Arch Linux Guide

注意：您可以使用此方便的扩展标记PDF轻松地将此标记文件转换为VSCODE的PDF。

1. 入门

2. 获取软件

3. 赌博

4. 设置MacOS工作区

5. 设置Windows 10工作区

6. 在Linux上使用Android和Android应用

7. 专业音频/视频编辑

8. Kubernetes

9. 机器学习

10. 机器人技术

11. 开源安全性

12. DevOps

13. 扑动的发展

14. 联网

15. 数据库

16. Gnome扩展

17. 高级主题

Arch Linux是一个独立开发的X86-64通用GNU/Linux分布，足以适合任何角色。发展着重于简单，极简主义和代码优雅。 ARCH被安装为最小基本系统，由用户配置，仅通过安装其独特目的所需或所需的内容来组装自己的理想环境。

Archwiki是网络上Arch Linux文档的最佳来源。

WSL上的Arch Linux（Linux的Windows子系统）

Etcher是一种开源的跨平台软件，可轻松将操作系统图像刷到microSD卡或USB设备。

Manjaro Linux

Endeavouros

Gauruda Linux

Arcolinux

Steam OS 3.0是使用KDE等离子桌面的不变操作系统（OS）。这使您可以使用Flatpak将应用程序安装在容器中，而不是在根文件系统上。这不仅意味着应用程序的安装是从核心文件系统中隔离的，而且还要大大降低了恶意应用程序妥协/破坏系统的能力。

https://aur.archlinux.org/gnome-tweaks-git.git

打开终端并运行：

sudo pacman -S gnome-tweak-tool //let ' s you customize your desktop layout. 

Pop Shell是用于GNOME Shell的键盘驱动的层，可快速且明智的导航和Windows的管理。流行外壳的核心功能是添加类似于i3WM的高级瓷砖窗口管理。

https://aur.archlinux.org/packages/gnome-shell-extension-pop-shell-git.git

使用防火墙

打开终端并运行：

sudo firewall-cmd --state
sudo systemctl status firewalld

回到顶部

Arch Linux用户存储库（AUR）包含数千个构建脚本，用于使用Arch Linux MakePKG应用程序从源中编译近68,000个可安装的软件包。

注1：所有这些软件也可以在其他流行的Linux发行版中获得，例如Debian，Linux Mint，Elementary OS，Fedora，Manjaro Linux，EndeaVouros和Arch Linux。

App Outlet是一家受Linux App Store在线服务启发的通用应用程序商店（Flatpaks，快照和附属）。

sudo pacman -S flatpak

Flathub是Flatpak应用程序的构建和分销服务。

Flathub论坛

在Arch Linux上安装快照

Snap Store是用于快照应用程序的构建和分销服务。

快照论坛

AppimageHub是适用应用程序的构建和分销服务。

Appimage Manager是适应的软件包管理器。

附属论坛

回到顶部

蒸汽在Archwiki中

Steam Flatpak

Proton是与Steam客户端一起使用的工具，该工具允许Windows在Linux操作系统上运行的游戏。它使用葡萄酒来促进这一点。

• 单击“ Steam”，然后“设置”以打开左角弯角的设置窗口。
• 在“设置”窗口上，单击“ Steam Play”。确保您检查“启用Steam Play获取支持的文件”和“为所有其他标题启用Steam Play”复选框。最后，选择要从下拉菜单中使用的质子版本。

ProtondB是其他游戏玩家的100,000多个游戏报告的集合，他们在Linux上使用Proton测试游戏，并提供了游戏表现的总分。越来越多的建议提供了调整，您可以在质子继续开发时尝试使游戏工作。除此之外，您还可以探索本网站上的Steam Game目录以浏览并发现以前在Linux上使用的广泛标题。

Lutrisis是Linux的游戏客户端。除了当前的控制台生成外，它还可以让您访问所有视频游戏。另外，与其他商店很好地集成了，例如GOG，Steam，Battle.net，Origin，Uplay和许多其他来源，这些资源使您可以导入现有的游戏库和社区维护的安装脚本，为您提供了完全自动化的设置。

添加Epic Games商店

GameHub是您所有游戏的统一库。它使您可以将游戏从不同的平台存储到一个程序中，以使您更容易管理游戏。

GameHub支持：

• Linux的本地游戏

• 多个兼容层：

  • 葡萄酒
  • 质子
  • DOSBOX
  • retroarch
  • scummvm
  • Winewrap-一组预先配置的包装纸，用于支持游戏；
  • 自定义模拟器

• 多个游戏平台：

  • 蒸汽
  • GOG
  • 谦虚的捆绑包（包括谦虚的trove）
  • itch.io

GeForce现在使用Chromebook版本在Google Chrome或任何基于铬的Web浏览器（例如Brave，Vivaldi和Microsoft Edge）中玩所有游戏。另外，现在可以在Snap Store Geforce中作为电子桌面应用程序。

Moonlight Game Streaming是一个程序，可让您通过Internet从PC游戏中流式传输，而无需配置。无论您是在另一个房间还是距游戏钻机，几乎所有设备都从任何设备中流式传输。

Chiaki是PlayStation 4和PlayStation 5远程播放的免费开源软件客户端，用于Linux，FreeBSD，OpenBSD，Android，MacOS，Windows，Nintendo Switch以及可能的平台。

Xbox Project XCloud是Microsoft基于云的Xbox游戏流式技术技术（目前在Beta中） 。玩Forza Horizo​​n 4，Halo 5：Guardians，War 4 Wars Gears of War，Thieves，Cuphead，Red Dead Redemption 2和您的移动设备或Chrome Web浏览器上的100多种游戏之类的游戏。 Microsoft的Xbox Project XCloud确实需要Xbox Game通过Ultimate订阅。

Retroarch是模拟器，游戏引擎和媒体玩家的前端。它使您可以通过其光滑的图形接口在各种计算机和游戏机上运行经典游戏。设置也是统一的，因此一劳永逸地进行配置。

海豚是最近两个Nintendo视频游戏机的模拟器：GameCube和Wii。它使PC游戏玩家可以在全高清（1080p）中享受这两个游戏机的游戏，并具有多种增强功能：与所有PC控制器，涡轮速度，网络多人游戏等等。

Citra是Nintendo 3DS的开源仿真器，能够玩许多您喜欢的游戏。

Yuzu是从Citra创建者的Nintendo切换的Nintendo切换的实验开源仿真器。

DOSBOX是一种开源DOS模拟器，主要侧重于运行DOS游戏。

MAME是街机机仿真器。

Xemu是原始的Xbox模拟器。

Greenwithenvy（GWE）是由Roberto Leinardi设计的GTK系统实用程序，可提供信息，控制粉丝并超频您的NVIDIA视频卡，以提高性能。可在流行店以Flatpak的价格购买。

CorectRL是一个免费的开源Linux应用程序，可让您轻松使用本机和Windows应用程序的应用程序配置文件来控制计算机硬件，具有基本的CPU控件和完整的AMD GPU控件（对于旧型号和新型号）。

与Yay一起运行：

yay -Sy corectrl

Geekbench 5是一个跨平台基准测试，可通过按下按钮来衡量系统的性能。

Unigine叠加是PC硬件的极端性能和稳定性测试：视频卡，电源，冷却系统。

葡萄酒（Wine不是模拟器）是一个兼容层，能够在几个符合POSIX的操作系统（例如Linux，MacOS和BSD）上运行Windows应用程序。 Wine不再像虚拟机或模拟器那样模拟内部Windows逻辑，而是将Windows API调用转换为POSIX呼叫，从而消除了其他方法的性能和内存惩罚，并允许您将Windows应用程序清晰地集成到桌面中。

回到顶部

要求

• 现代的Linux分销
• QEMU> 2.11.1
• 需要具有Intel VT-X / AMD SVM支持的CPU
• > = MacOS Sierra需要具有SSE4.1的CPU
• > = MacOS Mojave需要具有AVX2支持的CPU
• 安装过程的Internet访问

打开终端并运行：

sudo pacman -S qemu uml-utilities virt-manager dmg2img git wget libguestfs-tools p7zip

Sosumi是一个应用程序，可以让您在VM中下载并安装MACOS。应用基于MacOS-Simple-KVM。

MacOS的Opencore

回到顶部

要求

• 现代的Linux分销
• QEMU> 2.11.1
• 需要具有Intel VT-X / AMD SVM支持的CPU
• WindowsGuestDrivers/下载驱动程序-KVM
• 安装过程的Internet访问

打开终端并运行：

sudo pacman -S qemu uml-utilities virt-manager gnome-boxes

GNOME盒子是一个应用程序，可让您访问本地或远程运行的虚拟机。它还允许您连接到远程计算机的显示。

Windows 10的OpenCore

回到顶部

Android Studio是Google Android操作系统（OS）的开发套件。它建立在Jetbrains Intellij Idea软件上，并专门为Android开发设计。它可在Windows，MacOS和Linux上下载。

Android虚拟设备（AVD）是Android Studio中的一种配置，它定义了要在Android Emulator中模拟的Android手机，平板电脑，佩戴OS，Android TV或Automotive OS设备的特性。 Android模拟器在计算机上模拟Android设备，以便您可以在各种设备和Android API级别上测试您的应用程序，而无需使用每个物理设备。

Lineageos是基于Android移动平台的各种设备的免费和开源操作系统。

Anbox是一种应用程序，它提供了一种基于容器的方法，可以在Ubuntu，Debian Fedora和OpenSuse等常规GNU/Linux系统上引导完整的Android系统。

Anbox Cloud是由Canonical提供的移动云计算平台。在云中运行Android，以高度和任何类型的硬件运行。

Genymotion是一种非常快速的Android模拟器。该程序本身基于VirtualBox，以其有效的快速速度而闻名，对于在Windows，Mac和Linux桌面上运行Android应用程序是有用的。

桌面

具有高性能的本地虚拟设备。

• 模拟各种虚拟设备配置（Android版本，屏幕尺寸，硬件容量等）
• 由于我们的完整硬件传感器（GP，网络，多点等），模拟了多种方案
• 跨平台：Windows，Mac和Linux
• 用ADB轻松操纵
• 公司（业务）的员工每年$ 412。所有功能，高级支持。
• 自由职业者每年136美元（独立）。所有功能，最佳努力支持。
• 仅供个人使用（学习与娱乐）。有限的功能，没有支持。

SCRCPY是一种逐轴的应用，可提供连接在USB（或TCP/IP上）的Android设备的显示和控制。它不需要任何根访问，并且可以在GNU/Linux，Windows和MacOS上使用。 Android设备至少需要API 21（Android 5.0）。

回到顶部

H.264（AVC）是基于面向块的和运动补偿的整数DCT编码的视频压缩标准，该标准定义了多个支持8K的多个配置文件（工具）和级别（工具）和级别（最大比特率和分辨率）。

H.265（HEVC）是视频压缩标准，是H.264（AVC）的继任者。它在相同的视频质量级别上提供25％至50％的数据压缩，或者以相同的位速率改进视频质量。

FFMPEG是一个领先的多媒体框架，可以解码，编码，transcode，mux，demux，stream，filter和play人类和计算机创建的所有内容。它支持最晦涩的古代格式，直到较最前沿的格式，例如Windows，MacOS和Linux等多个平台。

Handbrake是一种工具，用于从几乎所有格式转码视频，并选择了广泛支持的编解码器。它在窗口，MacOS和Linux上受支持。

HTTP（DASH）上的动态自适应流是一种自适应流协议，它允许视频流根据网络性能在比特率之间切换，以保持视频播放。

OpenMax™是一种跨平台API，通过启用可以在多个操作系统和硅平台上开发，集成和编程的加速多媒体组件来提供全面的流媒体编解码器和应用程序可移植性。

Davinci Resolve是世界上唯一的解决方案，它结合了专业的8K编辑，颜色校正，视觉效果和音频后的生产，全部将其全部组合为一个软件工具！您可以单击一次在编辑，颜色，效果和音频之间立即移动。 Davinci Resolve Studio也是为多用户协作而设计的唯一解决方案，因此编辑，助手，色彩师，VFX艺术家和声音设计师都可以同时在同一项目上进行现场工作。

Blender带有内置的视频序列编辑器，使您可以执行视频剪切和剪接等基本操作，以及更复杂的任务，例如视频掩盖或颜色分级。视频编辑器包括：实时预览，Luma波形，Chroma vectorscope和直方图显示。音频混合，同步，擦洗和波形可视化。

Kdenlive是一种开源视频编辑工具，支持无限的多媒体文件。它基于MLT框架KDE和QT。正在寻找包含功能的非常通用的视频编辑工具的人。最新的20.08版本具有诸如接口布局，多个音频流支持，缓存的数据管理和Zoombars和Zoombars和效果面板中的漂亮功能，但有人可能会说此版本的亮点是稳定性和接口改进。

OpenShot是一种开源视频编辑工具，专为编辑环境中的新用户设计。它具有简单的功能，例如简单的拖放功能，它提供了易于使用且快速学习的用户界面。功能强大的视频编辑器提供了许多有效的方法来剪切和修剪视频。您可以自由使用无限的曲目，视频效果引擎，标题编辑器，3D动画，慢动作和时间效果。它支持由FFMPEG（例如WebM（VP9），AVCHD（LIBX264），HEVC（LIBX265）和MMP3（Libmp3lame）和AAC（LIBFAAC）等音频编解码器所支持的常用视频编解码器。该程序可以渲染MPEG4，OGV，Blu-ray和DVD视频，以及用于上传到YouTube等Internet视频网站的完整高清视频。

LightWorks是一种非线性视频编辑鼓掌，用于编辑和掌握电影行业使用的数字视频。它的专业版已用于票房热门歌曲，例如Shutter Island，Pulp Fiction和Mission Essible。恐吓用户界面。像专业的视频编辑器（例如Adobe Premiere Pro）一样，LightWorks对于新用户使用也很复杂。

ShotCut是开源的多平台视频编辑器。您可以执行各种操作，例如视频编辑（包括4K视频质量），添加效果，创建新电影，导入大多数图像文件格式，导出到几乎所有文件格式等等。

Olive是一款免费的非线性视频编辑器，旨在为高端专业视频编辑软件提供功能齐全的替代方案。

OBS（开放广播软件）是免费的开源软件，用于视频录制和直播。流到Twitch，YouTube和许多其他提供商或使用高质量的H264 / AAC编码录制自己的视频。

Reaper是针对计算机的完整数字音频生产应用程序，它提供了完整的多站音频和MIDI录制，编辑，处理，混合和掌握工具集。REAPER支持广泛的硬件，数字格式和插件，并且可以全面扩展，脚本化和修改。

Jack Audio Connection Kit aka Jack是一款专业的声音服务器守护程序，在实现其API的应用程序之间为音频和MIDI数据提供实时，低延迟连接。可以将Jack配置为通过网络将音频数据发送到“主”计算机，然后将音频输出到物理设备。这对于在不需要其他电缆或硬件混音器的情况下将音频从许多“从属”计算机中混合而有用，并尽可能长时间保持音频路径数字。

Bitwig Studio是一个数字音频工作站，具有线性和非线性工作流，用于声音设计，录制，实时性能等。以及90多种仪器，效果和其他创意工具。它是受支持的Windows，MacOS和Linux。

PipeWire是一种服务器和用户空间API，可处理多媒体管道。它在音频和视频设备上提供了低延迟的基于图形的处理引擎，可用于支持Pulseaudio和Jack当前处理的用例。 PipeWire的设计采用强大的安全模型，使来自容器化应用程序的音频和视频设备变得容易。图中的节点可以作为单独的过程实现，与插座通信并使用FD传递交换多媒体内容。

Yabridge是一种在Linux上使用Windows VST2和VST3插件的现代透明方法。 Yabridge在64位Linux VST主机中使用32位和64位Windows VST2和VST3插件同时无缝支撑，就像它们是本机VST2和VST3插件一样，对插件组的可选支持以启用用于VST2插件的Plugin Inter-Plugin通信，以获取VST2插件和快速启动时间。

Sonobus是一种易于使用的应用程序，用于在Internet或本地网络之间在设备之间流式传输高质量的低延迟点对点音频。

Avid Pro Tools是一种为词曲作者，音乐家，制作人和工程师提供的行业标准音频制作软件。

LMMS是一种开源数字音频工作站应用程序。当LMM与适当的计算机硬件配对时，它可以通过安排样品，合成声音，在MIDI键盘上播放以及结合跟踪器和音序器的功能来制作音乐。该程序由Paul Giblock和Tobias Junghans开发，代表“ Linux Multimedia Studio”，并支持便利的插件，使其能够在不同的操作系统上工作。

Ardor是全球团队的开源，包括音乐家，程序员和专业录音工程师的合作努力。开发是透明的 - 任何人都可以观察我们的工作。就像一块好老式硬件一样，您可以打开盒子并在里面看。

Audacity是Windows，Mac OS X，GNU/Linux和其他操作系统的易于使用的多轨音频编辑器和录音机。由一群志愿者开发为开源，并免费提供。惊人的支持社区。

瞥见是基于用于Linux，MacOS和Windows的GNU图像操作程序的跨平台栅格图形编辑器。制作YouTube视频缩略图的好工具。

回到顶部

Kubernetes（K8S）是一种开源系统，用于自动化容器应用程序的部署，扩展和管理。

使用Kubeadm构建高可用性（HA）集群。资料来源：Kubernetes.io，2020年

Anthos是一个现代的应用程序管理平台，为云和本地环境提供一致的开发和运营经验。

Red Hat OpenShift是一个完全管理的Kubernetes平台，为本地，混合和多云部署提供了基础。

OKD是优化用于连续应用程序开发和多租户部署的Kubernetes的社区分布。 OKD在Kubernetes之上添加了以开发人员和以操作为中心的工具，以实现快速的应用程序开发，易于部署和扩展以及针对小型和大型团队的长期生命周期维护。

ODO是在K​​ubernetes和OpenShift上编写，构建和部署应用程序的开发人员的快速，迭代且直接的CLI工具。

KATA操作员是在OpenShift以及Kubernetes群集上执行Kata运行时进行生命周期管理（安装/升级/卸载）的操作员。

Thanos是一组组件，可以组成具有无限存储容量的高度可用的度量系统，可以在现有的Prometheus部署之上无缝添加。

OpenShift Hive是一家运营商，可在Kubernetes/OpenShift顶部运行。 Hive服务可用于提供和执行OpenShift 4群集的初始配置。

ROOK是一种将分布式存储系统变成自我管理，自我缩放，自我修复存储服务的工具。它可以自动化存储管理员的任务：部署，自举，配置，配置，缩放，升级，升级，迁移，灾难恢复，监视和资源管理。

VMware Tanzu是一个集中的管理平台，可在多个团队和私人/公共云中始终如一地运营和确保您的Kubernetes基础架构和现代应用程序。

Kubespray是一种结合Kubernetes和Ansible的工具，可以轻松安装可以部署在AWS，GCE，Azure，OpenStack，vsphere，vSphere，vsphere，bare tacke（Bare Metal），Oracle Cloud Cloud Infrstructure（实验性）或Baremetal或Baremetal或Baremetal上的Kubernetes群集。

Kubeinit为部署和配置多个Kubernetes发行版提供了Ansible剧本和角色。

牧场主是用于采用容器的团队的完整软件堆栈。它解决了管理多个Kubernetes群集的操作和安全挑战，同时为DevOps团队提供了用于运行容器化工作负载的集成工具。

K3S是一款高度可用的，经过认证的Kubernetes发行版，旨在在无人看管的，资源受限的，远程位置或物联网电器内部的生产工作负载。

Helm是Kubernetes软件包管理器工具，它使安装和管理Kubernetes应用程序变得更加容易。

Knative是一个基于Kubernetes的平台，用于构建，部署和管理现代的无服务器工作负载。 Knative照顾网络，自动化（甚至为零）和修订跟踪的操作开销细节。

KubeFlow是一种致力于在Kubernetes上进行机器学习（ML）工作流程的工具，简单，便携式和可扩展。

ETCD是一个分布式键值商店，它提供了一种可靠的方式来存储需要由分布式系统或机器群访问的数据。 ETCD用作服务发现的后端，并存储kubernetes的群集状态和配置。

OpenEBS是一种基于Kubernetes的工具，可使用包含容器的存储创建状态应用程序。

容器存储界面（CSI）是一种API，可让像Kubernetes这样的容器编排平台通过插件与存储的数据无缝通信。

Microk8s是提供完整的Kubernetes体验的工具。在完全容器的部署中，具有压缩的超空更新，以实现超可靠操作。它在Linux，Windows和MacOS上受支持。

Charmed Kubernetes是一个整体良好的，键合的Kubernetes平台，可针对Canonical开发的多云环境进行了优化。

Grafana Kubernetes应用程序是一项损失，可让您监视Kubernetes群集的性能。它包括4个仪表板，群集，节点，POD/容器和部署。它允许自动部署所需的Prometheus出口商和默认的Scrape配置，以与您的集群Prometheus部署一起使用。

Kubeedge是一种开源系统，用于将本机容器化的应用程序编排功能扩展到Edge的主机。IT是建立在Kubernetes上的，并为网络，应用程序提供基本基础架构支持。云和边缘之间的部署和元数据同步。

对于需要每天与Kubernetes群集打交道的人们，镜头是最强大的IDE。它支持MacOS，Windows和Linux操作系统。

类型是使用Docker容器“节点”运行本地Kubernetes群集的工具。它主要设计用于测试Kubernetes本身，但可用于本地开发或CI。

Flux CD是一种工具，可以自动确保Kubernetes群集的状态与您在GIT中提供的配置匹配。它使用集群中的操作员在Kubernetes内部触发部署，这意味着您不需要单独的连续交付工具。

获得Kubernetes认证

AWS上的Kubernetes入门

Microsoft Azure上的Kubernetes

Azure Kubernetes服务的介绍

Google Cloud入门

红帽上的Kubernetes入门

IBM上的Kubernetes入门

kubernetes中的YAML基础知识

弹性云在Kubernetes上

Docker和Kubernetes

将模型部署到Azure Kubernetes服务群集

用亚马逊萨格人操作员简化了对Kubernetes的机器学习推断

在Kubernetes上运行Apache Spark

跨VMware vRealize自动化的kubernetes

VMware Tanzu Kubernetes网格

VMware Tanzu与AWS合作的所有方式

VMware Tanzu教育

在云原生的Kubernetes环境中使用Ansible

使用Ansible管理Kubernetes（K8S）对象

使用Vagrant和Ansible设置Kubernetes群集

与kubernetes一起运行mongodb

Kubernetes Fluentd

了解新的gitlab kubernetes代理

Kubernetes贡献者

来自VMware的Kubeacademy

回到顶部

TensorFlow是机器学习的端到端开源平台。它拥有一个全面，灵活的工具，图书馆和社区资源的生态系统，使研究人员可以推动ML的最新技术，开发人员可以轻松构建和部署ML供电的应用程序。

Tensorman是通过System76开发的TensorFlow容器容易管理的实用程序。Tensorman允许张量集在系统其余部分中包含的隔离环境中运行。此虚拟环境可以独立于基本系统操作，从而使您可以在支持Docker运行时的任何版本的Linux发行版上使用任何版本的Tensorflow。

Keras是一种高级神经网络API，用Python编写，能够在Tensorflow，CNTK或Theano的顶部运行。它是开发出来的，重点是实现快速实验。它能够在Tensorflow，Microsoft认知工具包，R，Theano或Plaidml上运行。

Pytorch是一个可以深入学习不规则输入数据的库，例如图形，点云和歧管。主要由Facebook的AI研究实验室开发。

Amazon Sagemaker是一项完全管理的服务，可为每个开发人员和数据科学家提供迅速构建，训练和部署机器学习（ML）模型的能力。 Sagemaker从机器学习过程的每个步骤中删除了繁重的举动，以使开发高质量模型变得更加容易。

Azure Databricks是一款为数据科学和数据工程设计的快速且协作的基于Apache Spark的大数据分析服务。 Azure Databricks，在几分钟内设置您的Apache Spark环境，自动赛车并在交互式工作区中的共享项目进行协作。 Azure Databricks支持Python，Scala，R，Java和SQL，以及数据科学框架和库，包括Tensorflow，Pytorch和Scikit-Learn。

Microsoft认知工具包（CNTK）是用于商业级分布深度学习的开源工具包。它将神经网络描述为通过有向图的一系列计算步骤。 CNTK允许用户轻松实现并结合流行的模型类型，例如馈电DNN，卷积神经网络（CNNS）和经常性神经网络（RNN/LSTMS）。 CNTK实现了随机梯度下降（SGD，错误反向传播）学习，并在多个GPU和服务器上进行自动分化和并行化。

Apache AirFlow是一个由社区创建的开源工作流管理平台，可编程作者，计划和监视工作流程。安装。原则。可扩展。气流具有模块化体系结构，并使用消息队列来协调任意数量的工人。气流可以扩展到无穷大。

开放的神经网络交换（ONNX）是一个开放的生态系统，它使AI开发人员能够随着项目的发展而选择正确的工具。 ONNX为AI模型提供了开源格式，包括深度学习和传统ML。它定义了可扩展的计算图模型，以及内置运算符和标准数据类型的定义。

Apache MXNET是一个旨在效率和灵活性的深度学习框架。它使您可以混合符号和命令性编程，以最大程度地提高效率和生产力。 MXNET以其核心包含一个动态依赖调度程序，该调度程序会自动将符号和当务之急的操作自动平行。顶部的图形优化层使符号执行速度快速且内存有效。 MXNET是便携式且轻巧的，可有效地缩放到多台GPU和多个机器。支持Python，R，Julia，Scala，Go，JavaScript等。

Autogluon是用于深度学习的工具包，可自动化机器学习任务，使您能够轻松地在应用程序中实现强大的预测性能。只需几行代码，您就可以在表格，图像和文本数据上训练和部署高准确的深度学习模型。

Anaconda是一个非常流行的数据科学平台，用于机器学习和深度学习，使用户能够开发模型，训练和部署它们。

PLAIDML是一种高级且便携式张量编译器，可在笔记本电脑，嵌入式设备或其他设备上进行深入学习，在这些设备上，可用的计算硬件不得到很好的支持，或者可用的软件堆栈包含不可展示的许可证限制。

OpenCV是一个高度优化的库，重点是实时计算机视觉应用程序。 C ++，Python和Java接口支持Linux，MacOS，Windows，iOS和Android。

Scikit-Learn是用于构建在Scipy，Numpy和Matplotlib之上的机器学习的Python模块，使得更容易应用许多流行的机器学习算法的强大而简单的实现。

WEKA是一种开源机器学习软件，可以通过图形用户界面，标准终端应用程序或Java API访问。它被广泛用于教学，研究和工业应用，其中包含了许多用于标准机器学习任务的内置工具，并还可以透明地访问Scikit-Learn，r和Deep Leactning4J等知名工具箱。

Caffe是一个深入的学习框架，以表达，速度和模块化制成。它是由伯克利AI研究（BAIR）/伯克利愿景与学习中心（BVLC）和社区贡献者开发的。

Theano是一个Python库，可让您有效地定义，优化和评估涉及多维阵列的数学表达式，包括与Numpy的紧密集成。

Ngraph是一个开源C ++库，编译器和用于深度学习的运行时。 Ngraph编译器旨在使用任何深度学习框架加速开发AI工作负载，并将其部署到各种硬件目标。它为AI开发人员提供了自由，性能和易用性。

Nvidia cudnn是一个用于深神经网络的原始图书馆的GPU加速库。 Cudnn为标准例程提供了高度调整的实现，例如向前和向后卷积，合并，标准化和激活层。 Cudnn加速了广泛使用的深度学习框架，包括Caffe2，Chainer，Keras，Matlab，Mxnet，Pytorch和Tensorflow。

Jupyter Notebook是一个开源Web应用程序，可让您创建和共享包含实时代码，方程式，可视化和叙事文本的文档。 Jupyter广泛用于进行数据清洁和转换，数值模拟，统计建模，数据可视化，数据科学和机器学习的行业。

Apache Spark是用于大规模数据处理的统一分析引擎。它在Scala，Java，Python和R中提供高级API，以及支持用于数据分析的一般计算图的优化引擎。它还支持一组丰富的高级工具，包括用于SQL和DataFrames的Spark SQL，用于机器学习的MLLIB，用于图形处理的GraphX以及用于流处理的结构化流。

SQL Server和Azure SQL的Apache Spark Connector是一个高性能连接器，它使您能够在大数据分析中使用交易数据，并在临时查询或报告中持续存在结果。该连接器允许您使用任何SQL数据库，本地或云中的任何SQL数据库作为输入数据源或Spark作业的输出数据接收器。

Apache Predictionio是开发人员，数据科学家和最终用户的开源机器学习框架。它支持事件收集，算法的部署，评估，通过REST API查询预测结果。它基于可扩展的开源服务，例如Hadoop，HBase（和其他DB），Elasticsearch，Spark，并实现所谓的Lambda架构。

Apache Kafka（CMAK）的集群管理器是管理Apache Kafka群集的工具。

BigDL是Apache Spark的分布式深度学习库。借助BIGDL，用户可以将其深度学习应用程序作为标准Spark程序编写，该应用程序可以直接在现有的Spark或Hadoop群集之上运行。

Koalas是项目，通过在Apache Spark上实现PANDAS DataFrame API，使数据科学家在与大数据进行互动时提高了生产力。

Apache Spark™MLFlow是管理ML生命周期的开源平台，包括实验，可重复性，部署和中央模型注册表。 MLFlow当前提供四个组件：

MLFlow跟踪：记录和查询实验：代码，数据，配置和结果。

MLFlow项目：以一种格式的包装数据科学代码在任何平台上重现运行。

MLFLOW模型：在各种服务环境中部署机器学习模型。

模型注册表：存储，注释，发现和管理中央存储库中的模型。

Eclipse DeepLearning4J（DL4J）是一组项目，旨在支持基于JVM（Scala，Kotlin，Clojure和Groovy）深度学习应用程序的所有需求。这意味着从原始数据开始，从任何地方和任何格式加载和预处理，以构建和调整各种简单且复杂的深度学习网络。

Numba是由Anaconda，Inc。赞助的Python的开源，Numpy-Aware优化编译器。它使用LLVM编译器项目从Python语法生成机器代码。 NUMBA可以编译大量以数值为中心的Python，包括许多Numpy函数。此外，NUMBA还支持自动并行循环，生成GPU加速代码以及创建UFUNCS和C回调。

Chaineer是一个旨在灵活性的基于Python的深度学习框架。它根据定义的逐项方法（动态计算图）以及面向对象的高级API提供自动分化API，以构建和训练神经网络。它还使用CUPY来支持CUDA/CUDNN进行高性能训练和推理。

CUML是一组库，可实现机器学习算法和数学原始功能，可与其他急流项目共享兼容API。 CUML使数据科学家，研究人员和软件工程师能够在GPU上执行传统的表格ML任务，而无需介绍CUDA编程的细节。在大多数情况下，CUML的Python API匹配Scikit-Learn的API。

斯坦福大学的机器学习来自Coursera

从Coursera在线的机器学习课程

从Udemy在线的机器学习课程

通过在线课程和课程从EDX学习机器学习

回到顶部

ROS是机器人中间件。尽管ROS不是操作系统，但它提供了为异构计算机集群而设计的服务，例如硬件抽象，低级设备控制，常用功能的实现，过程之间的消息和软件包管理。

ROS2是一组软件库和工具，可帮助您构建机器人应用程序。从驱动程序到最先进的算法，以及强大的开发人员工具，ROS可以为下一个机器人项目所需的东西。这都是开源的。

机器人框架是一个通用的开源自动化框架。它可用于测试自动化和机器人过程自动化。它具有简单的语法，利用人类可读的关键字。可以通过Python或Java实施的库来扩展其功能。

机器人图书馆（RL）是一个用于机器人运动学，运动计划和控制的独立C ++库。它涵盖数学，运动学和动力学，硬件抽象，运动计划，碰撞检测和可视化。RL在许多不同的系统上运行，包括Linux，MacOS和Windows。它使用CMAKE作为构建系统，可以与Clang，GCC和Visual Studio一起编译。

MoveIt是用于操纵的最广泛使用的软件，已用于100多个机器人。它为开发高级应用程序提供了易于使用的机器人技术平台，评估新设计并为工业，商业，研发和其他域名构建集成产品。

Autogluon是用于深度学习的工具包，可自动化机器学习任务，使您能够轻松地在应用程序中实现强大的预测性能。只需几行代码，您就可以在表格，图像和文本数据上训练和部署高准确的深度学习模型。

凉亭准确有效地模拟室内和室外机器人。您将获得强大的物理引擎，高质量的图形以及程序化和图形接口。

机器人系统工具箱提供了用于设计，模拟和测试操纵器，移动机器人和人形机器人的工具和算法。对于操纵器和人形机器人，该工具箱包括用于检查，轨迹生成，前进和逆运动学的算法，以及使用刚性身体树表示的动力学。对于移动机器人，它包括用于映射，本地化，路径计划，路径跟随和运动控制的算法。该工具箱提供了常见工业机器人应用的参考示例。它还包括一个可以导入，可视化和模拟的市售工业机器人模型库。

Intel Robot DevKit is the tool to generate Robotics Software Development Kit (RDK) designed for autonomous devices, including the ROS2 core and capacibilities packages like perception, planning, control driver etc. It provides flexible build/runtime configurations to meet different autonomous requirement on top of diversity hardware choices, for example use different hareware engine CPU/GPU/VPU to accelerate AI related features.

Arduino是一个用于构建电子项目的开源平台。 Arduino既由物理可编程电路板（通常称为微控制器）和一块软件，也包括在计算机上运行的IDE（集成开发环境），用于将计算机代码写入物理板上。

Ardupilot可以创建和使用可信赖的，自动的，无人驾驶的车辆系统，以便所有人的和平利益。 ArdupiLot提供了一套全面的工具，适用于几乎任何车辆和应用。

Airsim是基于虚幻引擎的无人机，汽车等的模拟器（我们现在还具有实验性统一释放）。它是开源的，跨平台，并通过流行的飞行控制器（例如PX4）来支持硬件融合，用于物理和视觉上现实的模拟。

F´（F Prime）是一个组件驱动的框架，可快速开发和部署太空飞行和其他嵌入式软件应用程序。 F'最初是在喷气推进实验室开发的，已成功部署在多个空间应用程序上。

JPL开源流动站是开源的，自己构建，缩小了JPL用来探索火星表面的6轮毂设计的版本。开源漫游车的设计几乎完全是从架子（COTS）零件的消费者中设计出来的。对于那些想参与机械工程，软件，电子或机器人技术的人来说，该项目旨在成为教学和学习经验。

光检测和范围（LIDAR）是一种遥感方法，它在物体处使用脉冲激光的形式，并利用反射光束光束的时间和波长来估计距离和某些应用中（激光成像）（激光成像），以创建对象及其表面特征的3D表示。该技术通常用于飞机和自动驾驶车辆。

AliceVision是一个摄影测量的计算机视觉框架，可提供3D重建和相机跟踪算法。 Alicevision旨在为可以进行测试，分析和重新使用的最先进的计算机视觉算法提供强大的软件基础。该项目是学术界与行业之间合作的结果，该项目以稳健性和生产使用所需的质量提供尖端的算法。

卡拉（Carla）是自动驾驶研究的开源模拟器。卡拉是从头开始开发的，以支持自动驾驶系统的开发，培训和验证。除了开源代码和协议外，Carla还提供出于此目的而创建的开放数字资产（城市布局，建筑物，车辆），可以自由使用。模拟平台支持传感器套房和环境条件的灵活规范。

ROS Bridge是用于Carla Simulator的ROS的包装。

ROS-Istrial是一个开源项目，将ROS软件的高级功能扩展到制造。

AWS Robomaker是机器人开发人员最完整的云解决方案，可以大规模模拟，测试和安全部署机器人应用程序。 Robomaker为仿真提供了完全管理的可扩展基础架构，客户用于多机器人模拟和CI/CD集成，并在模拟中进行回归测试。

Microsoft Robotics Developer Studio是一个免费的基于.NET的编程环境，用于构建机器人技术应用程序。

ROS的Visual Studio代码扩展名为机器人操作系统（ROS）开发提供了支持。

Azure Kinect ROS驱动程序是一个节点，它将传感器数据从Azure Kinect开发人员套件发布到机器人操作系统（ROS）。与ROS合作的开发人员可以使用此节点将Azure Kinect开发人员套件连接到现有的ROS安装。

ROS的Azure IoT Hub是ROS软件包，可与Microsoft Azure IoT Hub服务一起使用，可将遥测消息从机器人转移到Azure IoT Hub或使用Dynamic Rememigure来反映从数字双胞胎到机器人的属性。

带有ONNX运行时的ROS 2是一个程序，该程序使用ROS 2使用其各自的AI加速库在不同的硬件平台上运行，以优化ONNX模型的执行。

Azure认知服务Luis ROS节点是ROS节点，它在ROS和Azure语言理解服务之间桥接。它可以配置为直接从麦克风处理音频，也可以订阅ROS音频主题，然后处理语音并生成“意图” ROS消息，该消息可以由另一个ROS节点处理以生成ROS命令。

Coursera的机器人课程

通过在线课程和课程从EDX学习机器人技术

Udemy在线的顶级机器人课程

免费在线AI和机器人课程

rec Foundation Robotics行业认证

卡内基·梅隆机器人学院

RIA机器人集成商认证计划

AWS Robaker - 开发，测试，部署和管理智能机器人应用程序

微软AI学校

Azure认知服务的语言理解（LUI）

azure vm模板以bootstrap ros和ros 2环境

Google机器人研究

回到顶部

开源安全基金会（OPENSSF）是一次跨行业的合作，通过建立更广泛的社区，有针对性的计划和最佳实践来汇集领导者，以提高开源软件的安全性。 OpenSSF将开源安全计划汇集在一个基金会下，通过跨行业支持加速工作。以及核心基础架构计划和开源安全联盟，并将包括解决漏洞披露，安全工具等的新工作组。

柱头基准 - 安全技术实施指南

顺式基准 - 顺式互联网安全中心

NIST-当前FIP

ISO标准目录

信息技术安全评估（CC）的常见标准是计算机安全的国际标准（ISO / IEC 15408）。它允许客观评估验证特定产品满足定义的一组安全要求。

ISO 22301是国际标准，它为实施优化的BCM（业务连续性管理系统）提供了最佳实践框架。

ISO27001是描述ISM（信息安全管理系统）要求的国际标准。该框架旨在帮助组织在一个地方始终如一和成本效率地管理其安全实践。

ISO 27701根据ISO 27001的要求指定了PIMS（隐私信息管理系统）的要求。它通过一组特定于隐私的要求，控制目标和控件来扩展。实施ISO 27001的公司将能够使用ISO 27701来扩展其安全工作以覆盖隐私管理。

欧盟GDPR（通用数据保护法规）是一项隐私和数据保护法，它取代了整个欧盟的现有国家数据保护法，从而通过仅引入一项主要数据保护法来允许公司/组织遵守的一项主要数据保护法。

CCPA（加利福尼亚州消费者隐私法）是一项数据隐私法，于2020年1月1日在加利福尼亚州生效。它适用于收集加利福尼亚州居民个人信息的企业，其隐私要求类似于欧盟GDPR（一般数据保护法规）的企业。

支付卡行业（PCI）数据安全标准（DSS）是一种全球信息安全标准，旨在通过增加信用卡数据控制欺诈。

SOC 2是一种审计程序，可确保您的服务提供商安全管理您的数据，以保护您的Comapny/组织的利益和客户的隐私。

NIST CSF是一个自愿框架，主要旨在供关键基础设施组织基于现有最佳实践来管理和减轻网络安全风险。

Apparmor是一种有效且易于使用的Linux应用程序安全系统。 AppArmor proactively protects the operating system and applications from external or internal threats, even zero-day attacks, by enforcing good behavior and preventing both known and unknown application flaws from being exploited. AppArmor supplements the traditional Unix discretionary access control (DAC) model by providing mandatory access control (MAC). It has been included in the mainline Linux kernel since version 2.6.36 and its development has been supported by Canonical since 2009.

SELinux is a security enhancement to Linux which allows users and administrators more control over access control. Access can be constrained on such variables as which users and applications can access which resources. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.

Control Groups(Cgroups) is a Linux kernel feature that allows you to allocate resources such as CPU time, system memory, network bandwidth, or any combination of these resources for user-defined groups of tasks (processes) running on a system.

EarlyOOM is a daemon for Linux that enables users to more quickly recover and regain control over their system in low-memory situations with heavy swap usage.

Libgcrypt is a general purpose cryptographic library originally based on code from GnuPG.

Kali Linux is an open source project that is maintained and funded by Offensive Security, a provider of world-class information security training and penetration testing services.

Pi-hole is a DNS sinkhole that protects your devices from unwanted content, without installing any client-side software, intended for use on a private network. It is designed for use on embedded devices with network capability, such as the Raspberry Pi, but it can be used on other machines running Linux and cloud implementations.

Aircrack-ng is a network software suite consisting of a detector, packet sniffer, WEP and WPA/WPA2-PSK cracker and analysis tool for 802.11 wireless LANs. It works with any wireless network interface controller whose driver supports raw monitoring mode and can sniff 802.11a, 802.11b and 802.11g traffic.

Burp Suite is a leading range of cybersecurity tools.

KernelCI is a community-based open source distributed test automation system focused on upstream kernel development. The primary goal of KernelCI is to use an open testing philosophy to ensure the quality, stability and long-term maintenance of the Linux kernel.

Continuous Kernel Integration project helps find bugs in kernel patches before they are commited to an upstram kernel tree. We are team of kernel developers, kernel testers, and automation engineers.

eBPF is a revolutionary technology that can run sandboxed programs in the Linux kernel without changing kernel source code or loading kernel modules. By making the Linux kernel programmable, infrastructure software can leverage existing layers, making them more intelligent and feature-rich without continuing to add additional layers of complexity to the system.

Cilium uses eBPF to accelerate getting data in and out of L7 proxies such as Envoy, enabling efficient visibility into API protocols like HTTP, gRPC, and Kafka.

Hubble is a Network, Service & Security Observability for Kubernetes using eBPF.

Istio is an open platform to connect, manage, and secure microservices. Istio's control plane provides an abstraction layer over the underlying cluster management platform, such as Kubernetes and Mesos.

Certgen is a convenience tool to generate and store certificates for Hubble Relay mTLS.

Scapy is a python-based interactive packet manipulation program & library.

syzkaller is an unsupervised, coverage-guided kernel fuzzer.

SchedViz is a tool for gathering and visualizing kernel scheduling traces on Linux machines.

oss-fuzz aims to make common open source software more secure and stable by combining modern fuzzing techniques with scalable, distributed execution.

OSSEC is a free, open-source host-based intrusion detection system. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, time-based alerting, and active response.

Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development.

Wfuzz was created to facilitate the task in web applications assessments and it is based on a simple concept: it replaces any reference to the FUZZ keyword by the value of a given payload.

Nmap is a security scanner used to discover hosts and services on a computer network, thus building a "map" of the network.

Patchwork is a web-based patch tracking system designed to facilitate the contribution and management of contributions to an open-source project.

pfSense is a free and open source firewall and router that also features unified threat management, load balancing, multi WAN, and more.

Snowpatch is a continuous integration tool for projects using a patch-based, mailing-list-centric git workflow. This workflow is used by a number of well-known open source projects such as the Linux kernel.

Snort is an open-source, free and lightweight network intrusion detection system (NIDS) software for Linux and Windows to detect emerging threats.

Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education.

OpenSCAP is US standard maintained by National Institute of Standards and Technology (NIST). It provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines. OpenSCAP maintains great flexibility and interoperability by reducing the costs of performing security audits. Whether you want to evaluate DISA STIGs, NIST's USGCB, or Red Hat's Security Response Team's content, all are supported by OpenSCAP.

Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and harder to misuse.

OWASP is an online community, produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security.

Open Vulnerability and Assessment Language is a community effort to standardize how to assess and report upon the machine state of computer systems. OVAL includes a language to encode system details, and community repositories of content. Tools and services that use OVAL provide enterprises with accurate, consistent, and actionable information to improve their security.

ClamAV is an open source antivirus engine for detecting trojans, viruses, malware & other malicious threats.

Microsoft Open Source Software Security

Cloudflare Open Source Security

The Seven Properties of Highly Secure Devices

How Layer 7 of the Internet Works

The 7 Kinds of Security

The Libgcrypt Reference Manual

The Open Web Application Security Project(OWASP) Foundation Top 10

Best Practices for Using Open Source Code from The Linux Foundation

AWS Certified Security - Specialty Certification

Microsoft Certified: Azure Security Engineer Associate

Google Cloud Certified Professional Cloud Security Engineer

Cisco Security Certifications

The Red Hat Certified Specialist in Security: Linux

Linux Professional Institute LPIC-3 Enterprise Security Certification

Cybersecurity Training and Courses from IBM Skills

Cybersecurity Courses and Certifications by Offensive Security

RSA Certification Program

Check Point Certified Security Expert(CCSE) Certification

Check Point Certified Security Administrator(CCSA) Certification

Check Point Certified Security Master (CCSM) Certification

Certified Cloud Security Professional(CCSP) Certification

Certified Information Systems Security Professional (CISSP) Certification

CCNP Routing and Switching

Certified Information Security Manager(CISM)

Wireshark Certified Network Analyst (WCNA)

Juniper Networks Certification Program Enterprise (JNCP)

Security Training Certifications and Courses from Udemy

Security Training Certifications and Courses from Coursera

Security Certifications Training from Pluarlsight

回到顶部

GitHub provides hosting for software development version control using Git. It offers all of the distributed version control and source code management functionality of Git as well as adding its own features. It provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.

GitHub Codespaces is an integrated development environment(IDE) on GitHub. That allows developers to develop entirely in the cloud using Visual Studio and Visual Studio Code.

GitHub Actions will automate, customize, and execute your software development workflows right in your repository with GitHub Actions. You can discover, create, and share actions to perform any job you'd like, including CI/CD, and combine actions in a completely customized workflow.GitHub Actions for Azure you can create workflows that you can set up in your repository to build, test, package, release and deploy to Azure.Learn more about all other integrations with Azure.

GitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and CI/CD pipeline features, using an open-source license, developed by GitLab Inc.

Jenkins is a free and open source automation server. Jenkins helps to automate the non-human part of the software development process, with continuous integration and facilitating technical aspects of continuous delivery.

Bitbucket is a web-based version control repository hosting service owned by Atlassian, for source code and development projects that use either Mercurial or Git revision control systems. Bitbucket offers both commercial plans and free accounts. It offers free accounts with an unlimited number of private repositories. Bitbucket integrates with other Atlassian software like Jira, HipChat, Confluence and Bamboo.

Bamboo is a continuous integration (CI) server that can be used to automate the release management for a software application, creating a continuous delivery pipeline.

Codecov is the leading, dedicated code coverage solution. It provides highly integrated tools to group, merge, archive and compare coverage reports. Whether your team is comparing changes in a pull request or reviewing a single commit, Codecov will improve the code review workflow and quality.

Drone is a Continuous Delivery system built on container technology. Drone uses a simple YAML configuration file, a superset of docker-compose, to define and execute Pipelines inside Docker containers.

Travis CI is a hosted continuous integration service used to build and test software projects hosted at GitHub.

Circle CI is a continuous integration and continuous delivery platform that helps software teams work smarter, faster.

Zuul-CI is a program that drives continuous integration, delivery, and deployment systems with a focus on project gating and interrelated projects. Using the same Ansible playbooks to deploy your system and run your tests.

Artifactory is a Universal Artifact Repository Manager developed by JFrog. It supports all major packages, enterprise ready security, clustered, HA, Docker registry, multi-site replication and scalable.

Azure DevOps is a set of services for teams to share code, track work, and ship software; CLIs Build, deploy, diagnose, and manage multi-platform, scalable apps and services; Azure Pipelines Continuously build, test, and deploy to any platform and cloud; Azure Lab Services Set up labs for classrooms, trials, development and testing, and other scenarios.

Team City is a build management and continuous integration server from JetBrains.

Shippable simplifies DevOps and makes it systematic with an Assembly Line platform that is heterogeneous, flexible, and provides complete visibility across your DevOps workflows.

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.

AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy. With CodeBuild, you don't need to provision, manage, and scale your own build servers.

Selenium is a free (open source) automated testing suite for web applications across different browsers and platforms.

Cucumber is a tool based on Behavior Driven Development (BDD) framework which is used to write acceptance tests for the web application. It allows automation of functional validation in easily readable and understandable format (like plain English) to Business Analysts, Developers, and Testers.

JUnit is a unit testing framework for the Java programming language.

Mocha is a JavaScript test framework for Node.js programs, featuring browser support, asynchronous testing, test coverage reports, and use of any assertion library.

Karma is a simple tool that allows you to execute JavaScript code in multiple real browsers.

Jasmine is an open source testing framework for JavaScript. It aims to run on any JavaScript-enabled platform, to not intrude on the application nor the IDE, and to have easy-to-read syntax.

Maven is a build automation tool used primarily for Java projects. Maven can also be used to build and manage projects written in C#, Ruby, Scala, and other languages. The Maven project is hosted by the Apache Software Foundation.

Gradle is an open-source build-automation system that builds upon the concepts of Apache Ant and Apache Maven and introduces a Groovy-based domain-specific language instead of the XML form used by Apache Maven for declaring the project configuration.

Chef is an effortless Infrastructure Suite offers visibility into security and compliance status across all infrastructure and makes it easy to detect and correct issues long before they reach production.

Puppet is an open source tool that makes continuous integration and delivery of your software on traditional or containerized infrastructure easy by pulling together all your existing tools and giving you flexibility to deploy your way.

Ansible is an open-source software provisioning, configuration management, and application-deployment tool. It runs on many Unix-like systems, and can configure both Unix-like systems as well as Microsoft Windows.

KubeInit provides Ansible playbooks and roles for the deployment and configuration of multiple Kubernetes distributions.

Salt is Python-based, open-source software for event-driven IT automation, remote task execution, and configuration management. Supporting the "Infrastructure as Code" approach to data center system and network deployment and management, configuration automation, SecOps orchestration, vulnerability remediation, and hybrid cloud control.

Terraform is an open-source infrastructure as code software tool created by HashiCorp.It enables users to define and provision a datacenter infrastructure using a high-level configuration language known as Hashicorp Configuration Language (HCL), or optionally JSON.

Consul is a service networking solution to connect and secure services across any runtime platform and public or private cloud.

Packer is lightweight, runs on every major operating system, and is highly performant, creating machine images for multiple platforms in parallel. Packer does not replace configuration management like Chef or Puppet. In fact, when building images, Packer is able to use tools like Chef or Puppet to install software onto the image.

Nomad is a highly available, distributed, data-center aware cluster and application scheduler designed to support the modern datacenter with support for long-running services, batch jobs, and much more.

Vagrant is a tool for building and managing virtual machine environments in a single workflow. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time and increases production parity.

Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

CFEngine is an open-source configuration management system, written by Mark Burgess.Its primary function is to provide automated configuration and maintenance of large-scale computer systems, including the unified management of servers, desktops, consumer and industrial devices, embedded networked devices, mobile smartphones, and tablet computers.

Octpus Deploy is the deployment automation server for your entire team, designed to make it easy to orchestrate releases and deploy applications, whether on-premises or in the cloud.

AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers. AWS CodeDeploy makes it easier for you to rapidly release new features, helps you avoid downtime during application deployment, and handles the complexity of updating your applications.

Kubernetes is an open-source container-orchestration system for automating application deployment, scaling, and management. It was originally designed by Google, and is now maintained by the Cloud Native Computing Foundation.

Docker is a set of platform as a service products that use OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries and configuration files; they can communicate with each other through well-defined channels. All containers are run by a single operating-system kernel and are thus more lightweight than virtual machines.

PowerShell/PowerShell Core is a cross-platform (Windows, Linux, and macOS) automation and configuration tool/framework that works well with your existing tools and is optimized for dealing with structured data (eg JSON, CSV, XML, etc.), REST APIs, and object models. It includes a command-line shell, an associated scripting language and a framework for processing cmdlets.

Hyper-V creates virtual machines on Windows 10. Hyper-V can be enabled in many ways including using the Windows 10 control panel, PowerShell or using the Deployment Imaging Servicing and Management tool (DISM).

Cloud Hypervisor is an open source Virtual Machine Monitor (VMM) that runs on top of KVM. The project focuses on exclusively running modern, cloud workloads, on top of a limited set of hardware architectures and platforms. Cloud workloads refers to those that are usually run by customers inside a cloud provider. Cloud Hypervisor is implemented in Rust and is based on the rust-vmm crates.

VMware vSphere Hypervisor is a bare-metal hypervisor that virtualizes servers; allowing you to consolidate your applications while saving time and money managing your IT infrastructure.

VMware vSphere is the industry-leading compute virtualization platform, and your first step to application modernization. It has been rearchitected with native Kubernetes to allow customers to modernize the 70 million+ workloads now running on vSphere.

VMware Tanzu is a centralized management platform for consistently operating and securing your Kubernetes infrastructure and modern applications across multiple teams and private/public clouds.

Rancher is a complete software stack for teams adopting containers. It addresses the operational and security challenges of managing multiple Kubernetes clusters, while providing DevOps teams with integrated tools for running containerized workloads.

K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.

Rook is an open source cloud-native storage orchestrator for Kubernetes that turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.

Google Kubernetes Engine (GKE) is a managed, production-ready environment for deploying containerized applications.

Anthos是一个现代的应用程序管理平台，为云和本地环境提供一致的开发和运营经验。

AWS ECS is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS. Amazon ECS eliminates the need for you to install and operate your own container orchestration software, manage and scale a cluster of virtual machines, or schedule containers on those virtual machines.

Apache Mesos is a cluster manager that provides efficient resource isolation and sharing across distributed applications, or frameworks. It can run Hadoop, Jenkins, Spark, Aurora, and other frameworks on a dynamically shared pool of nodes.

Apache Spark is a unified analytics engine for big data processing, with built-in modules for streaming, SQL, machine learning and graph processing.

Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming models. It is designed to scale up from single servers to thousands of machines, each offering local computation and storage. Rather than rely on hardware to deliver high-availability, the library itself is designed to detect and handle failures at the application layer, so delivering a highly-available service on top of a cluster of computers, each of which may be prone to failures.

Microsoft Azure is a cloud computing service created by Microsoft for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.

Azure Functions is a solution for easily running small pieces of code, or "functions," in the cloud. You can write just the code you need for the problem at hand, without worrying about a whole application or the infrastructure to run it.

Rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.

AWS Lambda is an event-driven, serverless computing platform provided by Amazon as a part of the Amazon Web Services. It is a computing service that runs code in response to events and automatically manages the computing resources required by that code.

Helm is the Kubernetes Package Manager.

Kubespray is a tool that combines Kubernetes and Ansible to easily install Kubernetes clusters that can be deployed on AWS, GCE, Azure, OpenStack, vSphere, Packet (bare metal), Oracle Cloud Infrastructure (Experimental), or Baremetal

Red Hat OpenShift is focused on security at every level of the container stack and throughout the application lifecycle. It includes long-term, enterprise support from one of the leading Kubernetes contributors and open source software companies.

OpenShift Hive是一家运营商，可在Kubernetes/OpenShift顶部运行。 The Hive service can be used to provision and perform initial configuration of OpenShift 4 clusters.

OKD是优化用于连续应用程序开发和多租户部署的Kubernetes的社区分布。 OKD在Kubernetes之上添加了以开发人员和以操作为中心的工具，以实现快速的应用程序开发，易于部署和扩展以及针对小型和大型团队的长期生命周期维护。

ODO是在K​​ubernetes和OpenShift上编写，构建和部署应用程序的开发人员的快速，迭代且直接的CLI工具。

Kata Operator is an operator to perform lifecycle management (install/upgrade/uninstall) of Kata Runtime on Openshift as well as Kubernetes cluster.

Knative is a Kubernetes-based platform to build, deploy, and manage modern serverless workloads. Knative takes care of the operational overhead details of networking, autoscaling (even to zero), and revision tracking.

Etcd is a distributed key-value store that provides a reliable way to store data that needs to be accessed by a distributed system or cluster of machines. Etcd is used as the backend for service discovery and stores cluster state and configuration for Kubernetes.

OpenStack is a free and open-source software platform for cloud computing, mostly deployed as infrastructure-as-a-service that controls large pools of compute, storage, and networking resources throughout a datacenter, managed through a dashboard or via the OpenStack API. OpenStack works with popular enterprise and open source technologies making it ideal for heterogeneous infrastructure.

Cloud Foundry is an open source, multi cloud application platform as a service that makes it faster and easier to build, test, deploy and scale applications, providing a choice of clouds, developer frameworks, and application services. It is an open source project and is available through a variety of private cloud distributions and public cloud instances.

Splunk software is used for searching, monitoring, and analyzing machine-generated big data, via a Web-style interface.

Prometheus is a free software application used for event monitoring and alerting. It records real-time metrics in a time series database (allowing for high dimensionality) built using a HTTP pull model, with flexible queries and real-time alerting.

Loki is a horizontally-scalable, highly-available, multi-tenant log aggregation system inspired by Prometheus. It is designed to be very cost effective and easy to operate. It does not index the contents of the logs, but rather a set of labels for each log stream.

Thanos是一组组件，可以组成具有无限存储容量的高度可用的度量系统，可以在现有的Prometheus部署之上无缝添加。

Container Storage Interface (CSI) is an API that lets container orchestration platforms like Kubernetes seamlessly communicate with stored data via a plug-in.

OpenEBS is a Kubernetes-based tool to create stateful applications using Container Attached Storage.

ElasticSearch is a search engine based on the Lucene library. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch is developed in Java.

Logstash is a tool for managing events and logs. When used generically, the term encompasses a larger system of log collection, processing, storage and searching activities.

Kibana is an open source data visualization plugin for Elasticsearch. It provides visualization capabilities on top of the content indexed on an Elasticsearch cluster. Users can create bar, line and scatter plots, or pie charts and maps on top of large volumes of data.

New Relic is a SaaS-based monitoring tool that fully supports the way DevOps teams work in the modern enterprise by streamlining your workflows with today's collaboration software and orchestration tools like Puppet, Chef, and Ansible.

Nagios is a free and open source computer-software application that monitors systems, networks and infrastructure. Nagios offers monitoring and alerting services for servers, switches, applications and services. It alerts users when things go wrong and alerts them a second time when the problem has been resolved.

SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages.

Genie is a federated job orchestration engine developed by Netflix. Genie provides REST APIs to run a variety of big data jobs like Hadoop, Pig, Hive, Spark, Presto, Sqoop and more. It also provides APIs for managing the metadata of many distributed processing clusters and the commands and applications which run on them.

Inviso is a lightweight tool that provides the ability to search for Hadoop jobs, visualize the performance, and view cluster utilization.

Fenzo is a scheduler Java library for Apache Mesos frameworks that supports plugins for scheduling optimizations and facilitates cluster autoscaling.

Dynomite is a thin, distributed dynamo layer for different storage engines and protocols, which includes Redis and Memcached. Dynomite supports multi-datacenter replication and is designed for High Availability(HA).

Dyno is a tool that is used to scale a Java client application utilizing Dynomite.

Raigad is a process/tool that runs alongside Elasticsearch to automate backup/recovery, Deployments and Centralized Configuration management.

Priam is a process/tool that runs alongside Apache Cassandra to automate backup/recovery, Deployments and Centralized Configuration management.

Chaos Monkey is a resiliency tool used to randomly terminates virtual machine instances and containers that run inside of your production environment. Chaos Monkey should work with any backend that Spinnaker supports (AWS, Google Compute Engine, Microsoft Azure, Kubernetes, and Cloud Foundry).

Falcor is a JavaScript library for efficient data fetching. Falcor lets you represent all your remote data sources as a single domain model via a virtual JSON graph, whether in memory on the client or over the network on the server.

Restify is a framework, utilizing connect style middleware for building REST APIs.

Traefik is an open source Edge Router that makes publishing your services a fun and easy experience. It receives requests on behalf of your system and finds out which components are responsible for handling them. What sets Traefik apart, besides its many features, is that it automatically discovers the right configuration for your services.

Jira is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management.

Pivotal Tracker is the agile project management tool of choice for developers around the world for real-time collaboration around a shared, prioritized backlog.

Trello is a web-based Kanban-style list-making application that gives you perspective over all your projects, at work and at home.

Microsoft Teams is the hub for team collaboration in Office 365 that integrates the people, content, and tools your team needs to be more engaged and effective.

Slack is a cloud-based proprietary instant messaging platform developed by Slack Technologies.

OpsGenie is a cloud-based service for dev & ops teams, providing reliable alerts, on-call schedule management and escalations. OpsGenie integrates with monitoring tools & services, ensures the right people are notified.

Pagerduty automates processes built on best practices, allowing you to focus on higher value parts of incident response. Granular and scalable permissions enable teams to administer and operate independently while controlling visibility.

Veracode is a leading provider of enterprise-class application security, seamlessly integrating agile security solutions for organizations around the globe. In addition to application security services and secure devops services, Veracode provides a full security assessment to ensure your website and applications are secure, and ensures full enterprise data protection.

DevOps Engineering on AWS from AWS Training

AWS Certified DevOps Engineer - Professional from A Cloud Guru

Microsoft Certified: DevOps Engineer Expert Cert.

Introduction to Azure DevOps from A Cloud Guru

Architecting with Google Compute Engine

Architecting with Google Kubernetes Engine in Google Cloud

VMware Training and Certification Program

Cloudera Certification Program

Salesforce Certification Program

Salesforce Superbadges

Red Hat Training and Certification Program

Linux Foundation Training and Certification Program

Linux Professional Institute(LPI) Training and Certification

Learn DevOps with Online Courses and Lessons from edX

Top DevOps Courses Online from Udemy

Devops Courses from Coursera

回到顶部

Flutter is Google's UI toolkit for crafting beautiful, natively compiled applications for mobile(Andorid and iOS), web, and desktop(Windows, MacOS, Linux, and Google Fuchsia) from a single codebase. Flutter works with existing code, is used by developers and organizations around the world, and is free and open source.

Flutter Gems is a curated package guide for Flutter which functionally categorizes some of the most useful and popular flutter packages available on pub.dev Flutter Gems A Flutter package landscape guide comprising 1500+ neatly categorized useful and popular packages.

Dart is an open-source, scalable programming language, with robust libraries and runtimes, for building web, server, and mobile apps using the Flutter framework.

Flutter documentation

Style Guide for Flutter

Creating your first Flutter app

Build and release an Android app using Flutter

Flutter Tools & techniques

Dart and Flutter: The Complete Developer's Guide on Udemy

Creating an Interactive Story with Flutter on Coursera

Flutter for Beginners course on Pluralsight

Flutter Online Training Courses on LinkedIn Learning

The Complete Flutter App Development Bootcamp with Dart by App Brewery

Adding Firebase to your Flutter app

Using Firebase and Firestore with Flutter

Fuchsia Project

Getting Started with Fuchsia

Fuchsia Reference

Contributing to Fuchsia

Firebase is a Backend-as-a-Service (BaaS) app development platform that provides hosted backend services such as a realtime database, cloud storage, authentication, crash reporting, machine learning, remote configuration, and hosting for your static files.

FlutterFire is a set of Flutter plugins that enable Flutter apps to use Firebase services. You can follow an example that shows how to use these plugins in the Firebase for Flutter codelab.

FlutterBoost is a Flutter plugin which enables hybrid integration of Flutter for your existing native apps with minimum efforts.

Go-flutter is a package that brings Flutter to the desktop. project implements the Flutter's Embedding API using a single code base that runs on Windows, macOS, and Linux. For rendering, GLFW fits the job because it provides the right abstractions over the OpenGL's Buffer/Mouse/Keyboard for each platform.

Appwrite is a secure end-to-end backend server for Web, Mobile, and Flutter developers that is packaged as a set of Docker containers for easy deployment.

Fluro is a Flutter routing library that adds flexible routing options like wildcards, named parameters and clear route definitions.

回到顶部

AWS Certified Security - Specialty Certification

Microsoft Certified: Azure Security Engineer Associate

Google Cloud Certified Professional Cloud Security Engineer

Cisco Security Certifications

The Red Hat Certified Specialist in Security: Linux

Linux Professional Institute LPIC-3 Enterprise Security Certification

Cybersecurity Training and Courses from IBM Skills

Cybersecurity Courses and Certifications by Offensive Security

Citrix Certified Associate – Networking(CCA-N)

Citrix Certified Professional – Virtualization(CCP-V)

CCNP Routing and Switching

Certified Information Security Manager(CISM)

Wireshark Certified Network Analyst (WCNA)

Juniper Networks Certification Program Enterprise (JNCP)

Networking courses and specializations from Coursera

Network & Security Courses from Udemy

Network & Security Courses from edX

 • Connection: In networking, a connection refers to pieces of related information that are transferred through a network. This generally infers that a connection is built before the data transfer (by following the procedures laid out in a protocol) and then is deconstructed at the at the end of the data transfer.

• Packet: A packet is, generally speaking, the most basic unit that is transferred over a network. When communicating over a network, packets are the envelopes that carry your data (in pieces) from one end point to the other.

Packets have a header portion that contains information about the packet including the source and destination, timestamps, network hops. The main portion of a packet contains the actual data being transferred. It is sometimes called the body or the payload.

 • Network Interface: A network interface can refer to any kind of software interface to networking hardware. For instance, if you have two network cards in your computer, you can control and configure each network interface associated with them individually.

A network interface may be associated with a physical device, or it may be a representation of a virtual interface. The "loop-back" device, which is a virtual interface to the local machine, is an example of this.

 • LAN: LAN stands for "local area network". It refers to a network or a portion of a network that is not publicly accessible to the greater internet. A home or office network is an example of a LAN.

• WAN: WAN stands for "wide area network". It means a network that is much more extensive than a LAN. While WAN is the relevant term to use to describe large, dispersed networks in general, it is usually meant to mean the internet, as a whole.

If an interface is connected to the WAN, it is generally assumed that it is reachable through the internet.

 • Protocol: A protocol is a set of rules and standards that basically define a language that devices can use to communicate. There are a great number of protocols in use extensively in networking, and they are often implemented in different layers. 

Some low level protocols are TCP, UDP, IP, and ICMP. Some familiar examples of application layer protocols, built on these lower protocols, are HTTP (for accessing web content), SSH, TLS/SSL, and FTP.

 • Port: A port is an address on a single machine that can be tied to a specific piece of software. It is not a physical interface or location, but it allows your server to be able to communicate using more than one application.

• Firewall: A firewall is a program that decides whether traffic coming into a server or going out should be allowed. A firewall usually works by creating rules for which type of traffic is acceptable on which ports. Generally, firewalls block ports that are not used by a specific application on a server.

• NAT: Network address translation is a way to translate requests that are incoming into a routing server to the relevant devices or servers that it knows about in the LAN. This is usually implemented in physical LANs as a way to route requests through one IP address to the necessary backend servers.

• VPN: Virtual private network is a means of connecting separate LANs through the internet, while maintaining privacy. This is used as a means of connecting remote systems as if they were on a local network, often for security reasons.

 While networking is often discussed in terms of topology in a horizontal way, between hosts, its implementation is layered in a vertical fashion throughout a computer or network. This means is that there are multiple technologies and protocols that are built on top of each other in order for communication to function more easily. Each successive, higher layer abstracts the raw data a little bit more, and makes it simpler to use for applications and users. It also allows you to leverage lower layers in new ways without having to invest the time and energy to develop the protocols and applications that handle those types of traffic.

As data is sent out of one machine, it begins at the top of the stack and filters downwards. At the lowest level, actual transmission to another machine takes place. At this point, the data travels back up through the layers of the other computer. Each layer has the ability to add its own "wrapper" around the data that it receives from the adjacent layer, which will help the layers that come after decide what to do with the data when it is passed off.

One method of talking about the different layers of network communication is the OSI model. OSI stands for Open Systems Interconnect.This model defines seven separate layers. The layers in this model are:

• Application: The application layer is the layer that the users and user-applications most often interact with. Network communication is discussed in terms of availability of resources, partners to communicate with, and data synchronization.

• Presentation: The presentation layer is responsible for mapping resources and creating context. It is used to translate lower level networking data into data that applications expect to see.

• Session: The session layer is a connection handler. It creates, maintains, and destroys connections between nodes in a persistent way.

• Transport: The transport layer is responsible for handing the layers above it a reliable connection. In this context, reliable refers to the ability to verify that a piece of data was received intact at the other end of the connection. This layer can resend information that has been dropped or corrupted and can acknowledge the receipt of data to remote computers.

• Network: The network layer is used to route data between different nodes on the network. It uses addresses to be able to tell which computer to send information to. This layer can also break apart larger messages into smaller chunks to be reassembled on the opposite end.

• Data Link: This layer is implemented as a method of establishing and maintaining reliable links between different nodes or devices on a network using existing physical connections.

• Physical: The physical layer is responsible for handling the actual physical devices that are used to make a connection. This layer involves the bare software that manages physical connections as well as the hardware itself (like Ethernet).

The TCP/IP model, more commonly known as the Internet protocol suite, is another layering model that is simpler and has been widely adopted.It defines the four separate layers, some of which overlap with the OSI model:

 • Application: In this model, the application layer is responsible for creating and transmitting user data between applications. The applications can be on remote systems, and should appear to operate as if locally to the end user. 

The communication takes place between peers network.

 • Transport: The transport layer is responsible for communication between processes. This level of networking utilizes ports to address different services. It can build up unreliable or reliable connections depending on the type of protocol used.

• Internet: The internet layer is used to transport data from node to node in a network. This layer is aware of the endpoints of the connections, but does not worry about the actual connection needed to get from one place to another. IP addresses are defined in this layer as a way of reaching remote systems in an addressable manner.

• Link: The link layer implements the actual topology of the local network that allows the internet layer to present an addressable interface. It establishes connections between neighboring nodes to send data.

Interfaces are networking communication points for your computer. Each interface is associated with a physical or virtual networking device. Typically, your server will have one configurable network interface for each Ethernet or wireless internet card you have. In addition, it will define a virtual network interface called the "loopback" or localhost interface. This is used as an interface to connect applications and processes on a single computer to other applications and processes. You can see this referenced as the "lo" interface in many tools.

Networking works by piggybacks on a number of different protocols on top of each other. In this way, one piece of data can be transmitted using multiple protocols encapsulated within one another.

Media access control is a communications protocol that is used to distinguish specific devices. Each device is supposed to get a unique MAC address during the manufacturing process that differentiates it from every other device on the internet. Addressing hardware by the MAC address allows you to reference a device by a unique value even when the software on top may change the name for that specific device during operation. Media access control is one of the only protocols from the link layer that you are likely to interact with on a regular basis.

The IP protocol is one of the fundamental protocols that allow the internet to work. IP addresses are unique on each network and they allow machines to address each other across a network. It is implemented on the internet layer in the IP/TCP model. Networks can be linked together, but traffic must be routed when crossing network boundaries. This protocol assumes an unreliable network and multiple paths to the same destination that it can dynamically change between. There are a number of different implementations of the protocol. The most common implementation today is IPv4, although IPv6 is growing in popularity as an alternative due to the scarcity of IPv4 addresses available and improvements in the protocols capabilities.

ICMP: internet control message protocol is used to send messages between devices to indicate the availability or error conditions. These packets are used in a variety of network diagnostic tools, such as ping and traceroute. Usually ICMP packets are transmitted when a packet of a different kind meets some kind of a problem. Basically, they are used as a feedback mechanism for network communications.

TCP: Transmission control protocol is implemented in the transport layer of the IP/TCP model and is used to establish reliable connections. TCP is one of the protocols that encapsulates data into packets. It then transfers these to the remote end of the connection using the methods available on the lower layers. On the other end, it can check for errors, request certain pieces to be resent, and reassemble the information into one logical piece to send to the application layer. The protocol builds up a connection prior to data transfer using a system called a three-way handshake. This is a way for the two ends of the communication to acknowledge the request and agree upon a method of ensuring data reliability. After the data has been sent, the connection is torn down using a similar four-way handshake. TCP is the protocol of choice for many of the most popular uses for the internet, including WWW, FTP, SSH, and email. It is safe to say that the internet we know today would not be here without TCP.

UDP: User datagram protocol is a popular companion protocol to TCP and is also implemented in the transport layer. The fundamental difference between UDP and TCP is that UDP offers unreliable data transfer. It does not verify that data has been received on the other end of the connection. This might sound like a bad thing, and for many purposes, it is. However, it is also extremely important for some functions. It's not required to wait for confirmation that the data was received and forced to resend data, UDP is much faster than TCP. It does not establish a connection with the remote host, it simply fires off the data to that host and doesn't care if it is accepted or not. Since UDP is a simple transaction, it is useful for simple communications like querying for network resources. It also doesn't maintain a state, which makes it great for transmitting data from one machine to many real-time clients. This makes it ideal for VOIP, games, and other applications that cannot afford delays.

HTTP: Hypertext transfer protocol is a protocol defined in the application layer that forms the basis for communication on the web. HTTP defines a number of functions that tell the remote system what you are requesting. For instance, GET, POST, and DELETE all interact with the requested data in a different way.

JSON Web Token (JWT) is a compact URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is digitally signed using JSON Web Signature (JWS).

OAuth 2.0 is an open source authorization framework that enables applications to obtain limited access to user accounts on an HTTP service, such as Amazon, Google, Facebook, Microsoft, Twitter GitHub, and DigitalOcean. It works by delegating user authentication to the service that hosts the user account, and authorizing third-party applications to access the user account.

FTP: File transfer protocol is in the application layer and provides a way of transferring complete files from one host to another. It is inherently insecure, so it is not recommended for any externally facing network unless it is implemented as a public, download-only resource.

DNS: Domain name system is an application layer protocol used to provide a human-friendly naming mechanism for internet resources. It is what ties a domain name to an IP address and allows you to access sites by name in your browser.

SSH: Secure shell is an encrypted protocol implemented in the application layer that can be used to communicate with a remote server in a secure way. Many additional technologies are built around this protocol because of its end-to-end encryption and ubiquity. There are many other protocols that we haven't covered that are equally important. However, this should give you a good overview of some of the fundamental technologies that make the internet and networking possible.

KVM (for Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware containing virtualization extensions (Intel VT or AMD-V). It consists of a loadable kernel module, kvm.ko, that provides the core virtualization infrastructure and a processor specific module, kvm-intel.ko or kvm-amd.ko.

QEMU is a fast processor emulator using a portable dynamic translator. QEMU emulates a full system, including a processor and various peripherals. It can be used to launch a different Operating System without rebooting the PC or to debug system code.

Hyper-V enables running virtualized computer systems on top of a physical host. These virtualized systems can be used and managed just as if they were physical computer systems, however they exist in virtualized and isolated environment. Special software called a hypervisor manages access between the virtual systems and the physical hardware resources. Virtualization enables quick deployment of computer systems, a way to quickly restore systems to a previously known good state, and the ability to migrate systems between physical hosts.

VirtManager is a graphical tool for managing virtual machines via libvirt. Most usage is with QEMU/KVM virtual machines, but Xen and libvirt LXC containers are well supported. Common operations for any libvirt driver should work.

oVirt is an open-source distributed virtualization solution, designed to manage your entire enterprise infrastructure. oVirt uses the trusted KVM hypervisor and is built upon several other community projects, including libvirt, Gluster, PatternFly, and Ansible.Founded by Red Hat as a community project on which Red Hat Enterprise Virtualization is based allowing for centralized management of virtual machines, compute, storage and networking resources, from an easy-to-use web-based front-end with platform independent access.

Xen is focused on advancing virtualization in a number of different commercial and open source applications, including server virtualization, Infrastructure as a Services (IaaS), desktop virtualization, security applications, embedded and hardware appliances, and automotive/aviation.

Ganeti is a virtual machine cluster management tool built on top of existing virtualization technologies such as Xen or KVM and other open source software. Once installed, the tool assumes management of the virtual instances (Xen DomU).

Packer is an open source tool for creating identical machine images for multiple platforms from a single source configuration. Packer is lightweight, runs on every major operating system, and is highly performant, creating machine images for multiple platforms in parallel. Packer does not replace configuration management like Chef or Puppet. In fact, when building images, Packer is able to use tools like Chef or Puppet to install software onto the image.

Vagrant is a tool for building and managing virtual machine environments in a single workflow. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time, increases production parity, and makes the "works on my machine" excuse a relic of the past. It provides easy to configure, reproducible, and portable work environments built on top of industry-standard technology and controlled by a single consistent workflow to help maximize the productivity and flexibility of you and your team.

VMware Workstation is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems; it enables users to set up virtual machines on a single physical machine, and use them simultaneously along with the actual machine.

VirtualBox is a powerful x86 and AMD64/Intel64 virtualization product for enterprise as well as home use. Not only is VirtualBox an extremely feature rich, high performance product for enterprise customers.

回到顶部

SQL is a standard language for storing, manipulating and retrieving data in relational databases.

SQL Tutorial by W3Schools

Learn SQL Skills Online from Coursera

SQL Courses Online from Udemy

SQL Online Training Courses from LinkedIn Learning

Learn SQL For Free from Codecademy

GitLab's SQL Style Guide

OracleDB SQL Style Guide Basics

Tableau CRM: BI Software and Tools

Databases on AWS

Best Practices and Recommendations for SQL Server Clustering in AWS EC2.

Connecting from Google Kubernetes Engine to a Cloud SQL instance.

Educational Microsoft Azure SQL resources

MySQL Certifications

SQL vs. NoSQL Databases: What's the Difference?

What is NoSQL?

Azure Data Studio is an open source data management tool that enables working with SQL Server, Azure SQL DB and SQL DW from Windows, macOS and Linux.

Azure SQL Database is the intelligent, scalable, relational database service built for the cloud. It's evergreen and always up to date, with AI-powered and automated features that optimize performance and durability for you. Serverless compute and Hyperscale storage options automatically scale resources on demand, so you can focus on building new applications without worrying about storage size or resource management.

Azure SQL Managed Instance is a fully managed SQL Server Database engine instance that's hosted in Azure and placed in your network. This deployment model makes it easy to lift and shift your on-premises applications to the cloud with very few application and database changes. Managed instance has split compute and storage components.

Azure Synapse Analytics is a limitless analytics service that brings together enterprise data warehousing and Big Data analytics. It gives you the freedom to query data on your terms, using either serverless or provisioned resources at scale. It brings together the best of the SQL technologies used in enterprise data warehousing, Spark technologies used in big data analytics, and Pipelines for data integration and ETL/ELT.

MSSQL for Visual Studio Code is an extension for developing Microsoft SQL Server, Azure SQL Database and SQL Data Warehouse everywhere with a rich set of functionalities.

SQL Server Data Tools (SSDT) is a development tool for building SQL Server relational databases, Azure SQL Databases, Analysis Services (AS) data models, Integration Services (IS) packages, and Reporting Services (RS) reports. With SSDT, a developer can design and deploy any SQL Server content type with the same ease as they would develop an application in Visual Studio or Visual Studio Code.

Bulk Copy Program is a command-line tool that comes with Microsoft SQL Server. BCP, allows you to import and export large amounts of data in and out of SQL Server databases quickly snd efficeiently.

SQL Server Migration Assistant is a tool from Microsoft that simplifies database migration process from Oracle to SQL Server, Azure SQL Database, Azure SQL Database Managed Instance and Azure SQL Data Warehouse.

SQL Server Integration Services is a development platform for building enterprise-level data integration and data transformations solutions. Use Integration Services to solve complex business problems by copying or downloading files, loading data warehouses, cleansing and mining data, and managing SQL Server objects and data.

SQL Server Business Intelligence(BI) is a collection of tools in Microsoft's SQL Server for transforming raw data into information businesses can use to make decisions.

Tableau is a Data Visualization software used in relational databases, cloud databases, and spreadsheets. Tableau was acquired by Salesforce in August 2019.

DataGrip is a professional DataBase IDE developed by Jet Brains that provides context-sensitive code completion, helping you to write SQL code faster. Completion is aware of the tables structure, foreign keys, and even database objects created in code you're editing.

RStudio is an integrated development environment for R and Python, with a console, syntax-highlighting editor that supports direct code execution, and tools for plotting, history, debugging and workspace management.

MySQL is a fully managed database service to deploy cloud-native applications using the world's most popular open source database.

PostgreSQL is a powerful, open source object-relational database system with over 30 years of active development that has earned it a strong reputation for reliability, feature robustness, and performance.

Amazon DynamoDB is a key-value and document database that delivers single-digit millisecond performance at any scale. It is a fully managed, multiregion, multimaster, durable database with built-in security, backup and restore, and in-memory caching for internet-scale applications.

FoundationDB is an open source distributed database designed to handle large volumes of structured data across clusters of commodity servers. It organizes data as an ordered key-value store and employs ACID transactions for all operations. It is especially well-suited for read/write workloads but also has excellent performance for write-intensive workloads. FoundationDB was acquired by Apple in 2015.

CouchbaseDB is an open source distributed multi-model NoSQL document-oriented database. It creates a key-value store with managed cache for sub-millisecond data operations, with purpose-built indexers for efficient queries and a powerful query engine for executing SQL queries.

IBM DB2 is a collection of hybrid data management products offering a complete suite of AI-empowered capabilities designed to help you manage both structured and unstructured data on premises as well as in private and public cloud environments. Db2 is built on an intelligent common SQL engine designed for scalability and flexibility.

MongoDB is a document database meaning it stores data in JSON-like documents.

OracleDB is a powerful fully managed database helps developers manage business-critical data with the highest availability, reliability, and security.

MariaDB is an enterprise open source database solution for modern, mission-critical applications.

SQLite is a C-language library that implements a small, fast, self-contained, high-reliability, full-featured, SQL database engine.SQLite is the most used database engine in the world. SQLite is built into all mobile phones and most computers and comes bundled inside countless other applications that people use every day.

SQLite Database Browser is an open source SQL tool that allows users to create, design and edits SQLite database files. It lets users show a log of all the SQL commands that have been issued by them and by the application itself.

dbWatch is a complete database monitoring/management solution for SQL Server, Oracle, PostgreSQL, Sybase, MySQL and Azure. Designed for proactive management and automation of routine maintenance in large scale on-premise, hybrid/cloud database environments.

Cosmos DB Profiler is a real-time visual debugger allowing a development team to gain valuable insight and perspective into their usage of Cosmos DB database. It identifies over a dozen suspicious behaviors from your application's interaction with Cosmos DB.

Adminer is an SQL management client tool for managing databases, tables, relations, indexes, users. Adminer has support for all the popular database management systems such as MySQL, MariaDB, PostgreSQL, SQLite, MS SQL, Oracle, Firebird, SimpleDB, Elasticsearch and MongoDB.

DBeaver is an open source database tool for developers and database administrators. It offers supports for JDBC compliant databases such as MySQL, Oracle, IBM DB2, SQL Server, Firebird, SQLite, Sybase, Teradata, Firebird, Apache Hive, Phoenix, and Presto.

DbVisualizer is a SQL management tool that allows users to manage a wide range of databases such as Oracle, Sybase, SQL Server, MySQL, H3, and SQLite.

AppDynamics Database is a management product for Microsoft SQL Server. With AppDynamics you can monitor and trend key performance metrics such as resource consumption, database objects, schema statistics and more, allowing you to proactively tune and fix issues in a High-Volume Production Environment.

Toad is a SQL Server DBMS toolset developed by Quest. It increases productivity by using extensive automation, intuitive workflows, and built-in expertise. This SQL management tool resolve issues, manage change and promote the highest levels of code quality for both relational and non-relational databases.

Lepide SQL Server is an open source storage manager utility to analyse the performance of SQL Servers. It provides a complete overview of all configuration and permission changes being made to your SQL Server environment through an easy-to-use, graphical user interface.

Sequel Pro is a fast MacOS database management tool for working with MySQL. This SQL management tool helpful for interacting with your database by easily to adding new databases, new tables, and new rows.

回到顶部

Note: GNOME Extenions allow you customize your Desktop layout anyway you want.

Easily turn GNOME Extensions On/Off using the GNOME Shell integration add-on in the Firefox web browser.

Caffeine is a GNOME Shell extension that disables the screensaver and auto suspend

Arc Menu is a GNOME Shell extension that adds an Application Menu for GNOME.

Material Shell is a GNOME Shell extension that adds a modern desktop interface for Linux - packaged as an extension for GNOME Shell. Improve your user experience and get rid of the anarchy of traditional desktop workflows. Designed to simplify navigation and reduce the need to manipulate windows in order to improve productivity. It's meant to be 100% predictable and bring the benefits of tools coveted by professionals to everyone.

Clipboard Indicator is a GNOME Shell extension that adds a clipboard indicator to the top panel, and caches clipboard history.

Blur My Shell is a GNOME Shell extension that adds a blur look to different parts of the GNOME Shell, including the top panel, dash and overview.

GSConnect is a GNOME Shell extension that adds a complete implementation of KDE Connect especially for GNOME Shell with Nautilus, Chrome and Firefox integration. It does not rely on the KDE Connect desktop application and will not work with it installed.

Compiz alike windows effect is a GNOME Shell extension that adds wobbly windows effect inspired by the Compiz one

CPU Power Manager is a GNOME Shell extension that enables you to manage Intel_pstate CPU Frequency scaling driver.

CPU Power Governor is a GNOME Shell extension that enables the ability to swap between kernel governors for the CPU useful for laptops.

CPUFreq is a GNOME Shell extension for System Monitor and Power Manager.

Dash to Panel is a GNOME Shell extension that shows an icon taskbar for the Gnome Shell. This extension moves the dash into the gnome main panel so that the application launchers and system tray are combined into a single panel, similar to that found in KDE Plasma and Windows 7+. A separate dock is no longer needed for easy access to running and favorited applications.

Dash to Dock is a GNOME Shell extension that shows a dock for the Gnome Shell. This extension moves the dash out of the overview transforming it in a dock for an easier launching of applications and a faster switching between windows and desktops. Side and bottom placement options are available.

Removable Drive Menu is a GNOME Shell extension that shows a status menu for accessing and unmounting removable devices.

Snap Manager is a GNOME Shell extension that shows a popup menu in the top bar to easily manage snap tasks (list, changes, refresh, remove, install...). Update notification at session startup.

Sound Input & Output Device Chooser is a GNOME Shell extension that shows a list of sound output and input devices (similar to gnome sound settings) in the status menu below the volume slider. Various active ports like HDMI , Speakers etc. of the same device are also displayed for selection. V20+ needs python as dependency. If you want to continue with the old method without Python, use options to switch off New Port identification. But it works with only English

User Themes is a GNOME Shell extension that lets you load shell themes from user directory.

WinTile: Windows 10 window tiling for GNOME is a hotkey driven window tiling system for GNOME that imitates the standard Win-Arrow keys of Windows 10, allowing you to maximize, maximize to sides, or 1/4 sized to corner across a single or multiple monitors using just Super+Arrow.

Gnome Extensions Sync is a GNOME Shell extension that syncs gnome shell keybindings, tweaks settings and extensions with their configuration across all gnome installations.

Tray Icons: Reloaded is a GNOME Shell extension which bring back Tray Icons to top panel, with additional features.

GitLab extension is a GNOME Shell extension that lets you utilizes the official GitLab API to provide a comfortable overview about your projects, commits & pipelines.

• If would you like to contribute to this guide simply make a Pull Request.

回到顶部

Distributed under the Creative Commons Attribution 4.0 International (CC BY 4.0) Public License.