who just wants to get work done without configuring a tool for two weeks first.
It’s called Leantime.
Most PM tools throw you straight into a task board and expect you to already know what a “sprint” is. Leantime is built around a different idea: tasks should trace back to a goal, not float in a backlog with no reason attached.
→ Ships with strategic planning tools, Lean Canvas, SWOT analysis, built to connect the “why” to the actual task list, not just a bare Kanban board
→ The same tasks render as Kanban, table, or list, whichever your brain processes better on a given day
→ Gantt-style milestone timeline, a built-in project wiki, and time tracking, all native, not four separate tools stitched together
→ Interface is deliberately built to reduce cognitive overload and context-switching, an actual design principle here, not an accessibility checkbox added later
→ Self-host via Docker in under an hour, your team’s entire project history stays on a server you control
Jira was built assuming a certified project manager runs the workflow. Most teams are five people trying to ship something, not an enterprise PMO. Leantime is what a PM tool looks like when it’s built for the second group.
Open source. AGPL-3.0. 10,000+ GitHub stars.
JODER… esto va a romper internet.
Un equipo acaba de tirar a la basura todo lo que conocíamos de emuladores de AWS. Se llama Floci.
Un solo binario de Go de 13 MiB que levanta 45 servicios de AWS (S3, Lambda, DynamoDB, SQS, SNS, IAM, CloudFormation, Step Functions y más) en menos de 1 segundo. Sin Docker. Sin LocalStack. Sin facturas. Sin 4 GB de RAM robados. Sin esperas de 30 segundos.
Solo descargas el ejecutable, lo lanzas y ya tienes toda la nube de AWS corriendo en tu laptop.
Por qué esto es una puta locura:
• 13 MiB de RAM total. Una pestaña de Chrome consume 200 veces más.
• Arranque en frío en menos de 1 segundo.
• Un solo binario. Cero dependencias.
• Compatible al 100% con AWS SDK y CLI. Apuntas el endpoint a localhost y todo sigue funcionando.
• Binarios para Linux, macOS y Windows. Descargas y ejecutas.
LocalStack Pro de $40/mes → muerto.
Docker Desktop comiéndose tu RAM → muerto.
Entornos de staging caros → muertos.
Y lo mejor: funciona en CI/CD. Levantas todo el entorno en pipelines en menos tiempo del que tardas en escribir el comando.
100% open source
Si eres developer de AWS y esto te ha hecho decir “joder, por fin”… dale like, RT y sígueme. Esto es solo el principio.
El local development con AWS acaba de cambiar para siempre.
A hacker built a free tool where you enter an email or domain and it automatically finds every account, breach, and leak connected to it, and it's scary good.
It's called SpiderFoot. Steve Micallef started building it back in 2012, and it hasn't stopped growing since.
Type in an email address. It checks that address against every major data breach on record. Find a leaked password in there and it doesn't stop. It traces that password to a reused username.
It traces that username to a real account, sometimes with a real photo attached, sometimes with a real phone number sitting right next to it.
You never touch a second search bar. Every result feeds the next one automatically, across more than 200 connected modules pulling from places like Shodan, HaveIBeenPwned, and VirusTotal.
One clue goes in. A full map of a person's digital life comes out the other side, usually in a few minutes.
It's built into Kali Linux by default, which tells you exactly how seriously security professionals take it.
A new module is now live on Hack The Box Academy: AI-Augmented Pentesting Foundations.
Built for offensive security learners, this easy-difficulty module introduces the fundamentals of AI-augmented penetration testing, covering key concepts, safe use, prompt engineering, and practical prompting techniques.
Learn how AI can support the pentesting workflow while keeping technical thinking, validation, and responsible use at the center of the process.
Tier: 3
Difficulty: Easy
Category: Offensive
Start learning now >>> https://t.co/AfkvoUg73W
#HackTheBox #HTBAcademy #AIPentesting #Pentesting #OffensiveSecurity #Cybersecurity #CyberTraining #PromptEngineering #AI #InfoSec
a Spanish ham radio operator open-sourced a full signal intelligence tool.
it's called SigDigger. plug in a cheap $20 SDR dongle and it decodes literally any radio signal floating in the air around you.
wireless mics. baby monitors. garage remotes. analog security cams. walkie-talkies. all of it.
→ demodulate FSK, PSK & ASK signals in real-time
→ decode analog video transmissions
→ listen to analog voice channels
→ analyze unknown & bursty signals live
it's built by one guy in Spain (licensed ham, EA1IYR). the DSP core, the GUI, the widget library, all his own projects, all open source.
Linux and macOS. self-contained AppImage means zero compilation to get started. plugins for Deep Space Network amateur reception, weather satellites, and AntSDR are one flag away.
signal intelligence work that used to require a Rohde & Schwarz analyzer. now runs on your laptop.
100% Open Source.
I built a fully local vulnerability research pipeline that runs on commodity hardware - no cloud, no API costs.
Powered by Qwen3.6-35B MoE (3B active, uncensored, IQ3_M) - 39 tok/s at 131K context on my RTX 4070 Ti SUPER 16GB.
Architecture: N-pass clean-context fuzz audit
• Fresh context every pass
• Explores different attack surfaces
• Skeptic triage verifies every claim against source
364K+ CVEs indexed locally.
Early-stage - needs much more testing & refinements (I'll keep iterating). PRs very welcome!
https://t.co/nt4HuUFsor
We’re releasing new Qwen3.6 quants that run 2.5× faster on your GPU.
Qwen3.6-27B NVFP4 runs on 24GB VRAM.
35B-A3B can hit 17,561 tok/s (B200).
We also improved accuracy, tool calling, agent use, and looping.
Guide: https://t.co/EEQIlFrR0c
Qwen3.6 NVFP4: https://t.co/RWflncpLPJ
A new module is now live on Hack The Box Academy and Enterprise platforms: Red Team Mindset.
Built for offensive security learners, this medium-difficulty module explores the fundamentals of red teaming — what it is, why it matters, and how red team engagements are structured from start to finish.
Learn the differences between red teaming and penetration testing, understand the roles of red, blue, and white teams, and explore key concepts around engagement lifecycle, ethical obligations, communication strategies, and the evolving role of AI in adversary simulation.
Tier: 3
Difficulty: Medium
Category: Offensive
Start learning now >>> https://t.co/bO4i23tduJ
#HackTheBox #HTBAcademy #RedTeam #OffensiveSecurity #Cybersecurity #CyberTraining #PenetrationTesting #AdversarySimulation #CyberSkills #InfoSec
I randomly found this cool wolf helmet that I completely missed back in Dragonflight so I made a quick guide on how to get it if you missed it too! Only Orc and Mag'har Orc players can use it and collect it!
#worldofwarcraft#warcraft#wowtransmog
im releasing all my agent skills to the public
this is hundreds of hours of trial & error
every single global .agents skill i have
go grab it. it's free.
We’re warning you: do NOT join Cyber Apocalypse 2026.
Seriously. Why would you want 120 hours of lore-driven CTF adrenaline, new friends from the cyber community, and a $130K+ loot pool?
Sounds exhausting.
But if you insist on ruining your boring week, Cyber Apocalypse 2026: The Salt Crown begins July 24th.
Register for free, find your team, and prove us wrong >>> https://t.co/MJfE1oimBJ
#HackTheBox #HTB #CyberApocalypse26 #CTF #CaptureTheFlag #Cybersecurity https://t.co/DUi6MiJIlx