Articles et outils à propos de Python, Sécurité Informatique, etc.

ExeFilter vs. the Escape from PDF (CVE-2010-1240)

On the 29 March 2010, Didier Stevens revealed in his blog that he found a way to launch an executable file stored in a PDF document, without using any JavaScript or buffer overflow. This short article shows how ExeFilter can be used to sanitize such PDF files to block this type of attack.

SSTIC10 - Visualisation et Analyse de Risque Dynamique pour la Cyber-Défense

Article à propos de la visualisation et l'analyse de risque dynamique en cyber-défense, présenté au symposium SSTIC le 9 juin 2010.

Python crash course

This is a Python course I have written to quickly teach Python to my colleagues and students, made of slides and samples for hands-on exercises.

Using ExeFilter against PDF exploits and zero-days such as CVE-2009-4324

This short article shows how ExeFilter can be used to disable JavaScript in PDF files, which is effective against many Adobe Reader exploits discovered in 2009, including the recent zero-day CVE-2009-4324.

How to create X509 certificates for testing

This page provides a few methods to create X509 certificates for testing purposes.

How to install Ruby 1.8.6 and Ruby-GTK2 on Windows

I had to search quite a bit to find the easiest way to install Ruby and ruby-gtk2 on Windows. Here's what I found so far:

How to run Ruby code from Python (Python-Ruby bridge)

There are several solutions if you need to run Ruby code from Python. It may be useful when you find an interesting Ruby module which has no equivalent in Python.

A mini Python tutorial

Here is a mini Python tutorial, for people who want to quickly learn Python basics. It also provides links to more detailed documentation. Since January 2010, a more complete Python crash course is also available, with slides and samples.

OpenOffice / OpenDocument and MS Office 2007 / Open XML security

Article and presentation about security issues in OpenDocument and Open XML formats (OpenOffice and MS Office 2007) - published in the Journal of Computer Virology in Oct 2007 and presented at the PacSec 2006 conference.

BlindFTP - transfert de fichier pour diode réseau

BlindFTP est un outil simple et portable qui permet de transférer des fichiers à travers une liaison réseau unidirectionnelle (sans acquittement), par exemple une diode réseau optique.

Syndiquer le contenu