Skip to content

Month: May 2022

Notes on Finding Evasive Bugs (by James Kettle)

Highly recommend security researchers to watch this. The talk focuses more toward improving your methodology and mindset:

  1. Don’t look for defences; Start with the attacks first.
  2. Look for unfashionable flaws.
  3. Your understanding of a vulnerability concept may be corrupted. Don’t reply on internet searches to learn. Learn from the original sources.
  4. Recognise the fear from the new or unknown (Technique sounds cool but…)
  5. Recognise that you might think that something is an implausible idea. Don’t just try something and then give out if it does not work. Instead do this: Explain why the idea will not work unless condition X exists. Try the obvious to make sure that it is obviously secured.
  6. Invisible Chainlinks give you advantages. They can be related to a particular context, application specific knowledge, inconvenient. For example, param miner works well if you have the application specific knowledge.

Automation

  • Use automation to scan for clues about the application.
  • Scan to learn
    • Test Hypothesis
    • Ask question and iterate
  • When enumerating, focus on specific things rather than broad information to reduce noise.
    • Make asking questions cheap.
    • Develop your own framework.

Using snap in Kali Linux to install tools

Snap is a nice tool manager to install tools such as IDEs quickly without hassle.

https://snapcraft.io/

Installing snap in Kali

Run these command to install snap.

$ sudo apt update
$ sudo apt install snapd
$ systemctl enable --now snapd apparmor

If you encountered below error, this is because snapd.service is not started yet.

snap install hello-world
error: cannot communicate with server: Post "http://localhost/v2/snaps/hello-world": dial unix /run/snapd.socket: connect: no such file or directory

Run the following command and you should be able to see the version

$ systemctl enable --now snapd apparmor
$ snap version                                                                                                                                                                        127 ⨯
snap    2.55.5
snapd   2.55.5
series  16
kali    2021.1
kernel  5.10.0-kali3-amd64

Installing and Running Pycharm

According to https://www.jetbrains.com/pycharm/download/#section=linux, we can install pycharm in Kali Linux using snap.

$ sudo snap install pycharm-community --classic

To run Pycharm, simply use snap run:

snap run pycharm-community

References

  • https://snapcraft.io/docs/installing-snap-on-kali