Show HN: QuickTunes: Apple Music player for Mac with iPod vibes (furnacecreek.org)

77 points by albertru90 11h ago 24 comments

Show HN: Mapping supply chain of products (updated) (beneluxmanufacturing.com)

2 points by nodezero 1h ago 0 comments

Show HN: Historical GPX Wind Visualizer (github.com)

2 points by pppone 5h ago 0 comments

Show HN: Cant, rust nn lib for learning (github.com)

2 points by TuckerBMorgan 6h ago 0 comments

Show HN: Explore GitHub via What Stargazers Also Starred (github.com)

2 points by fengkan 6h ago 0 comments

Show HN: Price Per Token – LLM API Pricing Data (pricepertoken.com)

322 points by alexellman 1d ago 125 comments

Show HN: Open-source "God mode killer" IGA in Keycloak (github.com)

2 points by SaltNHash 7h ago 3 comments

Show HN: The Aria Programming Language (github.com)

2 points by egranata_aria 8h ago 2 comments

Show HN: I built a biological network visualization tool (nodes.bio)

37 points by jmg421 1d ago 25 comments

Show HN: The Montana MiniComputer (mtmc.cs.montana.edu)

109 points by recursivedoubts 1d ago 22 comments

Show HN: Apple Health MCP Server (github.com)

196 points by _neil 3d ago 41 comments

Show HN: Convert from MIDI file to ASCII tablature (and more) (github.com)

2 points by ycombiredd 10h ago 0 comments

Show HN: Suhya – Omegle Alternative (suhya.com)

3 points by Codegres 10h ago 2 comments

Show HN: Nia – MCP server that gives more docs and repos to coding agents (trynia.ai)

78 points by jellyotsiro 2d ago 67 comments

Show HN: I made a web app for structured podcast summaries (wisdomsnap.com)

8 points by bardonadam 22h ago 0 comments

Show HN: Tsbro – TypeScript for the browser, no build step (github.com)

38 points by stagas 5d ago 26 comments

Show HN: Mcp-chromautomation – Chrome MCP that is not a puppeteer (github.com)

3 points by tunabr 16h ago 0 comments

Show HN: A macOS clock that stays visible when coding or binging in fullscreen (cornertime.app)

53 points by muvich3n 1d ago 38 comments

Show HN: Open IT Maintenance Planner (maintenance-planner.vangemert.dev)

12 points by spmvg 3d ago 7 comments

Show HN: Compass CNC – Open-source handheld CNC router (compassrouter.com)

174 points by camchaney 8d ago 46 comments

Show HN: The missing link of a bookstore's tech stack (bookhead.net)

94 points by greenie_beans 3d ago 26 comments

Show HN: A word of the day that doesn't suck

82 points by jsomers 4d ago 33 comments

Show HN: Phind.design – Image editor & design tool powered by 4o / custom models (phind.design)

88 points by rushingcreek 4d ago 22 comments

Show HN: TheProtector – Linux Bash script for the paranoid admin on a budget (github.com)

165 points by lotussmellsbad 3d ago 35 comments

Show HN: The Magic of Code – book about the wonders and weirdness of computation (themagicofcode.com)

110 points by arbesman 4d ago 29 comments

Show HN: Tinder but it's only pictures of my wife and I can only swipe right (trytender.app)

1006 points by risquer 3d ago 261 comments

Show HN: A code editor that integrates into the browser (tachicode.dev)

44 points by quintu5 2d ago 10 comments

Show HN: Lotas – Cursor for RStudio (lotas.ai)

81 points by jorgeoguerra 5d ago 28 comments

Show HN: Easy Python Time Parsing (github.com)

21 points by felixnext 6d ago 2 comments

Show HN: Self-updating MCP server for official pip, uv, poetry and conda docs (github.com)

30 points by keminghe 3d ago 18 comments

Show HN: Any-LLM – Lightweight router to access any LLM Provider (github.com)

123 points by AMeckes 4d ago 68 comments

Show HN: Play Flash Games on Mobile with Ruffle Virtual Keyboard (github.com)

3 points by ed253 1d ago 0 comments

Show HN: WTFfmpeg – Natural Language to FFmpeg Translator (github.com)

87 points by ycombiredd 4d ago 68 comments

Show HN: Conductor, a Mac app that lets you run a bunch of Claude Codes at once (conductor.build)

228 points by Charlieholtz 9d ago 111 comments

Show HN: Sleep Blocker MCP to prevent your Mac sleep (github.com)

4 points by cuongnt3010 1d ago 0 comments

Show HN: Pogocache – Fast caching software (github.com)

92 points by tidwall 5d ago 29 comments

Show HN: Local Email Client for AI Horseless Carriages (github.com)

14 points by shahahmed 2d ago 6 comments

Show HN: Open-source macOS CLI tool for aliasing and timing command line runs (github.com)

4 points by frankbyte 1d ago 2 comments

Show HN: Improving search ranking with chess Elo scores (zeroentropy.dev)

192 points by ghita_ 10d ago 65 comments

Show HN: StackSafe, Taming Recursion in Rust Without Stack Overflow (fast.github.io)

2 points by tison 1d ago 0 comments

Show HN: LogMerge – View multiple log files in a merged view (github.com)

3 points by faisalhackshah 1d ago 0 comments

Show HN: Fundatio – Free macOS App to Structure Project Folders (apps.apple.com)

3 points by masterpos 1d ago 0 comments

Show HN: RcloneView – A GUI for Rclone to Manage and Sync Cloud Storage

13 points by newclone 3d ago 0 comments

Show HN: ggc – A terminal-based Git CLI written in Go (github.com)

65 points by bmf-san 10d ago 61 comments

Show HN: X11 desktop widget that shows location of your network peers on a map (github.com)

204 points by h2337 6d ago 86 comments

Show HN: Built an email marketing platform after paying $230/month (fertit.com)

44 points by rasadov 5d ago 35 comments

Show HN: A rudimentary game engine to build four dimensional VR evironments (brainpaingames.com)

39 points by teemur 7d ago 2 comments

Show HN: BlackMagic-JS – Automatic dark mode framework that just works (github.com)

4 points by LucAngevare 1d ago 0 comments

Show HN: Product as Code – YAML-based product management for AI coding workflows (productascode.org)

7 points by mantcz 2d ago 1 comments

Show HN: Shoggoth Mini – A soft tentacle robot powered by GPT-4o and RL (matthieulc.com)

606 points by cataPhil 11d ago 107 comments

Allianz Life confirms data breach impacts majority of 1.4M customers

13 gpi 1 7/26/2025, 6:41:29 PM bleepingcomputer.com ↗

Comments (1)

ofjcihen · 13h ago

The lack of security around most Salesforce implementations is ridiculous.

That’s partially due to SF devs not knowing enough about the product but also due to Salesforce treating security as an afterthought.

For a poorly configured implementation it takes 2 web requests as an unauthenticated user to know all of the data you can pull down and then do it.

Don’t even get me started on the complete lack of monitoring. I basically had to design an entire security monitoring setup outside of Salesforce using their (absolutely awful) logs to get anything close to usable.

Edit: here’s a guide someone wrote. https://www.varonis.com/blog/misconfigured-salesforce-experi...

Seriously, you can automate this and then throw it at the end of recon to find SF sites. I’ve done it.