Jump to content

Search the Community

Showing results for tags 'html5'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Found 18 results

  1. Usenix Enigma HTML5 is a boon for unscrupulous web advertising networks, which can use the markup language's features to build up detailed fingerprints of individual netizens without their knowledge or consent. In a presentation at Usenix's Enigma 2018 conference in California this week, Arvind Narayanan, an assistant professor of computer science at Princeton, showed how some of the advanced features of HTML5 – such as audio playback – can be used to identify individual browser types and follow them around online to get an idea of what they're into. For example, different browsers process sound files in slightly different ways, and allowing an ad network – or any website – to potentially work out which version of a browser is being used on which operating system. Couple this with other details – such as the battery level and WebRTC – and you can start to form a fingerprint for an individual user. Of course, your browser typically reveals its version number and the underlying operating system's details to web servers when fetching pages and other materials. However, from what Narayanan is saying, it is possible for ad networks and webmasters to bypass any attempts to suppress that information by probing the browser with HTML5 for traceable details. It also means that dumping JavaScript and cookies, and relying on purely HTML5, won't mean you're completely free from online tracking by advertisers. “HTML5 browsers use a library to do audio processing, but different software stacks produce a unique fingerprint in combination with other data,” he explained. “Similar techniques also work on the battery and WebRTC functions.” Fingerprint ... Each browser type has its own way of processing audio that makes it easy to track, according to this slide by Arvind Narayanan Narayanan and his team have been monitoring the behavior of ad trackers for years. In 2014, they discovered 5,000 of the world's top 100,000 most-visited websites were, in one way or another, using a canvas fingerprinting technique to identify and follow netizens around the internet, as they moved from page to page, site to site, without their knowledge. Further research last year found that ad networks were using session replay scripts, which he described as “analytics on steroids,” to stalk people online. Narayanan said he and his team found ad trackers on 8,000 websites leaking visitors' information in this way – including code on the website of American pharmacy chain Walgreens, which apparently handed confidential patient records to advertisers via forms, as well as the Gradescope assignment-grading software used by Princeton. “This [session replay technique] left website owners and users pissed off,” he said. “Once we detailed the technique, the largest ad tracking providers stopped doing it. It seems sunlight is a great disinfectant.” But this scrutiny only works up to a point, he warned. Netizen-tracking firms aren’t going to stop following people around the 'net and working out what interests them so they can be served targeted adverts and special offers. Narayanan was one of the team overseeing the now-imploded Do Not Track browser feature, and the ad industry was adamant: if 15 per cent or more of internet users turned tracking off, the banner networks would refuse to play ball and track them anyway. Technical workarounds by ad blockers, such as Privacy Badger and Ghostery, are of some use, he said. But they are usually playing catch up with ad trackers, not blocking them from the start. The only way this is going to stop is if web browser programmers step up and build in measures to curb the ability to stalk users. But Narayanan said browser makers don’t want to get involved. “Historically, web browsers consider it’s not their problem. Vendors are attempting to be neutral on this, and leave it to users to sort out,” he said. “To users that’s like an email provider saying that they are neutral on spam. Protection of privacy is a core reason for user choice.” There have been some encouraging moves. The Brave browser has been developed specifically to neuter naughty advertising trackers, and both Firefox and Safari are making more of an effort in this area, he said. Chrome is also, we note, making noises in that direction. But what’s needed is a fundamental rethink, with features that ensure tracking-free browsing, just as private browsing doesn’t record session data on a local workstation. Some kind of warning, similar to the HTTPS icon, would also be useful. It’s important that these anti-surveillance techniques are implemented, he said, because privacy is vital to society – and there’s plenty of evidence showing a lack of privacy stifles debate. “Privacy is a lubricant that allows for social adaptability,” Narayanan opined. “If we move to a state of pervasive surveillance we lose that mobility.” source
  2. Mozilla has added a feature to Firefox 46 that will convert old YouTube Flash code to HTML5 Video automatically under certain circumstances. When YouTube started out, Flash was the dominating technology used to stream video on the Internet, and the first player that YouTube made available to webmasters to embed videos on third-party sites used Flash exclusively. YouTube changed the code later on to reflect changes in streaming technologies. From a technical perspective, YouTube started to offer embed codes as iframes instead of objects. The Flash code works fine after all these years, but only if Adobe Flash is installed in the browser. If that is not the case, a "plugin is missing" error message is displayed. If you take this old Ghacks article on Line Rider, and there specifically the first video embedded on the page, you will get the error message "A plugin is needed to display this content" if Flash is not installed in the browser or blocked on the site. The second video on the same page uses the new embed code and it won't show the error message as the HTML5 video player is used in this case automatically. Since Mozilla does not have the luxury of a native Flash integration and the fact that plugins will be a thing of the past in the near future, something had to be done about that. Mozilla added code to its Firefox web browser to convert embedded YouTube videos using the old Flash embed code to the new embed code if Flash is not installed or enabled on the page. This affects YouTube embeds on third-party sites only. It needs to be noted that Firefox won't enforce the use of HTML5. If Flash is installed in the browser, nothing changes at all as Flash will be used in the case to power the video player. Deactivate the feature Mozilla plans to launch the feature in Firefox 46. It is already part of the organization's Nightly web browser and enabled by default. Firefox users who don't require the feature, can deactivate it in the following way: Load about:config in the browser's address bar. Confirm that you will be careful if a warning prompt is displayed. Find plugins.rewrite_youtube_embeds using search. Double-click on the preference name. If you set it to false, Firefox will not rewrite old Flash YouTube embed code if Flash is not installed or enabled. You may change the preference to its default value at any time by repeating the process outlined above. Closing Words While I don't encounter many old YouTube videos embedded on third-party websites, it seems to have been something of a problem for part of Mozilla Firefox's user base. The way it is implemented offers the best of both worlds as users who don't want the feature can disable it easily in the browser's advanced configuration dialog. (via Sören Hentzschel) Article source
  3. HTML5 Games Workshop: Make A Platformer Game With JavaScript! I have always wanted to run a game development workshop, and some weeks ago, thanks to AdaJS in Barcelona, I finally got my chance. Empezamos con lleno el taller de videojuegos de @ladybenko en @CanodromBCN 👏🏻👏🏻 pic.twitter.com/FWyfcSF16R — adaJS (@adabcnjs) March 4, 2017 Best news? The materials that I created are available online! And you can use them to guide yourself or to design a game development workshop of your own. The content I cover includes: Setting up your machine to develop games with Phaser and JavaScript. Loading the assets (images, audio files, etc.) you’ll use in your game. Rendering animated sprites. Getting the players’ input via the keyboard. Using a physics engine to handle movement, jumps, gravity, etc. Playing sound effects and background music. Changing between different levels. And more! You can check out the final game here –and play it! Move the character and jump with the arrow keys. Your goal is to pick up the key and reach the door. Try the workshop at home Do you want to try the workshop on your own and make a game? Please go ahead! There are indications at the beginning of each lesson, as well as explanations at every step, so that you can use this as a self-guided workshop, without a coach. If you get lost, you can download the source code at the end of every chapter and compare it with your work. There is also a checklist to help ensure you are on the right track before advancing to the next step. Run your own workshop If you would like to replicate the workshop in your local community, please do. It’s really fun and inspiring to see how people create a game for the very first time. We’d love to hear from you! The workshop website includes a guide for coaches and instructors that will help you set up run your own game-making workshop. Source
  4. FlipHTML5 Flipbook Maker Platinum Plan Giveaway –Free for 3 Months ( $74.75 ) FlipHTML5 provides the online and offline digital publishing solutions, which can both convert PDF/images to page flip content in minutes. With FlipHTML5, you can enrich the content with multimedia such as hyperlinks, audios and slideshows. Also, you can easily share the digital content on social network to build the brand awareness and expand the target readers group. Link
  5. Google Chrome HTML5 Roll-Out Plan Google revealed yesterday how it plans to make the shift to prioritizing HTML5 over Flash in the company's Chrome browser. The company announced previously that it will deprioritize Flash content on the web in favor of HTML5 content. The decision left many questions unanswered: will Chrome block all Flash content eventually? What is the time frame for the change? What happens to sites that only support Flash but not HTML5? This article will answer all those questions and a couple more. Google Chrome HTML5 Roll-out plan The roll out runs from January 2017 to October 2017 if things go as planned. Chrome uses the site engagement metric to determine whether "activate Flash" prompts are displayed to the user on sites that don't support HTML5 fallbacks. Site engagement describes how often a site is accessed by a Chrome user. The value gets higher with visits, and starts at 0 for sites that have not been visited yet. Tip: You can display the site engagement values for all visited sites in Chrome by loading Google chrome://site-engagement in the address bar. Points can be edited for any site. This can be useful for testing purposes, but also to raise the score of a site above a certain threshold. Chrome will display a Flash prompt for any site visited in the browser that falls below a selected threshold for the given month. In January 2017, any site below 1% will throw a prompt to activate Flash. This goes up to a threshold of 32 in June 2017, and to 100 in October 2017. Only new sites will display prompts in the beginning, but this will change over the course of the year 2017 until all sites will prompt the user for activation. January 2017 is special, as only 1% of all stable users of Chrome will join the Flash deprioritizing group. Google plans to increase the value to 100% with the release of Chrome 56 Stable in February 2017. Testing Developers may test the functionality in Chrome Beta. To do so, load chrome://flags/#prefer-html-over-flash in the browser and set the flag to enabled. Restart the browser to complete the change. This enables the HTML5 over Flash functionality in the browser with a fixed site engagement rating of 30. Any site below that threshold will prompt to enable Flash, any site above it won't. Closing Words Flash will remain a part of Google Chrome for the foreseeable future but users will face more and more prompts when they want to run Flash in the browser. The change is of concern to website operators as well who use Flash exclusively or predominantly on their sites as part of Chrome's user base will probably exit the site instead of following the prompt to enable Flash. Mozilla plans to drop NPAPI plugin support in Firefox 53 which will be out April 18th, 2017 (Google did so in Chrome 45 already, but Flash is not NPAPI but PPAPI in Chrome so it did not affect the technology). Flash will likely be the only exception to the rule as plans are underway to whitelist Flash so that it remains available. Now You: Do you visit sites that rely on Flash? Source
  6. Chrome 55 Now Blocks Flash, Uses HTML5 by Default Chrome 55, released earlier this week, now blocks all Adobe Flash content by default, according to a plan set in motion by Google engineers earlier this year. Back in May, Google's staff announced that starting with Q4 2016, Chrome would use HTML5 by default, while Flash would be turned off. While some of the initial implementation details of the "HTML5 By Default" plan changed since May, Flash has been phased out in favor of HTML5 as the primary technology for playing multimedia content in Chrome. Users have to allow Flash to run on non-HTML5 websites Google's plan is to turn off Flash and use HTML5 for all sites. Where HTML5 isn't supported, Chrome will prompt users and ask them if they want to run Flash to view multimedia content. The user's option would be remembered for subsequent visits, but there's also an option in the browser's settings section, under Settings > Content Settings > Flash > Manage Exceptions, where users can add the websites they want to allow Flash to run by default. Back in May, to avoid over-prompting users, Google said it would whitelist some of the Internet's biggest web portals where HTML5 isn't yet supported, or where not all content could be played back via HTML5 just yet. The list included YouTube, Flash, VK, and others. This top 10 list has been dropped, in favor of a better system called Site Engagement (chrome://site-engagement) that gives scores to websites based on the number of visits and time spent on each site. The Site Engagement indicator takes a value from 1 to 100, and once it drops under 30, users will be prompted to enable Flash, regardless of the site's popularity and Alexa ranking. Flash, who's been accused of being a resource hog and a security threat, will continue to ship with Chrome for the time being. If you don't like Google's decision to go with HTML5 by default, there's an option in the chrome://flags section where you can revert to using Flash. Google has been preparing for a life without Flash for many years now. YouTube has dropped Flash support a long time ago, while starting with January 2, 2017, Google will stop accepting Flash ads in its AdWords program. Both Chrome and Firefox now block non-essential Flash content, such as analytics and user fingerprinting scripts. Google has been doing this since Chrome 53, and Mozilla since Firefox 48. Source
  7. One of the primary vectors for the distribution of tech support scams is malvertising. You’ll simply be browsing the web when all of a sudden your browser shows a scary page claiming your computer is infected. Behind the scenes, an unscrupulous ad network usually lets a malicious actor push a malicious code snippet instead of a regular advert. Now all you see is a page that looks like a Microsoft website and no matter how many times you try to close the annoying popup, it simply won’t go away. Over time, various tricks have been used to fool browsers and in particular Google Chrome, which is not surprising considering its market share. Typically we have seen JavaScript code to send what seems to be an infinite number of pop ups, which in reality is a simple loop. Of course there have been variations of this and historically browsers have let users down by not being to handle those tricks cleanly. As of matter of fact, one of the easiest ways to get rid of a browser locker is to kill its process using Task Manager or other such tool. Today we are looking at yet another technique which isn’t new per se, but has finally made its way into tech support scams. Remember the websites that could crash Chrome/Firefox/Safari even on mobile devices? The flaw was originally identified in July 2014 and it is an abuse of the history.pushState() method introduced with HTML5 which according to the documentation, pushes the given data onto the session history stack with the specified title and, if provided, a URL. One important thing you may notice from the bug report above is the “Doesn’t technically crash, just hang” part. This is so important because as you will see below, scammers really want their victims to see the instructions on screen, and in particular the phone number to call to fix their computer: This is a clever use of this bug because the computer that visited this site is essentially stuck with the CPU and memory maxed out while the page is not responding. All of this is done by using a few lines of code: Depending on your computer’s specifications you may or may not be able to launch Task Manager to kill the browser process. Otherwise your system will be brought to its knees and a hard reboot may be the only option left. Whatever you do, please do not call the phone number for support because it is not Microsoft’s but rather a group of scammers waiting to rob you of hundreds of dollars under false pretenses. We reported this particular scam to the Google Safebrowsing team even though the bug existed before, because the fact it is used in the wild to trick people makes it more urgent to be looked at and fixed. Hat tip to @TheWack0lian for sharing this new browlock scam with us. IOCs 1-844-507-3556 perfecthosting[.]co/alert/ perfecthosting.co/alert/123.mp3 79.170.44.106 Microsoft Identification-Malware infected website visited.Malicious data transferred to system from unauthorized access.System Registry files may be changed and can be used for unethical activites. System has been infected by Virus Trojan.worm!055BCCAC9FEC — Personal information (Bank Details, Credit Cards and Account Password) may be stolen.System IP Address 112.15.16.175 is unmasked and can be accessed for virus spreading.Microsoft has reported to the connected ISP to implement new firewall.User should call immediatley to Technical Support 1-844-507-3556 for free system scan. Article source
  8. I'm watching video streamed via vzaar.com (uploaded by futurelearn.com) I'm able to see the transcripts in the below format which plays fine with video in web browser 0:01 (Skip to 0 minutes and 1 second) Neural Networks are a class of models which draw their inspiration from neurobiology. These Neural Nets are arranged in a way which is somewhat analogous to how real neurons are connected. Just as real neurons fire after reaching a certain activation threshold, the individual nodes of a neural net each represent an activation function triggered by a certain level of input. 0:26 (Skip to 0 minutes and 26 seconds) The seminal paper on neural networks was published in 1943. In this paper "A logical calculus of the ideas immanent in nervous activity" Warren S. McCulloch and Walter Pitts attempted to map the logic of neural pathways. Research on Neural Nets was dormant for much of time since their inception but there has been a dramatic resurgence particularly in the last decade. This has been due to both emerging big data sets, as well as increased processing capacity which has made it feasible to train these deeper network architectures and demonstrate the impressive potential that neural networks can achieve. A neural network is arranged in layers. The first layer contains the input vector, one node for each input variable in the model. 1:20 (Skip to 1 minute and 20 seconds) Then come one or more hidden layers, which can each have any specified number of hidden nodes. The final layer is the output layer, .... NOW I'm able to download the video I"m able to find the transcript in the above format as text question: what file extension, I should save the transcript , so that when I play the downloaded video offline, the transcript works (the transcript format is different, so .srt doesn't work)
  9. Internet Connection Speed Tests With HTML5 The article compares the speed test results of several HTML5-based (read plugin-free) Internet Connection Speed tests. It makes sense at time to check the connection speed of an Internet connection. Maybe you just got a new line, upgraded an existing one, or are traveling. Maybe it is just for making sure that you get the advertised connection speed, or making sure that the hotel's Internet connection is sufficient for pushing that Gigabyte video to YouTube or a company server. Most Internet speed tests up until now used Adobe Flash to power the tests. While that worked, it required Adobe Flash to work at all. The rise of HTML5 brought along with it services that either added a HTML5 version on top of the existing version, or created new solutions based purely on HTML5. HTML5 Internet Connection Speed tests The following guide lists some of the services that provide you with plugin-free speed tests using HTML5. All tests conducted on an idle machine with 50 Mbps down, 10 Mbps up. Bandwidth Place The service tests the upload and download speed, and the ping. The download speed measured was the lowest in the test with 45.12 Mbps. Upload speed was measured at 9.10 Mbps which was also fairly low. The service allows you to change servers for the test, but result remained the same or were even worse. The site displays quite a few ads around the content area. Fast Netflix's Fast.com is the simplest speed test that we have tested for this article. You open it, it starts testing the download speed right away and displays only it in the interface. It does not display distracting ads on the page, but links to Speedtest.net and Netflix. The speed was significantly lower than what the line is capable of (46Mbps measured). Open Speed Test The service tests the download and upload speed of the Internet connection, and measures the ping while the test is running. The highest upload and download speed is displayed in the interface afterwards. Options to switch locations are not provided. The interface is quite messy with lots of ads displayed near the main content area. Results were fairly accurate. Not as good as Speedof.me, but close enough. Speedtest Beta Speedtest by Ookla is one of the most popular Internet connection speed tests. The beta version of the HTML5 version of the service is currently available as an alternative to the Flash-based speed test. The test checks the latency, upload and download bandwidth. Results were a bit lower on the test device with the download reaching only 47.xx Mbps and the upload only 9.xx Mbps. You may change the host however either by selecting one of the available hosts from the list or by using search to find another host that is not necessarily in the vicinity. Settings are provided to change metrics from miles and Mbps to Kilometers and Kbps. The interface of the speed test is quite messy as well, with loads and loads of ads displayed around the tiny (in comparison) content area. Speedof.me The Speedof.me site is only available as a HTML5 version. It tests the latency of the connection as well as upload and download speed using different file sizes. The site looks somewhat messy with the large ads listed on the left and right of the actual content. The test picks a server closest to your physical location, and updates the data as the test runs. Results were accurate with upload and download speed correctly maxed out on the test connection. There is no option however to switch servers. Results may be downloaded as images, PDF or CSV files. Closing Words Speedof.me came closest to the actual speed of the Internet connection. While it lacks options to change servers, it was the most accurate HTML5 Internet speed testing service. Your mileage may vary depending on your location in the world though. Now You: Do you test your Internet connection speed? Source
  10. Flash is one of the most abused pieces of software in use. Flexera Software's Vulnerability Review 2016 counts 457 vulnerabilities in 2014 and 2015 (second only to Chrome with 516 vulnerabilities). But Flash is the attacker's tool of choice. For example, as recently as late May 2016 Malwarebytes reported on a malvertising campaign exploiting Flash and redirecting users to the Angler exploit kit. Such abuse is behind current browser campaigns to deprecate the use of Flash while browsing. In April 2016 Microsoft announced that Flash content not central to the page itself (such as games) would be automatically paused in Windows 10 (Edge browser). The intent is to spur the adoption of HTML5 for animated content. In May 2016 Google announced that it would deprecate Flash and promote HTML5 within Chrome by the end of this year. Such actions are likely to fuel a move from Flash to HTML5 for the display of web-delivered advertising. This, however, will have little effect on preventing malvertising. A recent report from GeoEdge, an ad scanning vendor, compares the two options. This report suggests that there are technical advantages and disadvantages in both. For example, Flash can provide better clarity with its sub-pixel support, but doesn't automatically scale to the window size as does HTML5. Flash requires greater processing power, but HTML5 adverts come in at a larger size (approximately 100kb bigger). In terms of general security, new security vulnerabilities are regularly discovered in Flash, something that is not the case with HTML5. Nevertheless, GeoEdge makes it very clear that HTML5 will not prevent malvertising. This has nothing to do with HTML5 per se, but is down to the nature of the adverts themselves. The primary root of malvertising lies with the advertising standards (VAST and VPAID) developed in 2012. As the Internet Advertising Bureau wrote at the time, "The significance is that advertisers using VPAID ads can provide rich ad experiences for viewers and collect ad playback and interaction details that are just as rich as the ad experience." This ability for interaction between the user and the advertiser applies to both Flash and HTML5 adverts. "Since these standards allow advertisers to receive data about the user," writes GeoEdge, "they allow for third-party codes to be inserted inside the ad. Once a third-party code is allowed, there is an open door for bad actors to perpetrate malicious activities, i.e. insert malicious code." Since, says the report, JavaScript is the base language for HTML5, "malicious code can be packaged in HTLM5 without much difficulty." Within the last few days, researchers have discovered a ransomware strain, called RAA, entirely written in JavaScript. In theory, a future HTML5 malvertising campaign would be able to deliver ransomware directly to the user via HTML5. "JavaScript is a general purpose programming language," comments Simon Crosby, CTO at Bromium. "Once one hacker has figured out how to use it to write crypto-malware, any other hacker can simply read the source code and use it elsewhere. So I expect to see rapid re-use and many variants of this attack." The only way to prevent such breaches, he suggests, "is to use an endpoint isolation technology like micro-virtualization that hardware isolates each tab of the browser from the OS - so that crypto-malware cannot impact the endpoint." But there is no easy third-party solution to the malvertizing problem. Changing to HTML5 doesn't help, and could make things worse. The only solution, suggests F-Secure, is for the ad industry itself to take responsibility. "Ad serving platforms should implement better security measures themselves," F-Secure's Andrew Patel told SecurityWeek. "Incoming ads should be vetted before they are served to the greater community. This can be achieved by passing them through solutions that catch malware and exploit kits. Even if this requires a sandbox approach, it is completely doable." But there is yet another issue to consider. A 2015 study by the Simon Fraser University on the use of AdBlock Plus suggested blocking animated adverts can provide a 25% reduction in bytes downloaded. Where companies allow staff browsing on the corporate network, this can result in a considerable non-business bandwidth cost. However, this cost will only increase with a switch to larger HTML5 adverts. Article source
  11. A few days ago, Oracle announced on their blog that they plan to kill the Java browser plugin in their next major version of JDK, scheduled for release in Q1 2017. What does this mean? Should we worry about our browsing experience? This really just means that it won’t be possible to run Java applets in the browser anymore. The infamous “applet” is a technology that was developed by Sun Microsystems in the 90’s and went on to be acquired by Oracle. This technology was still popular in many exploit kits over the last two years but in the last year alone we saw a sudden shift where kits removed Java support in favor of embedding more Adobe Flash exploits and direct browser exploits. So, for an average user, the impact of this sudden passing will be pretty minimal. Most average users might not realize that the majority of web browsers have already done away with support for the API needed to run the Java plugin. For business users that still need to run Java in the browser, Oracle is advising that you move to a plugin-free technology like java Web Start. Note, the existing applets will not only need to be switched but it will require new porting. From the security perspective, we wholeheartedly welcome the decision. As we stated before, despite seeing less attacks targeting this particular component, it is still better to reduce the web browser attack surface that is exposed publicly on Internet. In fact, in a perfect world, the decision to squash Java should have come much sooner. Now that HTML5 is mature enough, developers can provide rich applications without using third-party plugins like Java. It is pretty obvious to follow this trend and assume that Adobe Flash is next on the chopping block. Some would say, and rightly so, that this decline in third-party API reliance is closely linked with the growing usage of smartphones that natively do not support them. Some skeptics may wonder if HTML5 is mature enough to provide a real and practical user experience. In fact, HTML5 is not enough by itself to replace these plugins. But, coupled with CSS3 and JavaScript, developers can now achieve what was impossible even just some months ago. Thanks to enhancements of the JavaScript engine embedded in our web browsers, web pages are even more dynamic and fast to load than ever before. We now experience the web with animations, moving canvases, and even mobile haptic feedback. All these new APIs are opened and distributed by the W3C, web browser software providers can then develop new features based on their recommendations. This means they have end to end control of the implementation of these features. Even if a vulnerability is found they can push a hot fix within a couple of hours or days. From a security point of view, end-users will be safer as they will not have to deal with cumbersome manual updates any longer. -= FortiGuard Lion Team =- The Source
  12. Edge was Microsoft's chance at reinventing itself in the browser space and showing that it could still compete with Google and Mozilla by churning out a formidable browser. While Edge's feature set continues to lag behind its rivals', Microsoft is certainly intent on making that happen, with frequent updates and feature improvements. Today, Microsoft is bringing the first platform update to the rendering engine powering Microsoft's new browser. Called EdgeHTML 13, this update has been under testing by Insiders for months already but, following the 'November Update' to Windows 10, it is now making its way to the masses. One of the biggest improvements to come from the new rendering engine is better support for standards; compared to when Windows 10 was released, Microsoft has managed an impressive increase of 56 points on the HTML5 test, all within a matter of months. The current score, 458, is also a far cry from where Internet Explorer 11 stands (336). Along with snappier performance, the update also brings major enhancements to Chakra, the JavaScript engine. Standing tall with the highest score in the Kangax ES6 compatibility table, the revamped Chakra engine brings with it many new features, such as default support for asm.js, async functions and much, much more. Alongside these developer-focused features, of course, are also consumer-facing ones, such as Tab Previews and an improved UI, all of which we have reported earlier. While still not the best browser in the business, Edge does seem to be on its way to realising Microsoft's dream of reasserting itself in the browser space, not just in terms of market share but also features and performance. Source: Microsoft Article source
  13. Vivaldi's most recent snapshot, which brings the version of the web browser to 1.0.300.5, brings improvements to the browser's audio and video playback capabilities. After a series of bug fix releases, Vivaldi has pushed out a new update for the browser that extends the browser's media streaming functionality significantly. The developers have added support for HTML5 MP4 video (H.264, MPEG-4AVC & AAC), and MP3 Audio which, according to the company, should improve compatibility with many multimedia sites on the Internet. A quick check on YouTube's HTML5 page for instance reveals that Vivaldi passes all tests on the page which means that it is fully capable of playing all HTML5 videos currently available on the site. YouTube is obviously just one site that benefits from Vivaldi's new media capabilities. Basically, if a site did not work previously because of missing HMTL5 video or audio capabilities, chance is quite good that it will work now without issues. I have tested the new capabilities on YouTube, Dailymotion, Vimeo and Twitch, and content on all sites played fine after the upgrade. Let us know if sites that you visit regularly work as well now in the latest version of the Vivaldi browser. Windows and Mac users can make use of the new capabilities right away while Linux users are asked to install the chromium-codecs-ffmpeg-extra which is required to add the same capabilities to machines running supported flavors of Linux. You may download the latest Vivaldi snapshot from the official website as well if you don't run it already. Users who have it installed may use the browser's update functionality to download and install the update this way. You find the option under Vivaldi > Help > Check for Updates. Vivaldi continues to improve the browser; barely a month goes without at least one feature update for the browser. The browser has still not been released as a stable version but it is expected to be released soon. If I had to guess, I'd say that it is likely that Vivaldi will release a stable version of the web browser this year. Vivaldi Blog Article source
  14. Microsoft continues its work on the Edge browser that it shipped with Windows 10 in the latest Insider build 10547 released to the Fast Ring a while ago. One new feature that is found in the version of Microsoft Edge that shipped with that new Windows 10 Build is support for VP9. Support for the VP9 is not enabled by default but can be enabled by users of the browser. This is done in the following way: Load about:flags in Microsoft's Edge address bar and hit enter. Scroll down on the page that opens until you find the Media Source Extensions group and there the Enable VP9 preference. Check the box and restart Microsoft Edge afterwards. One of the easier ways to check that everything went smoothly is to open YouTube's HTML5 Video Player page. The MSE & WebM VP9 entry on that page should show as supported. Note that WebM VP8 is not supported by Microsoft Edge and will show as unsupported because of this. Enabling VP9 in Microsoft Edge improves streaming support of the browser. While most streaming services support both VP9 and H.264, support for both formats may be beneficial in a number of ways. When compared to H.264, VP9 saves a lot of bandwidth which comes at the cost of processing power. This means that generally speaking, it is beneficial to users who work on old hardware to use H.264 instead of VP9 as it may improve overall performance, while VP9 is usually the better choice on modern systems. This does not take H.265 into account which offers similar benefits but is not (yet) supported by most streaming sites on the Internet. It is unclear why Microsoft has not enabled VP9 supported directly in Microsoft Edge but the most likely explanation is that the feature may not be fully ready for prime time yet. Windows 10 Insiders who enable the feature are encouraged to report their experience to Microsoft using the Feedback app that is integrated in the operating system. You may remove support for VP9 at any time by removing the checkmark next to Enable VP9 on the browser's about:flags page and restarting it afterwards. The feature is currently only available on the Insider channel. Microsoft has not commented on availability in stable builds of the web browser. Source
  15. HTML5 has been billed as the natural, standards-based successor to proprietary plug-ins such as Adobe's Flash Player for providing rich multimedia services on the Web. But when it comes to security, one of Flash's major weaknesses, HTML5 is no panacea. In fact, HTML5 has security issues of its own. Julien Bellanger, CEO of application security monitoring firm Prevoty, says HTML5 makes security more complex, not simpler. HTML5 security has been a question mark for years, and it has not improved over the stretch, he says. Among the risks that HTML5 brings, according to Bellanger: Canvas image-rendering exploits, which can cause buffer overflows that a hacker could then use to inject code into the sessionCross-site scripting, where intruders can steal information from a session in the browserSQL injection, where a malicious query is used to extract information from a database in the browserCross-site request forgeries, where a user token is taken over to impersonate a user on the WebThe use of HTML5 also exposes more of what's on the computer or mobile device, such as local storage and device location, says Dan Cornell, CTO of cyber security consultancy Denim Group. "Because HTML5 applications can access these facilities, there is an opportunity for abuse," he says. Browsers are "inherently insecure""The problem we have is that browsers are inherently insecure," says Kevin Johnson, CEO at IT security consulting firm Secure Ideas. For example, HTML5 offers no secure sandboxing protection, such as what Flash can have in the Chrome browser, he notes. "Another issue we have that we are adding significant complexity to HTML5 without adding the same level of control to the user," Johnson says. At least with Flash, users can turn it off. But they can't turn off HTML. HTML5 still holds security promiseDespite the gloomy outlook, HTML5 offers hope for better security -- if the browser makers do the right thing, says Denim Group's Cornell. "Browser vendors need to look at how they plan to build their HTML5 support and design security into their implementations from the start," he says. "Many of the new capabilities introduced with HTML5 allow applications access to sensitive facilities, so care needs to be taken." Johnson adds that browser vendors should give users the ability to turn off the functionality that they do not want or do not trust. The number of browsers in use also brings some security, because vulnerabilities in one browser may not exist in other browsers, Cornell says. That reduces the risk of a vulnerability being universally exploited, as in the case of Flash. Browser makers are also working to improve security overall, says Richard Barnes, the Firefox security lead at Mozilla. Competition among Google, Microsoft, Mozilla, and Apple means their reputations are on the line if they have security issues, so all the major browser makers have strong security teams in place, he notes. There's also work happening across the browser industry to improve security for all, Barnes says. For example, a universal encryption method is under development, and browser makers are giving users more awareness of and control over what the Web knows about them, he says. Help from a standards body is on the way as well. The World Wide Web Consortium, which has overseen the development of HTML5, has its Content Security Policy specification proposal, which W3C Domain Lead Wendy Seltzer says offers a policy language for Web authors to restrict active content on their sites, protecting against script injections. There's also the Secure Content specification effort to ensure that powerful Web features only operate in secure, authenticated contexts. Ultimately, however, apps need to assure security, whether they run in a browser or in an OS. Prevoty's Bellanger recommends that developers adopt Microsoft's secure development lifecycle guidance to strengthen applications against breaches. "It's still the developer's responsibility to build the application as securely as possible,” he says. Source
  16. rach

    NetBeans IDE 8.0

    Screenshots: Links : Release Notes Homepage Download Page Download Page for Java SE
  17. software182

    Opus Creator 9.01

    Opus Creator 9.01 | 173.34 MB Opus Creator is a WYSiWYG editor for designing HTML5 websites, interactive multimedia, educational resources, flexible Flash, games, quizzes, presentations, animations and other multimedia with no programming. HTML5 is supported by Android, iPhone as well as Windows and Linux. Get the features you loved in Flash but publish to systems which no longer support it. Opus Creator offers quick and easy design and development of HTML5, Flash, interactive multimedia and presentations. Opus Creator is the cost-effective way to get started with multimedia authoring and web design. For the writer, designer, artist, or photographer it’s the intuitive, freeform way to design and distribute creative projects or promotional showcases. Runs under Windows – output to HTML5 (for iPad, iPhone, Android, Linux, Mac and Windows), Flash, CD, Windows EXE, video or DVD; and distribute freely for pleasure or profit. Creative Multimedia Ideal for… • HTML5 Web Design • Flash • Animations and Banners • Quizzes and Tests • Digital Studies • Rich Media Presentations • Digital Signage • Whiteboard Resources • Kid’s Stuff • Special Needs Therapies • YouTube Animations • Interactive Storybooks • Multimedia Scrapbooks • Online Karaoke Suitable for… • Graphic Designers • Web Designers • Small Businesses • Secondary Schools • Teachers • Marketing Professionals • Photographers • Interactive brochures • Creative Writers • Presentations • Hobbyists • Whiteboard Resources OS : Windows XP/Vista/Windows 7/8 (32&64) Language : English Home Page - http://www.digitalworkshop.com/ DOWNLOAD HERE http://www.tusfiles.net/0dj97bp9obsg
  18. rach

    NetBeans IDE 7.4

    Screenshots: Links : Release Notes Homepage Download Page
×