crazylazy.info

Modern GUIs need Drag and Drop

The following is an example for a drag & drop action with PyQt4. It uses paramiko for SSH interactions. I'm well aware that it won't work on Windows that way. But that's a Windows problem. I'm also well aware that there's a password in this file. Give it a try.
The source is at GitHub. The indention seems to be broken there. But that's a GitHub problem. It seems to be broken here, too. But that's a Drupal problem. ;). Actually it isn't even a problem.

Just the imports. The os module is necessary if you want paramiko to use your private ssh-key. The sys module is needed due argv:

Reach the registers

A collection of tutorials, videos and fun

I think it's an amazing site. There're many video tutorial sites these days. However the quality differs a lot. In the following I listed stuff I like so far. Feel invited to watch everything:

Programming

Python programming course from MIT - the advanced stuff may be of some interest, however it starts of with fairly trivial and introductorily mentioned stuff.

Apple developers left doors open. Threats come out.

About the idea

Currently I'm doing some research on vulnerability discovery techniques, speaking of black-boxing, white-boxing and yes... gray boxing, too. These are general code-review techniques for source-code auditing, automated function-auditing and formal software verification.

Abstract

The following tutorial builds on the basics which are documented in the first part. For vulnerability discovery, debugging and fuzzing are essential. Furthermore the proper knowledge of memory management, assembly instructions and Python will still be needed. You cannot just scratch the surface while trying to explore these techniques. I wrote this tutorial to inspire people, or to help people coping with Windows and its restrictions. But most people in the fields will laugh at this and call it primitive. It is.

A brief reversing tutorial

I recently came across the problem, that I needed to collect strategically important information according to the Heap while executing the application. On Windows there're certain restrictions: tool-suites like Valgrind with croncile-recorder didn't seem to exist at first. Sysinternals' VMMap by Russinovich and Cogswell are much too basic in their functionality. But there's IDA, there's Pedram's Paimei... and there's Grenier's Byakugan in the Metasploit projects. And much more ;). In the following I'm just referring to Paimei, because I still have to sort some things out with WinDBG. It's an ugly monster that I need to tame actually.

At PyCon 2009 this was presented two weeks ago. Sounds kind of interesting. More here.