If you’re a software developer, you’re likely using Git on everyday basis. It’s a very useful tool that hardly anyone learns to use properly. I’d say it’s a little bit like with driving cars: we learn for a moment, pass an exam, then we don’t do anything to boost our skills. Sure, with time we […]
Black Sheep Suspends
I hoped it wouldn’t happen, but looking back at last few months I must say I can’t meet the goals I’ve set for myself. I don’t have time to learn new things, last few posts have either been publishing materials I prepared earlier for a different occasion, or things that didn’t require much effort. This […]
Metasploitable Walk-through 1 – Reconnaissance
Welcome to the new series, which is going to be a tutorial-like walk-through of a popular metasploitable project. The main reason is that for some time I’ve been lacking ideas about how to learn and I decided to do something systematic, even if simple. For some time I was loosing interest in the topic, I […]
HackPy Part 4 – pcap files analysis with scapy
We’re slowly heading towards the end of our HackPy series. This time you’re going to learn a bit different way of sniffing – using scapy for offline pcap file analysis. It’s been a kind of a break for me since I was releasing materials prepared long before even I even started this blog. To be […]
HackPy Part 3. – Wireshark
Reinventing the low-level network tools would never be complete without famous Wireshark and I’m going to fill this gap today. How to perform network analysis with scapy? Before we begin, I’d like to remind you that you can sign up to the newsletter to get info about latest post and support me on Patreon. The […]
HackPy Part 2. – Nmap scanning
In the last post I showed you how to reproduce traceroute’s behavior. Today I’ll show how to do the same with another famous tool – Nmap and specifically its half-open port scanning using Python with Scapy library. This has some great benefits because apart from learning something and having fun, you can extend the desired […]
HackPy Part 1. – Traceroute
Hi. Welcome to the first post in the series, where I am going to show you the capabilities of Python in terms of building your own tools. I have showed those examples on two meetups, but I feel they are worth sharing here for those of you who did not have an opportunity to see […]
Writing Python Modules in C with an Example
Or how Python C module can boost your code Python is quite a powerful language, however, it has its limitations like GIL. On the other hand this flexibility lets you go around a lot of those limitations with some nice hacks. Today I’ll show you how to write your own Python C module. As always, […]
Asynchronous Message Queue in Golang
I have recently written an article about how to use Celery in Django projects. Celery is a message queue in Python. I though “OK, cool, now let’s take a look at how it can be implemented from scratch”. Concept of Message Queue The project has 3 parts: Client, which is sending tasks, Broker, which is […]
NodeJS Deserialization
This is a Pentester Academy challenge writeup. It required to exploit a CVE-2017-5941 vulnerability in NodeJS server application during deserialization to trigger an RCE. Warning this is a writeup so it contains spoilers. I am changing it a little bit in order to save you from revealing everything. Application Server consisted of two endpoints: / […]