Advertisement
joemccray

Source Code Analysis For Pentesters

Dec 30th, 2015
2,002
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. #######################################
  2. # Source Code Analysis For Pentesters #
  3. #######################################
  4.  
  5. The video from the previous version of the class:
  6. https://s3.amazonaws.com/StrategicSec-Videos/2015/2015-12-30+09.08+Source+Code+Analysis+For+Pentesters.mp4
  7.  
  8.  
  9. Day 1 Class video:
  10. https://s3.amazonaws.com/StrategicSec-Videos/2016/SourceCodeAnalysisForPentesters/2016-10-31+19.33+Source+Code+Analysis+For+Pentesters.mp4
  11.  
  12.  
  13. Download the course slides:
  14. https://s3.amazonaws.com/StrategicSec-Files/UltimateAppSec/UltimateAppSec-Week1.pptx
  15.  
  16.  
  17.  
  18.  
  19.  
  20.  
  21. Latin (romance language) C
  22.  
  23.  
  24. Spanish Italian French Portugese Romainian
  25.  
  26.  
  27.  
  28. C++ Java PHP Perl C#
  29.  
  30.  
  31. Syntax (the way you say things changes between the languages)
  32.  
  33.  
  34.  
  35. def salestax()
  36. x * .07
  37.  
  38.  
  39. def propertytax()
  40. x * .07
  41.  
  42.  
  43.  
  44. 1. Input validation
  45. Make sure the data coming in is EXACTLY what you want
  46.  
  47. 2. Output validation
  48. Make sure the data going is EXACTLY what you want
  49.  
  50. 3. Session validation
  51. Make sure who's running it is EXACTLY who you expect to be running it
  52.  
  53.  
  54.  
  55.  
  56. Homework:
  57. Python video tutorial series (43 videos):
  58. https://www.youtube.com/playlist?list=PLEA1FEF17E1E5C0DA
  59. Your task is to create a word document with screenshots that proves you have performed 25 of the videos in the playlist listed above. Submit the results via email in an MS Word document with (naming convention example: YourFirstName-YourLastName-Source-Code-Analysis-For-Pentesters-Python-Homework.docx)
  60.  
  61.  
  62. C Programming video tutorial series (58 videos):
  63. https://www.youtube.com/playlist?list=PL6gx4Cwl9DGAKIXv8Yr6nhGJ9Vlcjyymq
  64. Your task is to create a word document with screenshots that proves you have performed 25 of the videos in the playlist listed above. Submit the results via email in an MS Word document with (naming convention example: YourFirstName-YourLastName-Source-Code-Analysis-For-Pentesters-C-Homework.docx)
  65.  
  66.  
  67. Java Programming video tutorial series (87 videos):
  68. https://www.youtube.com/playlist?list=PLFE2CE09D83EE3E28
  69. Your task is to create a word document with screenshots that proves you have performed 25 of the videos in the playlist listed above. Submit the results via email in an MS Word document with (naming convention example: YourFirstName-YourLastName-Source-Code-Analysis-For-Pentesters-Java-Homework.docx)
  70.  
  71.  
  72.  
  73.  
  74. ---------------------------------------------------------------------------------------------------------------------------
  75.  
  76.  
  77. VMWare & Class Virtual Machine
  78. ------------------------------
  79. Download VMWare Player if you are not currently running a version of Vmware that is newer than VMWare Workstation 11, Vmware Fusion 7, or Vmware Player 11. VMWare Player is free and you download it from here:
  80. https://my.vmware.com/web/vmware/free#desktop_end_user_computing/vmware_workstation_player/12_0
  81.  
  82.  
  83.  
  84. Download the course virtual machines:
  85. -------------------------------------
  86. https://s3.amazonaws.com/StrategicSec-VMs/StrategicsecUbuntu14.zip
  87. username: strategicsec
  88. password: strategicsec
  89.  
  90.  
  91.  
  92. ###############################################################
  93. # Rough Auditing Tool for Security (RATS) #
  94. # https://code.google.com/p/rough-auditing-tool-for-security/ #
  95. ###############################################################
  96. cd ~/toolz
  97. mkdir rats
  98. cd rats
  99. wget https://rough-auditing-tool-for-security.googlecode.com/files/rats-2.4.tgz
  100. tar -zxvf rats-2.4.tgz
  101. cd rats-2.4
  102. ./configure && make
  103. sudo make install
  104.  
  105.  
  106.  
  107. rats -h
  108.  
  109.  
  110. # -i 'report functions that accept external input'
  111. # -l 'force the specified langauge to be used' (perl, ruby, python, c, php)
  112. # --context 'Display the line of code that caused the problem report'
  113. # --resultsonly 'No header, footer, or status information'
  114.  
  115.  
  116. wget --no-check-certificate https://dl.packetstormsecurity.net/UNIX/scanners/propecia.c
  117.  
  118. rats -i -l C --context propecia.c
  119.  
  120.  
  121.  
  122. cd /home/strategicsec/toolz/rats/rats-2.4
  123.  
  124. ls | grep xml
  125.  
  126. cat rats-c.xml | less
  127.  
  128.  
  129. rats -i -l C --db rats-c.xml --context propecia.c
  130.  
  131. rats -i -l C --context --resultsonly propecia.c
  132.  
  133. rats -i -l Python --context --resultsonly ../../MultiInjector.py
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement