Jean-Baptiste Aviat aviat

## chapter2.go
// From The Web Application Hacker's Handbook edition #2
// Build: go build chapter2.go
// Usage: ./chapter2 your_input_string

// 5. An input validation mechanism designed to block cross-site scripting
// attacks performs the following sequence of steps on an item of input:
// 1. Strip any <script> expressions that appear.
// 2. Truncate the input to 50 characters.
// 3. Remove any quotation marks within the input.
// 4. URL-decode the input.

## webhook.py
import boto3

# https://docs.aws.amazon.com/firehose/latest/dev/writing-with-sdk.html
# https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/firehose.html#Firehose.Client.put_record
# https://docs.aws.amazon.com/lambda/latest/dg/services-alb.html

import base64
from collections import namedtuple
import hashlib
import hmac

## anonymize.py
"""
Python 3 script to anonymize a JSON file, keys and data. Conserve structure. Conserve the
shape of URLs found in strings, anonymizing host, path, params, query and
fragment.

Run without argument to test:

    $ python3 anonymize_json.py
    Usage: anonymize_json.py path/to/json
    running tests...

## wrapper.c
const static char wrapper_template_func[] =
        "$args = \\sqreen\\internal\\func_get_args(); "
        "try { "
            "\\sqreen\\internal\\userland_pre_cbs(...$args); "
            "$ret = " FUNC_PREFIX "%s(...$args); "
            "$GLOBALS['" RETVAL_GLOBAL "'] = $ret; "
            "\\sqreen\\internal\\userland_post_cbs(...$args); "
            "unset($GLOBALS['" RETVAL_GLOBAL "']); "
            "return $ret; "
        "} catch (" EXCEPTION_TOP_CLASS " $e) { "

## file.php
<?php

file_get_contents("/etc/services");

?>

## sqreen_php_trampoline.c
    res = run_cbs(pre, cbs, &cctx TSRMLS_CC);
    if (res) {
        mlog(sq_log_debug, "'pre' cbs failed");
    }

    original_handler(INTERNAL_FUNCTION_PARAM_PASSTHRU);

    if (res) {
        mlog_g(sq_log_debug, "Not running fail/post since pre failed");
        return;

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                aviat
                / keybase.md
            
            
              Created
              February 12, 2018 08:36
            
          
      View keybase.md
  
      
    Keybase proof
I hereby claim:

I am aviat on github.
I am jbaviat (https://keybase.io/jbaviat) on keybase.
I have a public key ASAJVHccjt0XbvvcXqwyU6Zw0wqCAziOwHcjC3wUfrB62go

To claim this, I am signing this object:

  
## disas.rb
puts RubyVM::InstructionSequence.compile("def foo x
  _y = x
end", nil, nil, 0, trace_instruction: true, operands_unification: false).disasm

## curl.sh
$ curl -I https://www.sqreen.io
[...]
Public-Key-Pins: pin-sha256="awYK8l132IuZAlK7vhJOr38+fe9GPYbIXXtmWt95sQg="; pin-sha256="LaOgioxWo+JofV5Ggr1I2N1wEbLmUlZiK7IWZRvHT6Q="; max-age=10000
[...]
	// From The Web Application Hacker's Handbook edition #2
	// Build: go build chapter2.go
	// Usage: ./chapter2 your_input_string

	// 5. An input validation mechanism designed to block cross-site scripting
	// attacks performs the following sequence of steps on an item of input:
	// 1. Strip any <script> expressions that appear.
	// 2. Truncate the input to 50 characters.
	// 3. Remove any quotation marks within the input.
	// 4. URL-decode the input.
	import boto3

	# https://docs.aws.amazon.com/firehose/latest/dev/writing-with-sdk.html
	# https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/firehose.html#Firehose.Client.put_record
	# https://docs.aws.amazon.com/lambda/latest/dg/services-alb.html

	import base64
	from collections import namedtuple
	import hashlib
	import hmac
	"""
	Python 3 script to anonymize a JSON file, keys and data. Conserve structure. Conserve the
	shape of URLs found in strings, anonymizing host, path, params, query and
	fragment.

	Run without argument to test:

	$ python3 anonymize_json.py
	Usage: anonymize_json.py path/to/json
	running tests...
	const static char wrapper_template_func[] =
	"$args = \\sqreen\\internal\\func_get_args(); "
	"try { "
	"\\sqreen\\internal\\userland_pre_cbs(...$args); "
	"$ret = " FUNC_PREFIX "%s(...$args); "
	"$GLOBALS['" RETVAL_GLOBAL "'] = $ret; "
	"\\sqreen\\internal\\userland_post_cbs(...$args); "
	"unset($GLOBALS['" RETVAL_GLOBAL "']); "
	"return $ret; "
	"} catch (" EXCEPTION_TOP_CLASS " $e) { "
	res = run_cbs(pre, cbs, &cctx TSRMLS_CC);
	if (res) {
	mlog(sq_log_debug, "'pre' cbs failed");
	}

	original_handler(INTERNAL_FUNCTION_PARAM_PASSTHRU);

	if (res) {
	mlog_g(sq_log_debug, "Not running fail/post since pre failed");
	return;
	puts RubyVM::InstructionSequence.compile("def foo x
	_y = x
	end", nil, nil, 0, trace_instruction: true, operands_unification: false).disasm
	$ curl -I https://www.sqreen.io
	[...]
	Public-Key-Pins: pin-sha256="awYK8l132IuZAlK7vhJOr38+fe9GPYbIXXtmWt95sQg="; pin-sha256="LaOgioxWo+JofV5Ggr1I2N1wEbLmUlZiK7IWZRvHT6Q="; max-age=10000
	[...]