Parrot Security Guide下載 - Parrot Security Guide源代碼下載

鸚鵡安全操作系統指南

使用所有基本應用程序，工具和遊戲來設置鸚鵡安全Linux桌面的指南，以使您在Parrot Security Linux方面的體驗很棒！這可能不是每個人的完美指南，但我覺得對於新的和高級的鸚鵡安全Linux用戶，至少有一個或多個完美的解決方案。

注意：您可以使用此方便的擴展標記PDF輕鬆地將此標記文件轉換為VSCODE的PDF。

入門

Parrot Security OS是一個開源的，基於Debian的Linux發行版，旨在用於各種信息安全任務，例如滲透測試，安全研究，計算機取證，逆向工程和加密。它帶有伴侶作為默認桌面環境，由FrozenBox團隊開發。

Parrot Security Edition是一種專門目的操作系統，旨在滲透測試和紅色團隊操作。它包含準備使用Pentest工具的完整武器庫。

Parrot Home Edition是一種通用操作系統，具有典型的鸚鵡外觀和感覺。此版本旨在日常使用，隱私和軟件開發。可以手動安裝鸚鵡工具，以組裝自定義和輕巧的五邊形環境。

鸚鵡物聯網和雲設備是為嵌入式設備，雲環境，虛擬機和其他特殊部署而製作的鸚鵡安全特別版。

鸚鵡安全文檔

Parrot Security Github

社區論壇

鸚鵡安全團隊

捐贈給鸚鵡安全項目

Etcher是一種開源的跨平台軟件，可輕鬆將操作系統圖像刷到microSD卡或USB設備。

RUFUS是一個創建可引導USB驅動器的小應用程序，然後可以用於安裝或運行Microsoft Windows，Linux或DOS。

鸚鵡安全OS桌面

獲取軟件

回到頂部

注1：所有這些軟件也可以在其他流行的Linux發行版中獲得，例如Debian，Linux Mint，Elementary OS，Pop！ _OS，Fedora，Manjaro Linux，EndeaVouros和Arch Linux。

注2：對於不願意使用命令行結帳的新用戶，“基本應用程序”部分開始。另外，如果向下滾動，您會看到其他簡單的方法來通過Flathub，Snap Store和Appimages獲取軟件應用程序。

基本應用程序（取決於您的工作流程）

Google Chrome瀏覽器

Microsoft Edge瀏覽器

視覺工作室代碼或VScodium

微軟團隊

Microsoft 365帶有辦公應用程序（以前是在線辦公室）

Google Workspace（以前為G Suite）

飛漲

如何在Ubuntu上安裝iCloud

Pcloud是安全的雲存儲（例如GoogleDrive），您可以在其中存儲，共享和處理所有文件。您可以在任何設備上訪問它們。

Jitsi Meet是一種完全加密的100％開源視頻會議解決方案。

Cisco Webex Web應用程序是基於Web的Cisco WebEx視頻會議解決方案的版本。

鬆弛

Trello Web應用程序

Skype

不和諧

TeamViewer

Spotify

Apple Music（Web）是Apple Music的Web應用程序版本，該版本在Safari，Google Chrome和Mozilla Firefox中運行。

MATLAB Online允許用戶通過Google Chrome等網絡瀏覽器啟動MATLAB和SIMULINK。

Adobe Lighroom Online Photo Editor是Adobe Photoshop Lightroom的在線網絡版本。登錄應用所需的Adobe帳戶。

Adobe Spark（Web）是一個應用程序，可讓您製作涼爽的社交圖形，簡短的視頻和網頁。登錄應用所需的Adobe帳戶。

Photopea是支持PSD，XCF，Sketch，XD和CDR格式的高級在線圖像編輯器。（Adobe Photoshop，GIMP，Sketch App，Adobe XD，Coreldraw）。

Master PDF編輯器很簡單，易於使用的應用程序可以使用配備強大多功能功能的PDF文檔。使用Master PDF編輯器，您可以輕鬆查看，創建和修改PDF文檔。

CrossoverLinux®是Microsoft Windows兼容性層（基於葡萄酒（Wine不是模擬器））。交叉兼容性層使數千個基於Windows的應用程序可以在Linux，MacOS或Chrome OS上運行。

Linux的WinApps是一個程序，該程序運行Windows應用程序，例如Linux（Ubuntu/Fedora）中的Microsoft Office和Adobe和GNOME/KDE，就像它們是本機OS的一部分一樣，包括用於右鍵單擊特定Mime類型的文件以打開它們。

Davinci Resolve Video Editor是完整的視頻編輯解決方案，它結合了專業的8K編輯，色彩校正，視覺效果和音頻帖子製作，全部將其全部組合為一個軟件工具。

Reaper Audio編輯器是針對計算機的完整數字音頻生產應用程序，它提供了完整的MultiTrack Audio和MIDI錄製，編輯，處理，混合和掌握工具集。

Flameshot是一種功能強大但易於使用屏幕快照軟件。

Linux的時移是一個應用程序，可提供類似於Windows中的系統還原功能和Mac OS中的Time機床的功能。時移可以通過定期進行文件系統的增量快照來保護您的系統。這些快照可以在以後還原以撤消對系統的所有更改。

Stacer是一種開源系統優化器和應用程序監視器，可幫助用戶管理其整個系統。也可以作為附屬物使用。

本機Fier是一種命令行工具，可輕鬆為任何具有最小配置的網站創建桌面應用程序。應用程序由OS可執行文件（.App，.exe等）中的Electron（在引擎蓋下使用鉻）包裹，以在Windows，MacOS和Linux上使用。

應用程序出口

App Outlet是一家受Linux App Store在線服務啟發的通用應用程序商店（Flatpaks，快照和附屬）。

快照

Snap Store是用於快照應用程序的構建和分銷服務。

快照論壇

Flatpaks

Flathub是Flatpak應用程序的構建和分銷服務。

Flathub論壇

附屬物

AppimageHub是適用應用程序的構建和分銷服務。

Appimage Manager是適應的軟件包管理器。

附屬論壇

賭博

回到頂部

蒸汽

得到蒸汽

或者

wget https://steamcdn-a.akamaihd.net/client/installer/steam.deb

Proton是與Steam客戶端一起使用的工具，該工具允許Windows在Linux操作系統上運行的遊戲。它使用葡萄酒來促進這一點。

在蒸汽中啟用質子

單擊“ Steam”，然後“設置”以打開左角彎角的設置窗口。
在“設置”窗口上，單擊“ Steam Play”。確保您檢查“啟用Steam Play獲取支持的文件”和“為所有其他標題啟用Steam Play”複選框。最後，選擇要從下拉菜單中使用的質子版本。

Protondb

ProtondB是其他遊戲玩家的100,000多個遊戲報告的集合，他們在Linux上使用Proton測試遊戲，並提供了遊戲表現的總分。越來越多的建議提供了調整，您可以在質子繼續開發時嘗試使遊戲工作。除此之外，您還可以探索本網站上的Steam Game目錄以瀏覽並發現以前在Linux上使用的廣泛標題。

lutris

Lutris是Linux的遊戲客戶端。除了當前的控制台生成外，它還可以讓您訪問所有視頻遊戲。另外，與其他商店很好地集成了，例如GOG，Steam，Battle.net，Origin，Uplay和許多其他來源，這些資源使您可以導入現有的遊戲庫和社區維護的安裝腳本，為您提供了完全自動化的設置。

添加Epic Games商店

GameHub

GameHub是您所有遊戲的統一庫。它使您可以將游戲從不同的平台存儲到一個程序中，以使您更容易管理遊戲。

GameHub支持：

Linux的本地遊戲
多個兼容層：
- 葡萄酒
- 質子
- DOSBOX
- retroarch
- scummvm
- Winewrap-一組預先配置的包裝紙，用於支持遊戲；
- 自定義模擬器
多個遊戲平台：
- 蒸汽
- GOG
- 謙虛的捆綁包（包括謙虛的trove）
- itch.io

遊戲流

GeForce現在使用Chromebook版本在Google Chrome或任何基於鉻的Web瀏覽器（例如Brave，Vivaldi和Microsoft Edge）中玩所有遊戲。另外，現在可以在Snap Store Geforce中作為電子桌面應用程序。

Moonlight Game Streaming是一個程序，可讓您通過Internet從PC遊戲中流式傳輸，而無需配置。無論您是在另一個房間還是距遊戲鑽機，幾乎所有設備都從任何設備中流式傳輸。

Chiaki是PlayStation 4和PlayStation 5遠程播放的免費開源軟件客戶端，用於Linux，FreeBSD，OpenBSD，Android，MacOS，Windows，Nintendo Switch以及可能的平台。

Xbox Project XCloud是Microsoft基於雲的Xbox遊戲流式技術技術（目前在Beta中） 。玩Forza Horizon 4，Halo 5：Guardians，War 4 Wars Gears of War，Thieves，Cuphead，Red Dead Redemption 2和您的移動設備或Chrome Web瀏覽器上的100多種遊戲之類的遊戲。 Microsoft的Xbox Project XCloud確實需要Xbox Game通過Ultimate訂閱。

遊戲模擬器

Retroarch是模擬器，遊戲引擎和媒體玩家的前端。它使您可以通過其光滑的圖形接口在各種計算機和遊戲機上運行經典遊戲。設置也是統一的，因此一勞永逸地進行配置。

海豚是最近兩個Nintendo視頻遊戲機的模擬器：GameCube和Wii。它使PC遊戲玩家可以在全高清（1080p）中享受這兩個遊戲機的遊戲，並具有多種增強功能：與所有PC控制器，渦輪速度，網絡多人遊戲等等。

Citra是Nintendo 3DS的開源仿真器，能夠玩許多您喜歡的遊戲。

Yuzu是從Citra創建者的Nintendo切換的Nintendo切換的實驗開源仿真器。

DOSBOX是一種開源DOS模擬器，主要側重於運行DOS遊戲。

MAME是街機機仿真器。

Xemu是原始的Xbox模擬器。

圖形性能

Greenwithenvy（GWE）是由Roberto Leinardi設計的GTK系統實用程序，可提供信息，控製粉絲並超頻您的NVIDIA視頻卡，以提高性能。可在流行店以Flatpak的價格購買。

CorectRL是一個免費的開源Linux應用程序，可讓您輕鬆使用本機和Windows應用程序的應用程序配置文件來控制計算機硬件，具有基本的CPU控件和完整的AMD GPU控件（對於舊型號和新型號）。

sudo add-apt-repository ppa:ernstp/mesarc
sudo apt install corectrl

性能基準

Geekbench 5是一個跨平台基準測試，可通過按下按鈕來衡量系統的性能。

Phoronix測試套件

Unigine疊加是PC硬件的極端性能和穩定性測試：視頻卡，電源，冷卻系統。

葡萄酒

葡萄酒（Wine不是模擬器）是一個兼容層，能夠在幾個符合POSIX的操作系統（例如Linux，MacOS和BSD）上運行Windows應用程序。 Wine不再像虛擬機或模擬器那樣模擬內部Windows邏輯，而是將Windows API調用轉換為POSIX呼叫，從而消除了其他方法的性能和內存懲罰，並允許您將Windows應用程序清晰地集成到桌面中。

Winetricks

Winetricks是解決葡萄酒問題的簡便方法。

這是避免ADOBEAIR錯誤所需的

sudo sed -i ' s|echo "${arg%%=*}"=\""${arg### *=}"\"|echo ${arg%%=*}=\"${arg### *=}\"|g ' /usr/local/bin/winetricks
sudo apt install cabextract libncurses5:armhf

遊戲開發

回到頂部

遊戲引擎

Unity是一個跨平台遊戲開發平台。使用Unity來構建高質量的3D和2D遊戲，將它們部署在移動，桌面，VR/AR，控制台或網絡上，並與忠實而熱情的玩家和客戶聯繫。

Unity Hub

虛幻引擎4是由具有世界上最開放和高級的實時3D創建工具開發的遊戲引擎。不斷發展的不僅是作為最先進的遊戲引擎的原始目的，還為創作者提供了自由和控制，以提供尖端的內容，互動體驗和沈浸式虛擬世界。

虛幻引擎上的Linux遊戲開發4

Godot Engine是一款功能包裝的跨平台遊戲引擎，可從統一界面創建2D和3D遊戲。它提供了一套全面的通用工具，因此用戶可以專注於製作遊戲而無需重新發明輪子。可以一鍵單擊到許多平台，包括主要的桌面平台（Linux，Mac OSX，Windows）以及移動設備（Android，iOS）和基於Web（HTML5）平台。

如果您想向Godot項目捐款

攪拌機是免費的開源3D Creation Suite。它支持整個3D管道的整體 - 建模，索具，動畫，仿真，渲染，合成和運動跟踪，視頻編輯和2D動畫管道。

如果您想向Blender項目捐款

Unigine是為開發團隊（C ++/C＃程序員，3D藝術家）設計的跨平台遊戲引擎，從事交互式3D應用程序。

Gamemaker Studio 2是Gamemaker的最新，最偉大的化身。它具有將您的想法從概念到完成的遊戲所需的一切。 Gamemaker Studio 2沒有進入和強大功能的障礙，是最終的2D開發環境。

為Ubuntu設置GameMaker Studio

工具

Panda3D是一種遊戲引擎，是迪士尼和CMU開發的Python和C ++程序的3D渲染和遊戲開發的框架。 PANDA3D是開源的，並且出於任何目的，包括商業企業。

Source 2是閥門正在開發的3D視頻遊戲引擎，作為來源的繼任者。它用於Dota 2，人工製品，Dota的下文，實驗室的一部分，Steamvr Home和Half Life：Alyx。

Open Graphics庫（OpenGL）是跨Mulitple編程語言和平台用於硬件加速渲染的2D/3D矢量圖形圖形的API，該渲染圖形是由Khronos Group開發的。

開放計算語言（OPENCL）是用於在超級計算機，雲服務器，個人計算機，移動設備和嵌入式平台中的其他硬件加速器組成的異質平台並行編程的開放標準。

OpenGL陰影語言（GLSL）是基於C風格語言的高級陰影語言，因此它涵蓋了用戶使用這種語言期望的大多數功能。 GLSL中存在包括控制結構（For-loops，If-Else語句等），包括開關語句。

高級陰影語言（HLSL）是DirectX的高級陰影語言。使用HLSL，用戶可以為Direct3D管道創建類似C的可編程著色器。 HLSL首先是使用DirectX 9創建的，以設置可編程3D管道。

Vulkan是一種現代的跨平台圖形和計算API，可為從PC和控制台到手機和嵌入式平台的各種設備中使用的現代GPU提供高效的跨平台訪問。 Vulkan目前正在Khronos財團開發。

MoltenVK是使用Apple的金屬圖形框架在iOS和MACOS上運行的Vulkan實現。

Moltengl是在Apple Metal圖形框架上運行的OpenGL ES 2.0 API的實現。

Nvidia Omniverse是基於Pixar的通用場景描述和NVIDIA RTX的3D生產管道的功能強大，多GPU，實時仿真和協作平台。

HGIG是遊戲和電視展示行業的志願者集團，這些公司符合指定並提供公共準則，以改善HDR中的消費者遊戲體驗。

Trix.js是一個跨瀏覽器JavaScript庫和應用程序編程界面，用於使用WebGL在Web瀏覽器中創建和顯示動畫3D計算機圖形。

SuperPowers是一個可下載的HTML5應用程序，用於實時協作項目。您可以像常規的離線遊戲製造商一樣獨自使用它，也可以設置密碼，並讓朋友通過其Web瀏覽器加入您的項目。

增強現實（AR）和虛擬現實（VR）

For Linux的Steamvr是在您選擇的硬件上體驗VR內容的終極工具。 SteamVr支持閥索引，HTC Vive，Oculus Rift，Windows Cixs Reality Headsesset等。

Steamvr家

OpenVR是一個API和運行時，可以從多個供應商中訪問VR硬件（Steam Index，HTC Vive和Oculus Rift），而無需應用應用程序對其針對的硬件具有特定的了解。

Steam上的OpenVR基準測試是第一個可重複測試您的實際VR性能，在VR耳機內部渲染的基準工具。

OpenHMD是開源API和驅動程序，可支持各種HMD（頭部安裝顯示）設備，例如Oculus Rift，HTC Vive，Sony PSVR等。

OpenXR是一個免費的開放標準，可為增強現實（AR）和虛擬現實（VR）統稱為XR-Platforms和設備提供高性能訪問。

Monado是GNU/Linux的第一個OpenXR™運行時。 Monado旨在啟動開源XR生態系統的開發，並為設備供應商提供基本的構建塊，以針對GNU/Linux平台。

LibSurvive是一組工具和庫，可以在燈塔和基於Vive的系統上進行6個DOF跟踪，這些系統是完全開源的，並且可以在任何設備上運行。它目前支持SteamVr 1.0和SteamVr 2.0生成的設備，並應支持任何可商購的對象。

Simula是Linux的VR窗口經理，在Godot上運行。安裝不到1分鐘。 Simula正式與配備Linux驅動程序的SteamVr耳機（例如HTC Vive，HTC Vive Pro和Valve Index）兼容。我們還為具有Monado驅動程序的OpenXR耳機（例如North Star，OSVR HDK和PSVR）添加了實驗支持。有些人已經通過OpenHMD獲得了Oculus Rift S來運行模擬器（請參閱此處）。

遊戲開發學習資源

虛幻的在線學習是一個免費的學習平台，可提供動手視頻課程和指導性學習路徑。

虛幻引擎授權培訓計劃

虛幻的教育引擎

虛幻引擎培訓和模擬

團結認證

Vulkan入門

Udemy的遊戲設計在線課程

來自Skillshare的遊戲設計在線課程

通過在線課程和課程從EDX學習遊戲設計

Coursera的遊戲設計課程

Coursera的遊戲設計與開發專業課程

設置MacOS工作區

回到頂部

要求

現代的Linux分銷
QEMU> 2.11.1
需要具有Intel VT-X / AMD SVM支持的CPU
> = MacOS Sierra需要具有SSE4.1的CPU
> = MacOS Mojave需要具有AVX2支持的CPU
安裝過程的Internet訪問

Open the terminal and run:
sudo apt install qemu uml-utilities virt-manager dmg2img git wget libguestfs-tools p7zip

Sosumi是一個應用程序，可以讓您在VM中下載並安裝MACOS。

MacOS的Opencore

設置Windows 10工作區

回到頂部

要求

現代的Linux分銷
QEMU> 2.11.1
需要具有Intel VT-X / AMD SVM支持的CPU
WindowsGuestDrivers/下載驅動程序-KVM
安裝過程的Internet訪問

Open the terminal and run:
sudo apt install qemu uml-utilities virt-manager gnome-boxes

GNOME盒子是一個應用程序，可讓您訪問本地或遠程運行的虛擬機。它還允許您連接到遠程計算機的顯示。

Windows 10的OpenCore

在Linux上使用Android和Android應用

回到頂部

Android Studio是Google Android操作系統（OS）的開發套件。它建立在Jetbrains Intellij Idea軟件上，並專門為Android開發設計。它可在Windows，MacOS和Linux上下載。

Android虛擬設備（AVD）是Android Studio中的一種配置，它定義了要在Android Emulator中模擬的Android手機，平板電腦，佩戴OS，Android TV或Automotive OS設備的特性。 Android模擬器在計算機上模擬Android設備，以便您可以在各種設備和Android API級別上測試您的應用程序，而無需使用每個物理設備。

Lineageos是基於Android移動平台的各種設備的免費和開源操作系統。

Anbox是一種應用程序，它提供了一種基於容器的方法，可以在Ubuntu，Debian Fedora和OpenSuse等常規GNU/Linux系統上引導完整的Android系統。

Anbox Cloud是由Canonical提供的移動雲計算平台。在雲中運行Android，以高度和任何類型的硬件運行。

Genymotion是一種非常快速的Android模擬器。該程序本身基於VirtualBox，以其有效的快速速度而聞名，對於在Windows，Mac和Linux桌面上運行Android應用程序是有用的。

桌面

具有高性能的本地虛擬設備。

模擬各種虛擬設備配置（Android版本，屏幕尺寸，硬件容量等）
由於我們的完整硬件傳感器（GP，網絡，多點等），模擬了多種方案
跨平台：Windows，Mac和Linux
用ADB輕鬆操縱
公司（業務）的員工每年$ 412。所有功能，高級支持。
自由職業者每年136美元（獨立）。所有功能，最佳努力支持。
僅供個人使用（學習與娛樂）。有限的功能，沒有支持。

SCRCPY是一種逐軸的應用，可提供連接在USB（或TCP/IP上）的Android設備的顯示和控制。它不需要任何根訪問，並且可以在GNU/Linux，Windows和MacOS上使用。 Android設備至少需要API 21（Android 5.0）。

專業音頻和視頻編輯

回到頂部

H.264（AVC）是基於面向塊的和運動補償的整數DCT編碼的視頻壓縮標準，該標准定義了多個支持8K的多個配置文件（工具）和級別（工具）和級別（最大比特率和分辨率）。

H.265（HEVC）是視頻壓縮標準，是H.264（AVC）的繼任者。它在相同的視頻質量級別上提供25％至50％的數據壓縮，或者以相同的位速率改進視頻質量。

FFMPEG是一個領先的多媒體框架，可以解碼，編碼，transcode，mux，demux，stream，filter和play人類和計算機創建的所有內容。它支持最晦澀的古代格式，直到較最前沿的格式，例如Windows，MacOS和Linux等多個平台。

Handbrake是一種工具，用於從幾乎所有格式轉碼視頻，並選擇了廣泛支持的編解碼器。它在窗口，MacOS和Linux上受支持。

HTTP（DASH）上的動態自適應流是一種自適應流協議，它允許視頻流根據網絡性能在比特率之間切換，以保持視頻播放。

OpenMax™是一種跨平台API，通過啟用可以在多個操作系統和矽平台上開發，集成和編程的加速多媒體組件來提供全面的流媒體編解碼器和應用程序可移植性。

Davinci Resolve是世界上唯一的解決方案，它結合了專業的8K編輯，顏色校正，視覺效果和音頻後的生產，全部將其全部組合為一個軟件工具！您可以單擊一次在編輯，顏色，效果和音頻之間立即移動。 Davinci Resolve Studio也是為多用戶協作而設計的唯一解決方案，因此編輯，助手，色彩師，VFX藝術家和聲音設計師都可以同時在同一項目上進行現場工作。

Blender帶有內置的視頻序列編輯器，可讓您執行基本動作，例如剪切和剪接，以及更複雜的任務，例如視頻掩蓋或顏色分級。視頻編輯器包括：實時預覽，Luma波形，Chroma vectorscope和直方圖顯示。音頻混合，同步，擦洗和波形可視化。

Kdenlive是一種開源視頻編輯工具，支持無限的多媒體文件。它基於MLT框架KDE和QT。正在尋找包含功能的非常通用的視頻編輯工具的人。最新的20.08版本具有諸如接口佈局，多個音頻流支持，緩存的數據管理和Zoombars和Zoombars和效果面板中的漂亮功能，但有人可能會說此版本的亮點是穩定性和接口改進。

OpenShot是一種開源視頻編輯工具，專為編輯環境中的新用戶設計。它具有簡單的功能，例如簡單的拖放功能，它提供了易於使用且快速學習的用戶界面。功能強大的視頻編輯器提供了許多有效的方法來剪切和修剪視頻。您可以自由使用無限的曲目，視頻效果引擎，標題編輯器，3D動畫，慢動作和時間效果。它支持由FFMPEG（例如WebM（VP9），AVCHD（LIBX264），HEVC（LIBX265）和MMP3（Libmp3lame）和AAC（LIBFAAC）等音頻編解碼器所支持的常用視頻編解碼器。該程序可以渲染MPEG4，OGV，Blu-ray和DVD視頻，以及用於上傳到YouTube等Internet視頻網站的完整高清視頻。

LightWorks是一種非線性視頻編輯鼓掌，用於編輯和掌握電影行業使用的數字視頻。它的專業版已用於票房熱門歌曲，例如Shutter Island，Pulp Fiction和Mission Essible。恐嚇用戶界面。像專業的視頻編輯器（例如Adobe Premiere Pro）一樣，LightWorks對於新用戶使用也很複雜。

ShotCut是開源的多平台視頻編輯器。您可以執行各種操作，例如視頻編輯（包括4K視頻質量），添加效果，創建新電影，導入大多數圖像文件格式，導出到幾乎所有文件格式等等。

Olive是一款免費的非線性視頻編輯器，旨在為高端專業視頻編輯軟件提供功能齊全的替代方案。

Natron是一個強大的數字合成器，可以滿足您的所有2D/2.5D需求。它強大的OIIO文件格式和OpenFX體系結構使Natron成為視覺效果社區最靈活的開源合成器。它的界面和功能上的所有平台都相同，例如MacOS，Linux和Windows。

OBS（開放廣播軟件）是免費的開源軟件，用於視頻錄製和直播。流到Twitch，YouTube和許多其他提供商或使用高質量的H264 / AAC編碼錄製自己的視頻。

Reaper是針對計算機的完整數字音頻生產應用程序，它提供了完整的多站音頻和MIDI錄製，編輯，處理，混合和掌握工具集。 REAPER支持廣泛的硬件，數字格式和插件，並且可以全面擴展，腳本化和修改。

Jack Audio Connection Kit aka Jack是一款專業的聲音服務器守護程序，在實現其API的應用程序之間為音頻和MIDI數據提供實時，低延遲連接。可以將Jack配置為通過網絡將音頻數據發送到“主”計算機，然後將音頻輸出到物理設備。這對於在不需要其他電纜或硬件混音器的情況下將音頻從許多“從屬”計算機中混合而有用，並儘可能長時間保持音頻路徑數字。

Bitwig Studio是一個數字音頻工作站，具有線性和非線性工作流，用於聲音設計，錄製，實時性能等。以及90多種儀器，效果和其他創意工具。它是受支持的Windows，MacOS和Linux。

PipeWire是一種服務器和用戶空間API，可處理多媒體管道。它在音頻和視頻設備上提供了低延遲的基於圖形的處理引擎，可用於支持Pulseaudio和Jack當前處理的用例。 PipeWire的設計採用強大的安全模型，使來自容器化應用程序的音頻和視頻設備變得容易。圖中的節點可以作為單獨的過程實現，與插座通信並使用FD傳遞交換多媒體內容。

Yabridge是一種在Linux上使用Windows VST2和VST3插件的現代透明方法。 Yabridge在64位Linux VST主機中使用32位和64位Windows VST2和VST3插件同時無縫支撐，就像它們是本機VST2和VST3插件一樣，對插件組的可選支持以啟用用於VST2插件的Plugin Inter-Plugin通信，以獲取VST2插件和快速啟動時間。

Sonobus是一種易於使用的應用程序，用於在Internet或本地網絡之間在設備之間流式傳輸高質量的低延遲點對點音頻。

Avid Pro Tools是一種為詞曲作者，音樂家，製作人和工程師提供的行業標準音頻製作軟件。

LMMS是一種開源數字音頻工作站應用程序。當LMM與適當的計算機硬件配對時，它可以通過安排樣品，合成聲音，在MIDI鍵盤上播放以及結合跟踪器和音序器的功能來製作音樂。該程序由Paul Giblock和Tobias Junghans開發，代表“ Linux Multimedia Studio”，並支持便利的插件，使其能夠在不同的操作系統上工作。

Ardor是全球團隊的開源，包括音樂家，程序員和專業錄音工程師的合作努力。開發是透明的 - 任何人都可以觀察我們的工作。就像一塊好老式硬件一樣，您可以打開盒子並在裡面看。

Audacity是Windows，Mac OS X，GNU/Linux和其他操作系統的易於使用的多軌音頻編輯器和錄音機。由一群志願者開發為開源，並免費提供。驚人的支持社區。

瞥見是基於用於Linux，MacOS和Windows的GNU圖像操作程序的跨平台柵格圖形編輯器。製作YouTube視頻縮略圖的好工具。

Kubernetes

回到頂部

Kubernetes（K8S）是一種開源系統，用於自動化容器應用程序的部署，擴展和管理。

使用Kubeadm構建高可用性（HA）集群。資料來源：Kubernetes.io，2020年

Google Kubernetes Engine（GKE）是一個用於運行容器化應用程序的託管的，可進行生產的環境。

Azure Kubernetes服務（AKS）是無服務器的Kubernetes，具有集成的連續集成和連續交付（CI/CD）體驗，以及企業級的安全性和治理。將您的開發和運營團隊團結在一個平台上，以自信地快速構建，交付和擴展應用程序。

Amazon EKS是一種在多個可用性區域運行Kubernetes控制平面實例以確保高可用性的工具。

Kubernetes（ACK）的AWS控制器是一種新工具，可讓您直接從Kubernetes管理AWS服務。 ACK使構建利用AWS服務的可擴展且高度可用的Kubernetes應用程序變得簡單。

Kubernetes（OKE）的容器引擎是由Oracle管理的集裝箱編排服務，可以減少構建現代云本機應用程序的時間和成本。與大多數其他供應商不同，Oracle Cloud Infrastructure為Kubernetes提供了容器引擎，作為一項在高性能，低成本計算上運行的免費服務。

Anthos是一個現代的應用程序管理平台，為雲和本地環境提供一致的開發和運營經驗。

Red Hat OpenShift是一個完全管理的Kubernetes平台，為本地，混合和多雲部署提供了基礎。

OKD是優化用於連續應用程序開發和多租戶部署的Kubernetes的社區分佈。 OKD adds developer and operations-centric tools on top of Kubernetes to enable rapid application development, easy deployment and scaling, and long-term lifecycle maintenance for small and large teams.

Odo is a fast, iterative, and straightforward CLI tool for developers who write, build, and deploy applications on Kubernetes and OpenShift.

Kata Operator is an operator to perform lifecycle management (install/upgrade/uninstall) of Kata Runtime on Openshift as well as Kubernetes cluster.

Thanos is a set of components that can be composed into a highly available metric system with unlimited storage capacity, which can be added seamlessly on top of existing Prometheus deployments.

OpenShift Hive is an operator which runs as a service on top of Kubernetes/OpenShift. The Hive service can be used to provision and perform initial configuration of OpenShift 4 clusters.

Rook is a tool that turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.

VMware Tanzu is a centralized management platform for consistently operating and securing your Kubernetes infrastructure and modern applications across multiple teams and private/public clouds.

Kubespray is a tool that combines Kubernetes and Ansible to easily install Kubernetes clusters that can be deployed on AWS, GCE, Azure, OpenStack, vSphere, Packet (bare metal), Oracle Cloud Infrastructure (Experimental), or Baremetal.

KubeInit provides Ansible playbooks and roles for the deployment and configuration of multiple Kubernetes distributions.

Rancher is a complete software stack for teams adopting containers. It addresses the operational and security challenges of managing multiple Kubernetes clusters, while providing DevOps teams with integrated tools for running containerized workloads.

K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.

Helm is a Kubernetes Package Manager tool that makes it easier to install and manage Kubernetes applications.

Knative is a Kubernetes-based platform to build, deploy, and manage modern serverless workloads. Knative takes care of the operational overhead details of networking, autoscaling (even to zero), and revision tracking.

KubeFlow is a tool dedicated to making deployments of machine learning (ML) workflows on Kubernetes simple, portable and scalable.

Etcd is a distributed key-value store that provides a reliable way to store data that needs to be accessed by a distributed system or cluster of machines. Etcd is used as the backend for service discovery and stores cluster state and configuration for Kubernetes.

OpenEBS is a Kubernetes-based tool to create stateful applications using Container Attached Storage.

Container Storage Interface (CSI) is an API that lets container orchestration platforms like Kubernetes seamlessly communicate with stored data via a plug-in.

MicroK8s is a tool that delivers the full Kubernetes experience. In a Fully containerized deployment with compressed over-the-air updates for ultra-reliable operations. It is supported on Linux, Windows, and MacOS.

Charmed Kubernetes is a well integrated, turn-key, conformant Kubernetes platform, optimized for your multi-cloud environments developed by Canonical.

Grafana Kubernetes App is a toll that allows you to monitor your Kubernetes cluster's performance. It includes 4 dashboards, Cluster, Node, Pod/Container and Deployment. It allows for the automatic deployment of the required Prometheus exporters and a default scrape config to use with your in cluster Prometheus deployment.

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge.It is built upon kubernetes and provides fundamental infrastructure support for network, app. deployment and metadata synchronization between cloud and edge.

Lens is the most powerful IDE for people who need to deal with Kubernetes clusters on a daily basis. It has support for MacOS, Windows and Linux operating systems.

kind is a tool for running local Kubernetes clusters using Docker container “nodes”. It was primarily designed for testing Kubernetes itself, but may be used for local development or CI.

Flux CD is a tool that automatically ensures that the state of your Kubernetes cluster matches the configuration you've supplied in Git. It uses an operator in the cluster to trigger deployments inside Kubernetes, which means that you don't need a separate continuous delivery tool.

Kubernetes Learning Resources

Getting Kubernetes Certifications

Getting started with Kubernetes on AWS

Kubernetes on Microsoft Azure

Intro to Azure Kubernetes Service

Getting started with Google Cloud

Getting started with Kubernetes on Red Hat

Getting started with Kubernetes on IBM

YAML basics in Kubernetes

Elastic Cloud on Kubernetes

Docker and Kubernetes

Deploy a model to an Azure Kubernetes Service cluster

Simplify Machine Learning Inference on Kubernetes with Amazon SageMaker Operators

Running Apache Spark on Kubernetes

Kubernetes Across VMware vRealize Automation

VMware Tanzu Kubernetes Grid

All the Ways VMware Tanzu Works with AWS

VMware Tanzu Education

Using Ansible in a Cloud-Native Kubernetes Environment

Managing Kubernetes (K8s) objects with Ansible

Setting up a Kubernetes cluster using Vagrant and Ansible

Running MongoDB with Kubernetes

Kubernetes Fluentd

Understanding the new GitLab Kubernetes Agent

Kubernetes Contributors

KubeAcademy from VMware

機器學習

回到頂部

ML frameworks & applications

TensorFlow is an end-to-end open source platform for machine learning. It has a comprehensive, flexible ecosystem of tools, libraries and community resources that lets researchers push the state-of-the-art in ML and developers easily build and deploy ML powered applications.

Tensorman is a utility for easy management of Tensorflow containers by developed by System76.Tensorman allows Tensorflow to operate in an isolated environment that is contained from the rest of the system. This virtual environment can operate independent of the base system, allowing you to use any version of Tensorflow on any version of a Linux distribution that supports the Docker runtime.

Keras is a high-level neural networks API, written in Python and capable of running on top of TensorFlow, CNTK, or Theano.It was developed with a focus on enabling fast experimentation. It is capable of running on top of TensorFlow, Microsoft Cognitive Toolkit, R, Theano, or PlaidML.

PyTorch is a library for deep learning on irregular input data such as graphs, point clouds, and manifolds. Primarily developed by Facebook's AI Research lab.

Amazon SageMaker is a fully managed service that provides every developer and data scientist with the ability to build, train, and deploy machine learning (ML) models quickly. SageMaker removes the heavy lifting from each step of the machine learning process to make it easier to develop high quality models.

Azure Databricks is a fast and collaborative Apache Spark-based big data analytics service designed for data science and data engineering. Azure Databricks, sets up your Apache Spark environment in minutes, autoscale, and collaborate on shared projects in an interactive workspace. Azure Databricks supports Python, Scala, R, Java, and SQL, as well as data science frameworks and libraries including TensorFlow, PyTorch, and scikit-learn.

Microsoft Cognitive Toolkit (CNTK) is an open-source toolkit for commercial-grade distributed deep learning. It describes neural networks as a series of computational steps via a directed graph. CNTK allows the user to easily realize and combine popular model types such as feed-forward DNNs, convolutional neural networks (CNNs) and recurrent neural networks (RNNs/LSTMs). CNTK implements stochastic gradient descent (SGD, error backpropagation) learning with automatic differentiation and parallelization across multiple GPUs and servers.

Apache Airflow is an open-source workflow management platform created by the community to programmatically author, schedule and monitor workflows.安裝。原則。 Scalable. Airflow has a modular architecture and uses a message queue to orchestrate an arbitrary number of workers. Airflow is ready to scale to infinity.

Open Neural Network Exchange(ONNX) is an open ecosystem that empowers AI developers to choose the right tools as their project evolves. ONNX provides an open source format for AI models, both deep learning and traditional ML. It defines an extensible computation graph model, as well as definitions of built-in operators and standard data types.

Apache MXNet is a deep learning framework designed for both efficiency and flexibility. It allows you to mix symbolic and imperative programming to maximize efficiency and productivity. At its core, MXNet contains a dynamic dependency scheduler that automatically parallelizes both symbolic and imperative operations on the fly. A graph optimization layer on top of that makes symbolic execution fast and memory efficient. MXNet is portable and lightweight, scaling effectively to multiple GPUs and multiple machines. Support for Python, R, Julia, Scala, Go, Javascript and more.

AutoGluon is toolkit for Deep learning that automates machine learning tasks enabling you to easily achieve strong predictive performance in your applications. With just a few lines of code, you can train and deploy high-accuracy deep learning models on tabular, image, and text data.

Anaconda is a very popular Data Science platform for machine learning and deep learning that enables users to develop models, train them, and deploy them.

PlaidML is an advanced and portable tensor compiler for enabling deep learning on laptops, embedded devices, or other devices where the available computing hardware is not well supported or the available software stack contains unpalatable license restrictions.

OpenCV is a highly optimized library with focus on real-time computer vision applications. The C++, Python, and Java interfaces support Linux, MacOS, Windows, iOS, and Android.

Scikit-Learn is a Python module for machine learning built on top of SciPy, NumPy, and matplotlib, making it easier to apply robust and simple implementations of many popular machine learning algorithms.

Weka is an open source machine learning software that can be accessed through a graphical user interface, standard terminal applications, or a Java API. It is widely used for teaching, research, and industrial applications, contains a plethora of built-in tools for standard machine learning tasks, and additionally gives transparent access to well-known toolboxes such as scikit-learn, R, and Deeplearning4j.

Caffe is a deep learning framework made with expression, speed, and modularity in mind. It is developed by Berkeley AI Research (BAIR)/The Berkeley Vision and Learning Center (BVLC) and community contributors.

Theano is a Python library that allows you to define, optimize, and evaluate mathematical expressions involving multi-dimensional arrays efficiently including tight integration with NumPy.

nGraph is an open source C++ library, compiler and runtime for Deep Learning. The nGraph Compiler aims to accelerate developing AI workloads using any deep learning framework and deploying to a variety of hardware targets.It provides the freedom, performance, and ease-of-use to AI developers.

NVIDIA cuDNN is a GPU-accelerated library of primitives for deep neural networks. cuDNN provides highly tuned implementations for standard routines such as forward and backward convolution, pooling, normalization, and activation layers. cuDNN accelerates widely used deep learning frameworks, including Caffe2, Chainer, Keras, MATLAB, MxNet, PyTorch, and TensorFlow.

Jupyter Notebook is an open-source web application that allows you to create and share documents that contain live code, equations, visualizations and narrative text. Jupyter is used widely in industries that do data cleaning and transformation, numerical simulation, statistical modeling, data visualization, data science, and machine learning.

Apache Spark is a unified analytics engine for large-scale data processing. It provides high-level APIs in Scala, Java, Python, and R, and an optimized engine that supports general computation graphs for data analysis. It also supports a rich set of higher-level tools including Spark SQL for SQL and DataFrames, MLlib for machine learning, GraphX for graph processing, and Structured Streaming for stream processing.

Apache Spark Connector for SQL Server and Azure SQL is a high-performance connector that enables you to use transactional data in big data analytics and persists results for ad-hoc queries or reporting. The connector allows you to use any SQL database, on-premises or in the cloud, as an input data source or output data sink for Spark jobs.

Apache PredictionIO is an open source machine learning framework for developers, data scientists, and end users. It supports event collection, deployment of algorithms, evaluation, querying predictive results via REST APIs. It is based on scalable open source services like Hadoop, HBase (and other DBs), Elasticsearch, Spark and implements what is called a Lambda Architecture.

Cluster Manager for Apache Kafka(CMAK) is a tool for managing Apache Kafka clusters.

BigDL is a distributed deep learning library for Apache Spark. With BigDL, users can write their deep learning applications as standard Spark programs, which can directly run on top of existing Spark or Hadoop clusters.

Koalas is project makes data scientists more productive when interacting with big data, by implementing the pandas DataFrame API on top of Apache Spark.

Apache Spark™ MLflow is an open source platform to manage the ML lifecycle, including experimentation, reproducibility, deployment, and a central model registry. MLflow currently offers four components:

MLflow Tracking : Record and query experiments: code, data, config, and results.

MLflow Projects : Package data science code in a format to reproduce runs on any platform.

MLflow Models : Deploy machine learning models in diverse serving environments.

Model Registry : Store, annotate, discover, and manage models in a central repository.

Eclipse Deeplearning4J (DL4J) is a set of projects intended to support all the needs of a JVM-based(Scala, Kotlin, Clojure, and Groovy) deep learning application. This means starting with the raw data, loading and preprocessing it from wherever and whatever format it is in to building and tuning a wide variety of simple and complex deep learning networks.

Numba is an open source, NumPy-aware optimizing compiler for Python sponsored by Anaconda, Inc. It uses the LLVM compiler project to generate machine code from Python syntax. Numba can compile a large subset of numerically-focused Python, including many NumPy functions. Additionally, Numba has support for automatic parallelization of loops, generation of GPU-accelerated code, and creation of ufuncs and C callbacks.

Chainer is a Python-based deep learning framework aiming at flexibility. It provides automatic differentiation APIs based on the define-by-run approach (dynamic computational graphs) as well as object-oriented high-level APIs to build and train neural networks. It also supports CUDA/cuDNN using CuPy for high performance training and inference.

cuML is a suite of libraries that implement machine learning algorithms and mathematical primitives functions that share compatible APIs with other RAPIDS projects. cuML enables data scientists, researchers, and software engineers to run traditional tabular ML tasks on GPUs without going into the details of CUDA programming. In most cases, cuML's Python API matches the API from scikit-learn.

Online ML Learning Resources

Machine Learning by Stanford University from Coursera

Machine Learning Courses Online from Coursera

Machine Learning Courses Online from Udemy

Learn Machine Learning with Online Courses and Classes from edX

機器人技術

回到頂部

Tools for Robotics

ROS is robotics middleware. Although ROS is not an operating system, it provides services designed for a heterogeneous computer cluster such as hardware abstraction, low-level device control, implementation of commonly used functionality, message-passing between processes, and package management.

ROS2 is a set of software libraries and tools that help you build robot applications. From drivers to state-of-the-art algorithms, and with powerful developer tools, ROS has what you need for your next robotics project. And it's all open source.

Robot Framework is a generic open source automation framework. It can be used for test automation and robotic process automation. It has easy syntax, utilizing human-readable keywords. Its capabilities can be extended by libraries implemented with Python or Java.

The Robotics Library (RL) is a self-contained C++ library for robot kinematics, motion planning and control. It covers mathematics, kinematics and dynamics, hardware abstraction, motion planning, collision detection, and visualization.RL runs on many different systems, including Linux, macOS, and Windows. It uses CMake as a build system and can be compiled with Clang, GCC, and Visual Studio.

MoveIt is the most widely used software for manipulation and has been used on over 100 robots. It provides an easy-to-use robotics platform for developing advanced applications, evaluating new designs and building integrated products for industrial, commercial, R&D, and other domains.

Gazebo accurately and efficiently simulates indoor and outdoor robots. You get a robust physics engine, high-quality graphics, and programmatic and graphical interfaces.

Robotics System Toolbox provides tools and algorithms for designing, simulating, and testing manipulators, mobile robots, and humanoid robots. For manipulators and humanoid robots, the toolbox includes algorithms for collision checking, trajectory generation, forward and inverse kinematics, and dynamics using a rigid body tree representation. For mobile robots, it includes algorithms for mapping, localization, path planning, path following, and motion control. The toolbox provides reference examples of common industrial robot applications. It also includes a library of commercially available industrial robot models that you can import, visualize, and simulate.

Intel Robot DevKit is the tool to generate Robotics Software Development Kit (RDK) designed for autonomous devices, including the ROS2 core and capacibilities packages like perception, planning, control driver etc. It provides flexible build/runtime configurations to meet different autonomous requirement on top of diversity hardware choices, for example use different hareware engine CPU/GPU/VPU to accelerate AI related features.

Arduino is an open-source platform used for building electronics projects. Arduino consists of both a physical programmable circuit board (often referred to as a microcontroller) and a piece of software, or IDE (Integrated Development Environment) that runs on your computer, used to write and upload computer code to the physical board.

ArduPilot enables the creation and use of trusted, autonomous, unmanned vehicle systems for the peaceful benefit of all. ArduPilot provides a comprehensive suite of tools suitable for almost any vehicle and application.

Airsim是基於虛幻引擎的無人機，汽車等的模擬器（我們現在還具有實驗性統一釋放）。 It is open-source, cross platform, and supports hardware-in-loop with popular flight controllers such as PX4 for physically and visually realistic simulations.

F´ (F Prime) is a component-driven framework that enables rapid development and deployment of spaceflight and other embedded software applications. Originally developed at the Jet Propulsion Laboratory, F´ has been successfully deployed on several space applications.

The JPL Open Source Rover is an open source, build it yourself, scaled down version of the 6 wheel rover design that JPL uses to explore the surface of Mars. The Open Source Rover is designed almost entirely out of consumer off the shelf (COTS) parts. This project is intended to be a teaching and learning experience for those who want to get involved in mechanical engineering, software, electronics, or robotics.

Light Detection and Ranging(LiDAR) is a remote sensing method that uses light in the form of a pulsed laser at an object, and uses the time and wavelength of the reflected beam of light to estimate the distance and in some applications (Laser Imaging), to create a 3D representation of the object and its surface characteristics. This technology is commonly used in aircraft and self-driving vehicles.

AliceVision is a Photogrammetric Computer Vision Framework which provides a 3D Reconstruction and Camera Tracking algorithms. AliceVision aims to provide strong software basis with state-of-the-art computer vision algorithms that can be tested, analyzed and reused. The project is a result of collaboration between academia and industry to provide cutting-edge algorithms with the robustness and the quality required for production usage.

CARLA is an open-source simulator for autonomous driving research. CARLA has been developed from the ground up to support development, training, and validation of autonomous driving systems. In addition to open-source code and protocols, CARLA provides open digital assets (urban layouts, buildings, vehicles) that were created for this purpose and can be used freely. The simulation platform supports flexible specification of sensor suites and environmental conditions.

ROS bridge is a package to bridge ROS for CARLA Simulator.

ROS-Industrial is an open source project that extends the advanced capabilities of ROS software to manufacturing.

AWS RoboMaker is the most complete cloud solution for robotic developers to simulate, test and securely deploy robotic applications at scale. RoboMaker provides a fully-managed, scalable infrastructure for simulation that customers use for multi-robot simulation and CI/CD integration with regression testing in simulation.

Microsoft Robotics Developer Studio is a free .NET-based programming environment for building robotics applications.

Visual Studio Code Extension for ROS is an extension provides support for Robot Operating System (ROS) development.

Azure Kinect ROS Driver is a node which publishes sensor data from the Azure Kinect Developer Kit to the Robot Operating System (ROS). Developers working with ROS can use this node to connect an Azure Kinect Developer Kit to an existing ROS installation.

Azure IoT Hub for ROS is a ROS package works with the Microsoft Azure IoT Hub service to relay telemetry messages from the Robot to Azure IoT Hub or reflect properties from the Digital Twin to the robot using dynamic reconfigure.

ROS 2 with ONNX Runtime is a program that uses ROS 2 to run on different hardware platforms using their respective AI acceleration libraries for optimized execution of the ONNX model.

Azure Cognitive Services LUIS ROS Node is a ROS node that bridges between ROS and the Azure Language Understanding Service. it can be configured to process audio directly from a microphone, or can subscribe to a ROS audio topic, then processes speech and generates "intent" ROS messages which can be processed by another ROS node to generate ROS commands.

Robotics Learning Resources

Robotics courses from Coursera

Learn Robotics with Online Courses and Classes from edX

Top Robotics Courses Online from Udemy

Free Online AI & Robotics Courses

REC Foundation Robotics Industry Certification

Carnegie Mellon Robotics Academy

RIA Robotic Integrator Certification Program

AWS RoboMaker – Develop, Test, Deploy, and Manage Intelligent Robotics Apps

Microsoft AI School

Language Understanding (LUIS) for Azure Cognitive Services

Azure VM templates to bootstrap ROS and ROS 2 environments

Google Robotics Research

Open Source Security

回到頂部

Open Source Security Foundation (OpenSSF) is a cross-industry collaboration that brings together leaders to improve the security of open source software by building a broader community, targeted initiatives, and best practices. The OpenSSF brings together open source security initiatives under one foundation to accelerate work through cross-industry support. Along with the Core Infrastructure Initiative and the Open Source Security Coalition, and will include new working groups that address vulnerability disclosures, security tooling and more.

Security Standards, Frameworks and Benchmarks

STIGs Benchmarks - Security Technical Implementation Guides

CIS Benchmarks - CIS Center for Internet Security

NIST - Current FIPS

ISO Standards Catalogue

Common Criteria for Information Technology Security Evaluation (CC) is an international standard (ISO / IEC 15408) for computer security. It allows an objective evaluation to validate that a particular product satisfies a defined set of security requirements.

ISO 22301 is the international standard that provides a best-practice framework for implementing an optimised BCMS (business continuity management system).

ISO27001 is the international standard that describes the requirements for an ISMS (information security management system). The framework is designed to help organizations manage their security practices in one place, consistently and cost-effectively.

ISO 27701 specifies the requirements for a PIMS (privacy information management system) based on the requirements of ISO 27001. It is extended by a set of privacy-specific requirements, control objectives and controls. Companies that have implemented ISO 27001 will be able to use ISO 27701 to extend their security efforts to cover privacy management.

EU GDPR (General Data Protection Regulation) is a privacy and data protection law that supersedes existing national data protection laws across the EU, bringing uniformity by introducing just one main data protection law for companies/organizations to comply with.

CCPA (California Consumer Privacy Act) is a data privacy law that took effect on January 1, 2020 in the State of California. It applies to businesses that collect California residents' personal information, and its privacy requirements are similar to those of the EU's GDPR (General Data Protection Regulation).

Payment Card Industry (PCI) Data Security Standards (DSS) is a global information security standard designed to prevent fraud through increased control of credit card data.

SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your comapny/organization and the privacy of their clients.

NIST CSF is a voluntary framework primarily intended for critical infrastructure organizations to manage and mitigate cybersecurity risk based on existing best practice.

安全工具

AppArmor is an effective and easy-to-use Linux application security system. AppArmor proactively protects the operating system and applications from external or internal threats, even zero-day attacks, by enforcing good behavior and preventing both known and unknown application flaws from being exploited. AppArmor supplements the traditional Unix discretionary access control (DAC) model by providing mandatory access control (MAC). It has been included in the mainline Linux kernel since version 2.6.36 and its development has been supported by Canonical since 2009.

SELinux is a security enhancement to Linux which allows users and administrators more control over access control. Access can be constrained on such variables as which users and applications can access which resources. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.

Control Groups(Cgroups) is a Linux kernel feature that allows you to allocate resources such as CPU time, system memory, network bandwidth, or any combination of these resources for user-defined groups of tasks (processes) running on a system.

EarlyOOM is a daemon for Linux that enables users to more quickly recover and regain control over their system in low-memory situations with heavy swap usage.

Libgcrypt is a general purpose cryptographic library originally based on code from GnuPG.

Kali Linux is an open source project that is maintained and funded by Offensive Security, a provider of world-class information security training and penetration testing services.

Pi-hole is a DNS sinkhole that protects your devices from unwanted content, without installing any client-side software, intended for use on a private network. It is designed for use on embedded devices with network capability, such as the Raspberry Pi, but it can be used on other machines running Linux and cloud implementations.

Aircrack-ng is a network software suite consisting of a detector, packet sniffer, WEP and WPA/WPA2-PSK cracker and analysis tool for 802.11 wireless LANs. It works with any wireless network interface controller whose driver supports raw monitoring mode and can sniff 802.11a, 802.11b and 802.11g traffic.

Burp Suite is a leading range of cybersecurity tools.

KernelCI is a community-based open source distributed test automation system focused on upstream kernel development. The primary goal of KernelCI is to use an open testing philosophy to ensure the quality, stability and long-term maintenance of the Linux kernel.

Continuous Kernel Integration project helps find bugs in kernel patches before they are commited to an upstram kernel tree. We are team of kernel developers, kernel testers, and automation engineers.

eBPF is a revolutionary technology that can run sandboxed programs in the Linux kernel without changing kernel source code or loading kernel modules. By making the Linux kernel programmable, infrastructure software can leverage existing layers, making them more intelligent and feature-rich without continuing to add additional layers of complexity to the system.

Cilium uses eBPF to accelerate getting data in and out of L7 proxies such as Envoy, enabling efficient visibility into API protocols like HTTP, gRPC, and Kafka.

Hubble is a Network, Service & Security Observability for Kubernetes using eBPF.

Istio is an open platform to connect, manage, and secure microservices. Istio's control plane provides an abstraction layer over the underlying cluster management platform, such as Kubernetes and Mesos.

Certgen is a convenience tool to generate and store certificates for Hubble Relay mTLS.

Scapy is a python-based interactive packet manipulation program & library.

syzkaller is an unsupervised, coverage-guided kernel fuzzer.

SchedViz is a tool for gathering and visualizing kernel scheduling traces on Linux machines.

oss-fuzz aims to make common open source software more secure and stable by combining modern fuzzing techniques with scalable, distributed execution.

OSSEC is a free, open-source host-based intrusion detection system. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, time-based alerting, and active response.

Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development.

Wfuzz was created to facilitate the task in web applications assessments and it is based on a simple concept: it replaces any reference to the FUZZ keyword by the value of a given payload.

Nmap is a security scanner used to discover hosts and services on a computer network, thus building a "map" of the network.

Patchwork is a web-based patch tracking system designed to facilitate the contribution and management of contributions to an open-source project.

pfSense is a free and open source firewall and router that also features unified threat management, load balancing, multi WAN, and more.

Snowpatch is a continuous integration tool for projects using a patch-based, mailing-list-centric git workflow. This workflow is used by a number of well-known open source projects such as the Linux kernel.

Snort is an open-source, free and lightweight network intrusion detection system (NIDS) software for Linux and Windows to detect emerging threats.

Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education.

OpenSCAP is US standard maintained by National Institute of Standards and Technology (NIST). It provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines. OpenSCAP maintains great flexibility and interoperability by reducing the costs of performing security audits. Whether you want to evaluate DISA STIGs, NIST's USGCB, or Red Hat's Security Response Team's content, all are supported by OpenSCAP.

Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and harder to misuse.

OWASP is an online community, produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security.

Open Vulnerability and Assessment Language is a community effort to standardize how to assess and report upon the machine state of computer systems. OVAL includes a language to encode system details, and community repositories of content. Tools and services that use OVAL provide enterprises with accurate, consistent, and actionable information to improve their security.

ClamAV is an open source antivirus engine for detecting trojans, viruses, malware & other malicious threats.

Open Source Security Learning Resources

Microsoft Open Source Software Security

Cloudflare Open Source Security

The Seven Properties of Highly Secure Devices

How Layer 7 of the Internet Works

The 7 Kinds of Security

The Libgcrypt Reference Manual

The Open Web Application Security Project(OWASP) Foundation Top 10

Best Practices for Using Open Source Code from The Linux Foundation

AWS Certified Security - Specialty Certification

Microsoft Certified: Azure Security Engineer Associate

Google Cloud Certified Professional Cloud Security Engineer

Cisco Security Certifications

The Red Hat Certified Specialist in Security: Linux

Linux Professional Institute LPIC-3 Enterprise Security Certification

Cybersecurity Training and Courses from IBM Skills

Cybersecurity Courses and Certifications by Offensive Security

RSA Certification Program

Check Point Certified Security Expert(CCSE) Certification

Check Point Certified Security Administrator(CCSA) Certification

Check Point Certified Security Master (CCSM) Certification

Certified Cloud Security Professional(CCSP) Certification

Certified Information Systems Security Professional (CISSP) Certification

CCNP Routing and Switching

Certified Information Security Manager(CISM)

Wireshark Certified Network Analyst (WCNA)

Juniper Networks Certification Program Enterprise (JNCP)

Security Training Certifications and Courses from Udemy

Security Training Certifications and Courses from Coursera

Security Certifications Training from Pluarlsight

Differential Privacy

回到頂部

Differential Privacy is a system that simultaneously enables researchers and analysts to extract useful insights from datasets containing personal information and offers stronger privacy protections. This is achieved by introducing "statistical noise".

Statistical Noise is a process that small aletrations to masked datasets. The statistical noise hides identifiable characteristics of individuals, ensuring that the privacy of personal information is protected, but it's small enough to not materially impact the accuracy of the answers extracted by analysts and researchers.

Laplacian Noise is a mechanism that adds Laplacian-distributed noise to a function.

Above is a simple diagram of how Differential Privacy-Preserving Data Sharing and Data Mining protects a User's Data

工具

PySyft is a Python library for secure and private Deep Learning. PySyft decouples private data from model training, using Federated Learning, Differential Privacy, and Encrypted Computation (like Multi-Party Computation (MPC) and Homomorphic Encryption (HE) within the main Deep Learning frameworks like PyTorch and TensorFlow.

TensorFlow Privacy is a Python library that includes implementations of TensorFlow optimizers for training machine learning models with differential privacy. The library comes with tutorials and analysis tools for computing the privacy guarantees provided.

TensorFlow Federated (TFF) is an open-source framework for machine learning and other computations on decentralized data. TFF has been developed to facilitate open research and experimentation with Federated Learning (FL), an approach to machine learning where a shared global model is trained across many participating clients that keep their training data locally.

Privacy on Beam is an end-to-end differential privacy solution built on Apache Beam. It is intended to be usable by all developers, regardless of their differential privacy expertise.

PyDP is a Python wrapper for Google's Differential Privacy project.

PennyLane is a cross-platform Python library for differentiable programming of quantum computers. By training a quantum computer the same way as a neural network.

BoTorch is a library for Bayesian Optimization built on PyTorch.

PyTorch Geometric (PyG) is a geometric deep learning extension library for PyTorch.

Skorch is a scikit-learn compatible neural network library that wraps PyTorch.

Diffprivlib is the IBM Differential Privacy Library for experimenting with, investigating and developing applications in, differential privacy.

Opacus is a library that enables training PyTorch models with differential privacy. It supports training with minimal code changes required on the client, has little impact on training performance and allows the client to online track the privacy budget expended at any given moment.

Smart Noise is a toolkit that uses state-of-the-art differential privacy (DP) techniques to inject noise into data, to prevent disclosure of sensitive information and manage exposure risk.

Privacy Learning Resources

Differential Privacy Blog Series by the National Institute of Standards and Technology(NIST)

Apple's Differential Privacy Overview

Learning with Privacy at Scale with Apple Machine Learning

Microsoft Research Differential Privacy Overview

Responsible Machine Learning with Microsoft Azure

Responsible AI Resources with Microsoft AI

Preserve data privacy by using differential privacy and the SmartNoise package

Open Differential Privacy(OpenDP) Initiative by Microsoft and Harvard

Google's Differential Privacy Library

Computing Private Statistics with Privacy on Beam from Google Codelabs

Introducing TensorFlow Privacy: Learning with Differential Privacy for Training Data

TensorFlow Federated: Machine Learning on Decentralized Data

Federated Analytics: Collaborative Data Science without Data Collection

Differentially-Private Stochastic Gradient Descent(DP-SGD)

Learning Differential Privacy from Harvard University Privacy Tools Project

Harvard University Privacy Tools Project Courses & Educational Materials

The Weaknesses of Differential Privacy course on Coursera

The Differential Privacy of Bayesian Inference

Simultaneous private learning of multiple concepts

The Complexity of Computing the Optimal Composition of Differential Privacy

Order revealing encryption and the hardness of private learning

SAP HANA data anonymization using SAP Software Solutions

SAP HANA Security using their In-Memory Database

DEFCON Differential Privacy Training Launch

Secure and Private AI course on Udacity

Differential Privacy - Security and Privacy for Big Data - Part 1 course on Coursera

Differential Privacy - Security and Privacy for Big Data - Part 2 course on Coursera

Certified Ethical Emerging Technologist Professional Certificate course on Coursera

Cloud Native Development

回到頂部

Cloud Native Learning Resources

CNCF Cloud Native Interactive Landscape

Build Cloud-Native applications in Microsoft Azure

Cloud-Native application development for Google Cloud

Cloud-Native development for Amazon Web Services

Cloud Native Applications with VMware Tanzu

Cloud Native Computing Foundation Training and Certification Program

Cloud Foundry Developer Training and Certification Program

Cloud-Native Architecture Course on Pluralsight

AWS Fundamentals: Going Cloud-Native on Coursera

Developing Cloud-Native Apps w/ Microservices Architectures course on Udemy

How load balancing works for cloud native applications with Azure Application Gateway on Linkedin Learning

Developing Cloud Native Applications course on edX

Cloud Native courses from IBM

Cloud Native Architecture

DevOps

Application Framework

Spring Boot is an open-source micro framework maintained by Pivotal, which was acquired by VMware in 2019. It provides Java developers with a platform to get started with an auto configurable production-grade Spring application.

Apache Mesos is a cluster manager that provides efficient resource isolation and sharing across distributed applications, or frameworks. It can run Hadoop, Jenkins, Spark, Aurora, and other frameworks on a dynamically shared pool of nodes.

Apache Spark is a unified analytics engine for big data processing, with built-in modules for streaming, SQL, machine learning and graph processing.

Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming models. It is designed to scale up from single servers to thousands of machines, each offering local computation and storage. Rather than rely on hardware to deliver high-availability, the library itself is designed to detect and handle failures at the application layer, so delivering a highly-available service on top of a cluster of computers, each of which may be prone to failures.

Runtime Platform

BOSH is a tool that prepares your infrastructure for what needs to be managed. BOSH espouses software engineering best practices, such as continuous delivery, by making it easy to create software releases that automatically update complex distributed systems with simple commands.Due to the flexibility and power of BOSH, Google and VMware made it the heart of the Kubo project, now called the Cloud Foundry Container Runtime, based on Kubernetes.

Infrastructure Automatation

Maven is a build automation tool used primarily for Java projects. Maven can also be used to build and manage projects written in C#, Ruby, Scala, and other languages. The Maven project is hosted by the Apache Software Foundation.

Gradle is an open-source build-automation system that builds upon the concepts of Apache Ant and Apache Maven and introduces a Groovy-based domain-specific language instead of the XML form used by Apache Maven for declaring the project configuration.

Chef is an effortless Infrastructure Suite offers visibility into security and compliance status across all infrastructure and makes it easy to detect and correct issues long before they reach production.

Puppet is an open source tool that makes continuous integration and delivery of your software on traditional or containerized infrastructure easy by pulling together all your existing tools and giving you flexibility to deploy your way.

Ansible is an open-source software provisioning, configuration management, and application-deployment tool. It runs on many Unix-like systems, and can configure both Unix-like systems as well as Microsoft Windows.

Salt is Python-based, open-source software for event-driven IT automation, remote task execution, and configuration management. Supporting the "Infrastructure as Code" approach to data center system and network deployment and management, configuration automation, SecOps orchestration, vulnerability remediation, and hybrid cloud control.

Terraform is an open-source infrastructure as code software tool created by HashiCorp.It enables users to define and provision a datacenter infrastructure using a high-level configuration language known as Hashicorp Configuration Language (HCL), or optionally JSON.

雲基礎架構

Amazon web service(AWS) is a platform that offers flexible, reliable, scalable, easy-to-use and cost-effective cloud computing solutions. The AWS platform is developed with a combination of infrastructure as a service (IaaS), platform as a service (PaaS) and packaged software as a service (SaaS) offerings.

Microsoft Azure is a cloud computing service created by Microsoft for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.

Azure DevOps is a set of services for teams to share code, track work, and ship software; CLIs Build, deploy, diagnose, and manage multi-platform, scalable apps and services; Azure Pipelines Continuously build, test, and deploy to any platform and cloud; Azure Lab Services Set up labs for classrooms, trials, development and testing, and other scenarios.

Azure Draft is a tool for developers to create cloud-native applications on Kubernetes.

Google Cloud Platform integrates industry-leading tools(data management, hybrid & multi-cloud, and AI & ML) with Cloud Storage for enhanced support with everything from security and data transfer, to data backup and archive. Expand all . Backup, archival, and disaster recovery. Along with File systems and gateways.

OpenStack is a free and open-source software platform for cloud computing, mostly deployed as infrastructure-as-a-service that controls large pools of compute, storage, and networking resources throughout a datacenter, managed through a dashboard or via the OpenStack API. OpenStack works with popular enterprise and open source technologies making it ideal for heterogeneous infrastructure.

Cloud Foundry is an open source, multi cloud application platform as a service that makes it faster and easier to build, test, deploy and scale applications, providing a choice of clouds, developer frameworks, and application services. It is an open source project and is available through a variety of private cloud distributions and public cloud instances.

Continuous Integration/Continuous Delivery

Bamboo is a continuous integration (CI) server that can be used to automate the release management for a software application, creating a continuous delivery pipeline.

Drone is a Continuous Delivery system built on container technology. Drone uses a simple YAML configuration file, a superset of docker-compose, to define and execute Pipelines inside Docker containers.

Travis CI is a hosted continuous integration service used to build and test software projects hosted at GitHub.

Circle CI is a continuous integration and continuous delivery platform that helps software teams work smarter, faster.

Team City is a build management and continuous integration server from JetBrains.

Shippable simplifies DevOps and makes it systematic with an Assembly Line platform that is heterogeneous, flexible, and provides complete visibility across your DevOps workflows.

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.

Prow is a Kubernetes based CI/CD system. Jobs can be triggered by various types of events and report their status to many different services. In addition to job execution, Prow provides GitHub automation in the form of policy enforcement, chat-ops via /foo style commands, and automatic PR merging. Prow has a microservice architecture implemented as a collection of container images that run as Kubernetes deployments.

Microservices

AWS ECS is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS. Amazon ECS eliminates the need for you to install and operate your own container orchestration software, manage and scale a cluster of virtual machines, or schedule containers on those virtual machines.

AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy. With CodeBuild, you don't need to provision, manage, and scale your own build servers.

CFEngine is an open-source configuration management system, written by Mark Burgess.Its primary function is to provide automated configuration and maintenance of large-scale computer systems, including the unified management of servers, desktops, consumer and industrial devices, embedded networked devices, mobile smartphones, and tablet computers.

Octpus Deploy is the deployment automation server for your entire team, designed to make it easy to orchestrate releases and deploy applications, whether on-premises or in the cloud.

AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers. AWS CodeDeploy makes it easier for you to rapidly release new features, helps you avoid downtime during application deployment, and handles the complexity of updating your applications.

AWS Lambda is an event-driven, serverless computing platform provided by Amazon as a part of the Amazon Web Services. It is a computing service that runs code in response to events and automatically manages the computing resources required by that code.

Traefik is an open-source Edge Router that makes publishing your services a fun and easy experience. It receives requests on behalf of your system and finds out which components are responsible for handling them. What sets Traefik apart, besides its many features, is that it automatically discovers the right configuration for your services.

容器

Kubernetes is an open-source container-orchestration system for automating application deployment, scaling, and management. It was originally designed by Google, and is now maintained by the Cloud Native Computing Foundation.

Google Kubernetes Engine (GKE) is a managed, production-ready environment for deploying containerized applications.

OpenShift is focused on security at every level of the container stack and throughout the application lifecycle. It includes long-term, enterprise support from one of the leading Kubernetes contributors and open source software companies.

Docker is a set of platform as a service products that use OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries and configuration files; they can communicate with each other through well-defined channels. All containers are run by a single operating-system kernel and are thus more lightweight than virtual machines.

Rook is an open source cloud-native storage orchestrator for Kubernetes that turns distributed storage systems into self-managing, self-scaling, self-healing storage services. It automates the tasks of a storage administrator: deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management.

Podman(the POD MANager) is a tool for managing OCI containers and pods.

Rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.

DevOps Development

回到頂部

DevOps Tools

GitHub provides hosting for software development version control using Git. It offers all of the distributed version control and source code management functionality of Git as well as adding its own features. It provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.

GitHub Codespaces is an integrated development environment(IDE) on GitHub. That allows developers to develop entirely in the cloud using Visual Studio and Visual Studio Code.

GitHub Actions will automate, customize, and execute your software development workflows right in your repository with GitHub Actions. You can discover, create, and share actions to perform any job you'd like, including CI/CD, and combine actions in a completely customized workflow.GitHub Actions for Azure you can create workflows that you can set up in your repository to build, test, package, release and deploy to Azure.Learn more about all other integrations with Azure.

GitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and CI/CD pipeline features, using an open-source license, developed by GitLab Inc.

Jenkins is a free and open source automation server. Jenkins helps to automate the non-human part of the software development process, with continuous integration and facilitating technical aspects of continuous delivery.

Bitbucket is a web-based version control repository hosting service owned by Atlassian, for source code and development projects that use either Mercurial or Git revision control systems. Bitbucket offers both commercial plans and free accounts. It offers free accounts with an unlimited number of private repositories. Bitbucket integrates with other Atlassian software like Jira, HipChat, Confluence and Bamboo.

Bamboo is a continuous integration (CI) server that can be used to automate the release management for a software application, creating a continuous delivery pipeline.

Codecov is the leading, dedicated code coverage solution. It provides highly integrated tools to group, merge, archive and compare coverage reports. Whether your team is comparing changes in a pull request or reviewing a single commit, Codecov will improve the code review workflow and quality.

Travis CI is a hosted continuous integration service used to build and test software projects hosted at GitHub.

Circle CI is a continuous integration and continuous delivery platform that helps software teams work smarter, faster.

Zuul-CI is a program that drives continuous integration, delivery, and deployment systems with a focus on project gating and interrelated projects. Using the same Ansible playbooks to deploy your system and run your tests.

Artifactory is a Universal Artifact Repository Manager developed by JFrog. It supports all major packages, enterprise ready security, clustered, HA, Docker registry, multi-site replication and scalable.

Team City is a build management and continuous integration server from JetBrains.

Shippable simplifies DevOps and makes it systematic with an Assembly Line platform that is heterogeneous, flexible, and provides complete visibility across your DevOps workflows.

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.

Selenium is a free (open source) automated testing suite for web applications across different browsers and platforms.

Cucumber is a tool based on Behavior Driven Development (BDD) framework which is used to write acceptance tests for the web application. It allows automation of functional validation in easily readable and understandable format (like plain English) to Business Analysts, Developers, and Testers.

JUnit is a unit testing framework for the Java programming language.

Mocha is a JavaScript test framework for Node.js programs, featuring browser support, asynchronous testing, test coverage reports, and use of any assertion library.

Karma is a simple tool that allows you to execute JavaScript code in multiple real browsers.

Jasmine is an open source testing framework for JavaScript. It aims to run on any JavaScript-enabled platform, to not intrude on the application nor the IDE, and to have easy-to-read syntax.

KubeInit provides Ansible playbooks and roles for the deployment and configuration of multiple Kubernetes distributions.

Consul is a service networking solution to connect and secure services across any runtime platform and public or private cloud.

Packer is lightweight, runs on every major operating system, and is highly performant, creating machine images for multiple platforms in parallel. Packer does not replace configuration management like Chef or Puppet. In fact, when building images, Packer is able to use tools like Chef or Puppet to install software onto the image.

Nomad is a highly available, distributed, data-center aware cluster and application scheduler designed to support the modern datacenter with support for long-running services, batch jobs, and much more.

Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

Octpus Deploy is the deployment automation server for your entire team, designed to make it easy to orchestrate releases and deploy applications, whether on-premises or in the cloud.

PowerShell/PowerShell Core is a cross-platform (Windows, Linux, and macOS) automation and configuration tool/framework that works well with your existing tools and is optimized for dealing with structured data (eg JSON, CSV, XML, etc.), REST APIs, and object models. It includes a command-line shell, an associated scripting language and a framework for processing cmdlets.

Hyper-V creates virtual machines on Windows 10. Hyper-V can be enabled in many ways including using the Windows 10 control panel, PowerShell or using the Deployment Imaging Servicing and Management tool (DISM).

Cloud Hypervisor is an open source Virtual Machine Monitor (VMM) that runs on top of KVM. The project focuses on exclusively running modern, cloud workloads, on top of a limited set of hardware architectures and platforms. Cloud workloads refers to those that are usually run by customers inside a cloud provider. Cloud Hypervisor is implemented in Rust and is based on the rust-vmm crates.

VMware vSphere Hypervisor is a bare-metal hypervisor that virtualizes servers; allowing you to consolidate your applications while saving time and money managing your IT infrastructure.

VMware vSphere is the industry-leading compute virtualization platform, and your first step to application modernization. It has been rearchitected with native Kubernetes to allow customers to modernize the 70 million+ workloads now running on vSphere.

VMware Tanzu is a centralized management platform for consistently operating and securing your Kubernetes infrastructure and modern applications across multiple teams and private/public clouds.

K3s is a highly available, certified Kubernetes distribution designed for production workloads in unattended, resource-constrained, remote locations or inside IoT appliances.

Google Kubernetes Engine (GKE) is a managed, production-ready environment for deploying containerized applications.

Anthos is a modern application management platform that provides a consistent development and operations experience for cloud and on-premises environments.

Apache Spark is a unified analytics engine for big data processing, with built-in modules for streaming, SQL, machine learning and graph processing.

Microsoft Azure is a cloud computing service created by Microsoft for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.

Azure Functions is a solution for easily running small pieces of code, or "functions," in the cloud. You can write just the code you need for the problem at hand, without worrying about a whole application or the infrastructure to run it.

Rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.

Helm is the Kubernetes Package Manager.

Red Hat OpenShift is focused on security at every level of the container stack and throughout the application lifecycle. It includes long-term, enterprise support from one of the leading Kubernetes contributors and open source software companies.

OpenShift Hive is an operator which runs as a service on top of Kubernetes/OpenShift. The Hive service can be used to provision and perform initial configuration of OpenShift 4 clusters.

OKD is a community distribution of Kubernetes optimized for continuous application development and multi-tenant deployment. OKD adds developer and operations-centric tools on top of Kubernetes to enable rapid application development, easy deployment and scaling, and long-term lifecycle maintenance for small and large teams.

Odo is a fast, iterative, and straightforward CLI tool for developers who write, build, and deploy applications on Kubernetes and OpenShift.

Kata Operator is an operator to perform lifecycle management (install/upgrade/uninstall) of Kata Runtime on Openshift as well as Kubernetes cluster.

Splunk software is used for searching, monitoring, and analyzing machine-generated big data, via a Web-style interface.

Prometheus is a free software application used for event monitoring and alerting. It records real-time metrics in a time series database (allowing for high dimensionality) built using a HTTP pull model, with flexible queries and real-time alerting.

Loki is a horizontally-scalable, highly-available, multi-tenant log aggregation system inspired by Prometheus. It is designed to be very cost effective and easy to operate. It does not index the contents of the logs, but rather a set of labels for each log stream.

Thanos is a set of components that can be composed into a highly available metric system with unlimited storage capacity, which can be added seamlessly on top of existing Prometheus deployments.

Container Storage Interface (CSI) is an API that lets container orchestration platforms like Kubernetes seamlessly communicate with stored data via a plug-in.

OpenEBS is a Kubernetes-based tool to create stateful applications using Container Attached Storage.

ElasticSearch is a search engine based on the Lucene library. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch is developed in Java.

Logstash is a tool for managing events and logs. When used generically, the term encompasses a larger system of log collection, processing, storage and searching activities.

Kibana is an open source data visualization plugin for Elasticsearch. It provides visualization capabilities on top of the content indexed on an Elasticsearch cluster. Users can create bar, line and scatter plots, or pie charts and maps on top of large volumes of data.

New Relic is a SaaS-based monitoring tool that fully supports the way DevOps teams work in the modern enterprise by streamlining your workflows with today's collaboration software and orchestration tools like Puppet, Chef, and Ansible.

Nagios is a free and open source computer-software application that monitors systems, networks and infrastructure. Nagios offers monitoring and alerting services for servers, switches, applications and services. It alerts users when things go wrong and alerts them a second time when the problem has been resolved.

SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages.

Genie is a federated job orchestration engine developed by Netflix. Genie provides REST APIs to run a variety of big data jobs like Hadoop, Pig, Hive, Spark, Presto, Sqoop and more. It also provides APIs for managing the metadata of many distributed processing clusters and the commands and applications which run on them.

Inviso is a lightweight tool that provides the ability to search for Hadoop jobs, visualize the performance, and view cluster utilization.

Fenzo is a scheduler Java library for Apache Mesos frameworks that supports plugins for scheduling optimizations and facilitates cluster autoscaling.

Dynomite is a thin, distributed dynamo layer for different storage engines and protocols, which includes Redis and Memcached. Dynomite supports multi-datacenter replication and is designed for High Availability(HA).

Dyno is a tool that is used to scale a Java client application utilizing Dynomite.

Raigad is a process/tool that runs alongside Elasticsearch to automate backup/recovery, Deployments and Centralized Configuration management.

Priam is a process/tool that runs alongside Apache Cassandra to automate backup/recovery, Deployments and Centralized Configuration management.

Chaos Monkey is a resiliency tool used to randomly terminates virtual machine instances and containers that run inside of your production environment. Chaos Monkey should work with any backend that Spinnaker supports (AWS, Google Compute Engine, Microsoft Azure, Kubernetes, and Cloud Foundry).

Falcor is a JavaScript library for efficient data fetching. Falcor lets you represent all your remote data sources as a single domain model via a virtual JSON graph, whether in memory on the client or over the network on the server.

Restify is a framework, utilizing connect style middleware for building REST APIs.

Traefik is an open source Edge Router that makes publishing your services a fun and easy experience. It receives requests on behalf of your system and finds out which components are responsible for handling them. What sets Traefik apart, besides its many features, is that it automatically discovers the right configuration for your services.

Jira is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management.

Pivotal Tracker is the agile project management tool of choice for developers around the world for real-time collaboration around a shared, prioritized backlog.

Trello is a web-based Kanban-style list-making application that gives you perspective over all your projects, at work and at home.

Microsoft Teams is the hub for team collaboration in Office 365 that integrates the people, content, and tools your team needs to be more engaged and effective.

Slack is a cloud-based proprietary instant messaging platform developed by Slack Technologies.

OpsGenie is a cloud-based service for dev & ops teams, providing reliable alerts, on-call schedule management and escalations. OpsGenie integrates with monitoring tools & services, ensures the right people are notified.

Pagerduty automates processes built on best practices, allowing you to focus on higher value parts of incident response. Granular and scalable permissions enable teams to administer and operate independently while controlling visibility.

Veracode is a leading provider of enterprise-class application security, seamlessly integrating agile security solutions for organizations around the globe. In addition to application security services and secure devops services, Veracode provides a full security assessment to ensure your website and applications are secure, and ensures full enterprise data protection.

DevOps Learning Resources

DevOps Engineering on AWS from AWS Training

AWS Certified DevOps Engineer - Professional from A Cloud Guru

Microsoft Certified: DevOps Engineer Expert Cert.

Introduction to Azure DevOps from A Cloud Guru

Architecting with Google Compute Engine

Architecting with Google Kubernetes Engine in Google Cloud

VMware Training and Certification Program

Cloudera Certification Program

Salesforce Certification Program

Salesforce Superbadges

Red Hat Training and Certification Program

Linux Foundation Training and Certification Program

Linux Professional Institute(LPI) Training and Certification

Learn DevOps with Online Courses and Lessons from edX

Top DevOps Courses Online from Udemy

Devops Courses from Coursera

聯網

回到頂部

Networking Learning Resources

AWS Certified Security - Specialty Certification

Microsoft Certified: Azure Security Engineer Associate

Google Cloud Certified Professional Cloud Security Engineer

Cisco Security Certifications

The Red Hat Certified Specialist in Security: Linux

Linux Professional Institute LPIC-3 Enterprise Security Certification

Cybersecurity Training and Courses from IBM Skills

Cybersecurity Courses and Certifications by Offensive Security

Citrix Certified Associate – Networking(CCA-N)

Citrix Certified Professional – Virtualization(CCP-V)

CCNP Routing and Switching

Certified Information Security Manager(CISM)

Wireshark Certified Network Analyst (WCNA)

Juniper Networks Certification Program Enterprise (JNCP)

Networking courses and specializations from Coursera

Network & Security Courses from Udemy

Network & Security Courses from edX

Tools & Networking Concepts

 • Connection: In networking, a connection refers to pieces of related information that are transferred through a network. This generally infers that a connection is built before the data transfer (by following the procedures laid out in a protocol) and then is deconstructed at the at the end of the data transfer.

• Packet: A packet is, generally speaking, the most basic unit that is transferred over a network. When communicating over a network, packets are the envelopes that carry your data (in pieces) from one end point to the other.

Packets have a header portion that contains information about the packet including the source and destination, timestamps, network hops. The main portion of a packet contains the actual data being transferred. It is sometimes called the body or the payload.

 • Network Interface: A network interface can refer to any kind of software interface to networking hardware. For instance, if you have two network cards in your computer, you can control and configure each network interface associated with them individually.

A network interface may be associated with a physical device, or it may be a representation of a virtual interface. The "loop-back" device, which is a virtual interface to the local machine, is an example of this.

 • LAN: LAN stands for "local area network". It refers to a network or a portion of a network that is not publicly accessible to the greater internet. A home or office network is an example of a LAN.

• WAN: WAN stands for "wide area network". It means a network that is much more extensive than a LAN. While WAN is the relevant term to use to describe large, dispersed networks in general, it is usually meant to mean the internet, as a whole.

If an interface is connected to the WAN, it is generally assumed that it is reachable through the internet.

 • Protocol: A protocol is a set of rules and standards that basically define a language that devices can use to communicate. There are a great number of protocols in use extensively in networking, and they are often implemented in different layers.

Some low level protocols are TCP, UDP, IP, and ICMP. Some familiar examples of application layer protocols, built on these lower protocols, are HTTP (for accessing web content), SSH, TLS/SSL, and FTP.

 • Port: A port is an address on a single machine that can be tied to a specific piece of software. It is not a physical interface or location, but it allows your server to be able to communicate using more than one application.

• Firewall: A firewall is a program that decides whether traffic coming into a server or going out should be allowed. A firewall usually works by creating rules for which type of traffic is acceptable on which ports. Generally, firewalls block ports that are not used by a specific application on a server.

• NAT: Network address translation is a way to translate requests that are incoming into a routing server to the relevant devices or servers that it knows about in the LAN. This is usually implemented in physical LANs as a way to route requests through one IP address to the necessary backend servers.

• VPN: Virtual private network is a means of connecting separate LANs through the internet, while maintaining privacy. This is used as a means of connecting remote systems as if they were on a local network, often for security reasons.

Network Layers

 While networking is often discussed in terms of topology in a horizontal way, between hosts, its implementation is layered in a vertical fashion throughout a computer or network. This means is that there are multiple technologies and protocols that are built on top of each other in order for communication to function more easily. Each successive, higher layer abstracts the raw data a little bit more, and makes it simpler to use for applications and users. It also allows you to leverage lower layers in new ways without having to invest the time and energy to develop the protocols and applications that handle those types of traffic.

As data is sent out of one machine, it begins at the top of the stack and filters downwards. At the lowest level, actual transmission to another machine takes place. At this point, the data travels back up through the layers of the other computer. Each layer has the ability to add its own "wrapper" around the data that it receives from the adjacent layer, which will help the layers that come after decide what to do with the data when it is passed off.

One method of talking about the different layers of network communication is the OSI model. OSI stands for Open Systems Interconnect.This model defines seven separate layers. The layers in this model are:

• Application: The application layer is the layer that the users and user-applications most often interact with. Network communication is discussed in terms of availability of resources, partners to communicate with, and data synchronization.

• Presentation: The presentation layer is responsible for mapping resources and creating context. It is used to translate lower level networking data into data that applications expect to see.

• Session: The session layer is a connection handler. It creates, maintains, and destroys connections between nodes in a persistent way.

• Transport: The transport layer is responsible for handing the layers above it a reliable connection. In this context, reliable refers to the ability to verify that a piece of data was received intact at the other end of the connection. This layer can resend information that has been dropped or corrupted and can acknowledge the receipt of data to remote computers.

• Network: The network layer is used to route data between different nodes on the network. It uses addresses to be able to tell which computer to send information to. This layer can also break apart larger messages into smaller chunks to be reassembled on the opposite end.

• Data Link: This layer is implemented as a method of establishing and maintaining reliable links between different nodes or devices on a network using existing physical connections.

• Physical: The physical layer is responsible for handling the actual physical devices that are used to make a connection. This layer involves the bare software that manages physical connections as well as the hardware itself (like Ethernet).

The TCP/IP model, more commonly known as the Internet protocol suite, is another layering model that is simpler and has been widely adopted.It defines the four separate layers, some of which overlap with the OSI model:

 • Application: In this model, the application layer is responsible for creating and transmitting user data between applications. The applications can be on remote systems, and should appear to operate as if locally to the end user.

The communication takes place between peers network.

 • Transport: The transport layer is responsible for communication between processes. This level of networking utilizes ports to address different services. It can build up unreliable or reliable connections depending on the type of protocol used.

• Internet: The internet layer is used to transport data from node to node in a network. This layer is aware of the endpoints of the connections, but does not worry about the actual connection needed to get from one place to another. IP addresses are defined in this layer as a way of reaching remote systems in an addressable manner.

• Link: The link layer implements the actual topology of the local network that allows the internet layer to present an addressable interface. It establishes connections between neighboring nodes to send data.

接口

Interfaces are networking communication points for your computer. Each interface is associated with a physical or virtual networking device. Typically, your server will have one configurable network interface for each Ethernet or wireless internet card you have. In addition, it will define a virtual network interface called the "loopback" or localhost interface. This is used as an interface to connect applications and processes on a single computer to other applications and processes. You can see this referenced as the "lo" interface in many tools.

協定

Networking works by piggybacks on a number of different protocols on top of each other. In this way, one piece of data can be transmitted using multiple protocols encapsulated within one another.

Media access control is a communications protocol that is used to distinguish specific devices. Each device is supposed to get a unique MAC address during the manufacturing process that differentiates it from every other device on the internet. Addressing hardware by the MAC address allows you to reference a device by a unique value even when the software on top may change the name for that specific device during operation. Media access control is one of the only protocols from the link layer that you are likely to interact with on a regular basis.

The IP protocol is one of the fundamental protocols that allow the internet to work. IP addresses are unique on each network and they allow machines to address each other across a network. It is implemented on the internet layer in the IP/TCP model. Networks can be linked together, but traffic must be routed when crossing network boundaries. This protocol assumes an unreliable network and multiple paths to the same destination that it can dynamically change between. There are a number of different implementations of the protocol. The most common implementation today is IPv4, although IPv6 is growing in popularity as an alternative due to the scarcity of IPv4 addresses available and improvements in the protocols capabilities.

ICMP: internet control message protocol is used to send messages between devices to indicate the availability or error conditions. These packets are used in a variety of network diagnostic tools, such as ping and traceroute. Usually ICMP packets are transmitted when a packet of a different kind meets some kind of a problem. Basically, they are used as a feedback mechanism for network communications.

TCP: Transmission control protocol is implemented in the transport layer of the IP/TCP model and is used to establish reliable connections. TCP is one of the protocols that encapsulates data into packets. It then transfers these to the remote end of the connection using the methods available on the lower layers. On the other end, it can check for errors, request certain pieces to be resent, and reassemble the information into one logical piece to send to the application layer. The protocol builds up a connection prior to data transfer using a system called a three-way handshake. This is a way for the two ends of the communication to acknowledge the request and agree upon a method of ensuring data reliability. After the data has been sent, the connection is torn down using a similar four-way handshake. TCP is the protocol of choice for many of the most popular uses for the internet, including WWW, FTP, SSH, and email. It is safe to say that the internet we know today would not be here without TCP.

UDP: User datagram protocol is a popular companion protocol to TCP and is also implemented in the transport layer. The fundamental difference between UDP and TCP is that UDP offers unreliable data transfer. It does not verify that data has been received on the other end of the connection. This might sound like a bad thing, and for many purposes, it is. However, it is also extremely important for some functions. It's not required to wait for confirmation that the data was received and forced to resend data, UDP is much faster than TCP. It does not establish a connection with the remote host, it simply fires off the data to that host and doesn't care if it is accepted or not. Since UDP is a simple transaction, it is useful for simple communications like querying for network resources. It also doesn't maintain a state, which makes it great for transmitting data from one machine to many real-time clients. This makes it ideal for VOIP, games, and other applications that cannot afford delays.

HTTP: Hypertext transfer protocol is a protocol defined in the application layer that forms the basis for communication on the web. HTTP defines a number of functions that tell the remote system what you are requesting. For instance, GET, POST, and DELETE all interact with the requested data in a different way.

JSON Web Token (JWT) is a compact URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is digitally signed using JSON Web Signature (JWS).

OAuth 2.0 is an open source authorization framework that enables applications to obtain limited access to user accounts on an HTTP service, such as Amazon, Google, Facebook, Microsoft, Twitter GitHub, and DigitalOcean. It works by delegating user authentication to the service that hosts the user account, and authorizing third-party applications to access the user account.

FTP: File transfer protocol is in the application layer and provides a way of transferring complete files from one host to another. It is inherently insecure, so it is not recommended for any externally facing network unless it is implemented as a public, download-only resource.

DNS: Domain name system is an application layer protocol used to provide a human-friendly naming mechanism for internet resources. It is what ties a domain name to an IP address and allows you to access sites by name in your browser.

SSH: Secure shell is an encrypted protocol implemented in the application layer that can be used to communicate with a remote server in a secure way. Many additional technologies are built around this protocol because of its end-to-end encryption and ubiquity. There are many other protocols that we haven't covered that are equally important. However, this should give you a good overview of some of the fundamental technologies that make the internet and networking possible.

虛擬化

KVM (for Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware containing virtualization extensions (Intel VT or AMD-V). It consists of a loadable kernel module, kvm.ko, that provides the core virtualization infrastructure and a processor specific module, kvm-intel.ko or kvm-amd.ko.

QEMU is a fast processor emulator using a portable dynamic translator. QEMU emulates a full system, including a processor and various peripherals. It can be used to launch a different Operating System without rebooting the PC or to debug system code.

Hyper-V enables running virtualized computer systems on top of a physical host. These virtualized systems can be used and managed just as if they were physical computer systems, however they exist in virtualized and isolated environment. Special software called a hypervisor manages access between the virtual systems and the physical hardware resources. Virtualization enables quick deployment of computer systems, a way to quickly restore systems to a previously known good state, and the ability to migrate systems between physical hosts.

VirtManager is a graphical tool for managing virtual machines via libvirt. Most usage is with QEMU/KVM virtual machines, but Xen and libvirt LXC containers are well supported. Common operations for any libvirt driver should work.

oVirt is an open-source distributed virtualization solution, designed to manage your entire enterprise infrastructure. oVirt uses the trusted KVM hypervisor and is built upon several other community projects, including libvirt, Gluster, PatternFly, and Ansible.Founded by Red Hat as a community project on which Red Hat Enterprise Virtualization is based allowing for centralized management of virtual machines, compute, storage and networking resources, from an easy-to-use web-based front-end with platform independent access.

Xen is focused on advancing virtualization in a number of different commercial and open source applications, including server virtualization, Infrastructure as a Services (IaaS), desktop virtualization, security applications, embedded and hardware appliances, and automotive/aviation.

Ganeti is a virtual machine cluster management tool built on top of existing virtualization technologies such as Xen or KVM and other open source software. Once installed, the tool assumes management of the virtual instances (Xen DomU).

Packer is an open source tool for creating identical machine images for multiple platforms from a single source configuration. Packer is lightweight, runs on every major operating system, and is highly performant, creating machine images for multiple platforms in parallel. Packer does not replace configuration management like Chef or Puppet. In fact, when building images, Packer is able to use tools like Chef or Puppet to install software onto the image.

Vagrant is a tool for building and managing virtual machine environments in a single workflow. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time, increases production parity, and makes the "works on my machine" excuse a relic of the past. It provides easy to configure, reproducible, and portable work environments built on top of industry-standard technology and controlled by a single consistent workflow to help maximize the productivity and flexibility of you and your team.

VMware Workstation is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems; it enables users to set up virtual machines on a single physical machine, and use them simultaneously along with the actual machine.

VirtualBox is a powerful x86 and AMD64/Intel64 virtualization product for enterprise as well as home use. Not only is VirtualBox an extremely feature rich, high performance product for enterprise customers.

資料庫

回到頂部

Database Learning Resources

SQL is a standard language for storing, manipulating and retrieving data in relational databases.

SQL Tutorial by W3Schools

Learn SQL Skills Online from Coursera

SQL Courses Online from Udemy

SQL Online Training Courses from LinkedIn Learning

Learn SQL For Free from Codecademy

GitLab's SQL Style Guide

OracleDB SQL Style Guide Basics

Tableau CRM: BI Software and Tools

AWS上的數據庫

Best Practices and Recommendations for SQL Server Clustering in AWS EC2.

Connecting from Google Kubernetes Engine to a Cloud SQL instance.

Educational Microsoft Azure SQL resources

MySQL Certifications

SQL vs. NoSQL Databases: What's the Difference?

What is NoSQL?

Databases and Tools

Azure Data Studio is an open source data management tool that enables working with SQL Server, Azure SQL DB and SQL DW from Windows, macOS and Linux.

Azure SQL Database is the intelligent, scalable, relational database service built for the cloud. It's evergreen and always up to date, with AI-powered and automated features that optimize performance and durability for you. Serverless compute and Hyperscale storage options automatically scale resources on demand, so you can focus on building new applications without worrying about storage size or resource management.

Azure SQL Managed Instance is a fully managed SQL Server Database engine instance that's hosted in Azure and placed in your network. This deployment model makes it easy to lift and shift your on-premises applications to the cloud with very few application and database changes. Managed instance has split compute and storage components.

Azure Synapse Analytics is a limitless analytics service that brings together enterprise data warehousing and Big Data analytics. It gives you the freedom to query data on your terms, using either serverless or provisioned resources at scale. It brings together the best of the SQL technologies used in enterprise data warehousing, Spark technologies used in big data analytics, and Pipelines for data integration and ETL/ELT.

MSSQL for Visual Studio Code is an extension for developing Microsoft SQL Server, Azure SQL Database and SQL Data Warehouse everywhere with a rich set of functionalities.

SQL Server Data Tools (SSDT) is a development tool for building SQL Server relational databases, Azure SQL Databases, Analysis Services (AS) data models, Integration Services (IS) packages, and Reporting Services (RS) reports. With SSDT, a developer can design and deploy any SQL Server content type with the same ease as they would develop an application in Visual Studio or Visual Studio Code.

Bulk Copy Program is a command-line tool that comes with Microsoft SQL Server. BCP, allows you to import and export large amounts of data in and out of SQL Server databases quickly snd efficeiently.

SQL Server Migration Assistant is a tool from Microsoft that simplifies database migration process from Oracle to SQL Server, Azure SQL Database, Azure SQL Database Managed Instance and Azure SQL Data Warehouse.

SQL Server Integration Services is a development platform for building enterprise-level data integration and data transformations solutions. Use Integration Services to solve complex business problems by copying or downloading files, loading data warehouses, cleansing and mining data, and managing SQL Server objects and data.

SQL Server Business Intelligence(BI) is a collection of tools in Microsoft's SQL Server for transforming raw data into information businesses can use to make decisions.

Tableau is a Data Visualization software used in relational databases, cloud databases, and spreadsheets. Tableau was acquired by Salesforce in August 2019.

DataGrip is a professional DataBase IDE developed by Jet Brains that provides context-sensitive code completion, helping you to write SQL code faster. Completion is aware of the tables structure, foreign keys, and even database objects created in code you're editing.

RStudio is an integrated development environment for R and Python, with a console, syntax-highlighting editor that supports direct code execution, and tools for plotting, history, debugging and workspace management.

MySQL is a fully managed database service to deploy cloud-native applications using the world's most popular open source database.

PostgreSQL is a powerful, open source object-relational database system with over 30 years of active development that has earned it a strong reputation for reliability, feature robustness, and performance.

Amazon DynamoDB is a key-value and document database that delivers single-digit millisecond performance at any scale. It is a fully managed, multiregion, multimaster, durable database with built-in security, backup and restore, and in-memory caching for internet-scale applications.

FoundationDB is an open source distributed database designed to handle large volumes of structured data across clusters of commodity servers. It organizes data as an ordered key-value store and employs ACID transactions for all operations. It is especially well-suited for read/write workloads but also has excellent performance for write-intensive workloads. FoundationDB was acquired by Apple in 2015.

CouchbaseDB is an open source distributed multi-model NoSQL document-oriented database. It creates a key-value store with managed cache for sub-millisecond data operations, with purpose-built indexers for efficient queries and a powerful query engine for executing SQL queries.

IBM DB2 is a collection of hybrid data management products offering a complete suite of AI-empowered capabilities designed to help you manage both structured and unstructured data on premises as well as in private and public cloud environments. Db2 is built on an intelligent common SQL engine designed for scalability and flexibility.

MongoDB is a document database meaning it stores data in JSON-like documents.

OracleDB is a powerful fully managed database helps developers manage business-critical data with the highest availability, reliability, and security.

MariaDB is an enterprise open source database solution for modern, mission-critical applications.

SQLite is a C-language library that implements a small, fast, self-contained, high-reliability, full-featured, SQL database engine.SQLite is the most used database engine in the world. SQLite is built into all mobile phones and most computers and comes bundled inside countless other applications that people use every day.

SQLite Database Browser is an open source SQL tool that allows users to create, design and edits SQLite database files. It lets users show a log of all the SQL commands that have been issued by them and by the application itself.

dbWatch is a complete database monitoring/management solution for SQL Server, Oracle, PostgreSQL, Sybase, MySQL and Azure. Designed for proactive management and automation of routine maintenance in large scale on-premise, hybrid/cloud database environments.

Cosmos DB Profiler is a real-time visual debugger allowing a development team to gain valuable insight and perspective into their usage of Cosmos DB database. It identifies over a dozen suspicious behaviors from your application's interaction with Cosmos DB.

Adminer is an SQL management client tool for managing databases, tables, relations, indexes, users. Adminer has support for all the popular database management systems such as MySQL, MariaDB, PostgreSQL, SQLite, MS SQL, Oracle, Firebird, SimpleDB, Elasticsearch and MongoDB.

DBeaver is an open source database tool for developers and database administrators. It offers supports for JDBC compliant databases such as MySQL, Oracle, IBM DB2, SQL Server, Firebird, SQLite, Sybase, Teradata, Firebird, Apache Hive, Phoenix, and Presto.

DbVisualizer is a SQL management tool that allows users to manage a wide range of databases such as Oracle, Sybase, SQL Server, MySQL, H3, and SQLite.

AppDynamics Database is a management product for Microsoft SQL Server. With AppDynamics you can monitor and trend key performance metrics such as resource consumption, database objects, schema statistics and more, allowing you to proactively tune and fix issues in a High-Volume Production Environment.

Toad is a SQL Server DBMS toolset developed by Quest. It increases productivity by using extensive automation, intuitive workflows, and built-in expertise. This SQL management tool resolve issues, manage change and promote the highest levels of code quality for both relational and non-relational databases.

Lepide SQL Server is an open source storage manager utility to analyse the performance of SQL Servers. It provides a complete overview of all configuration and permission changes being made to your SQL Server environment through an easy-to-use, graphical user interface.

Sequel Pro is a fast MacOS database management tool for working with MySQL. This SQL management tool helpful for interacting with your database by easily to adding new databases, new tables, and new rows.

貢獻

If would you like to contribute to this guide simply make a Pull Request.

執照

回到頂部

Distributed under the Creative Commons Attribution 4.0 International (CC BY 4.0) Public License.

展開