JxTx

I helped a colleague build a docker container that during the docker build phase would just produce a file, as there is no need for a full on image. To do this, we need a multi image container FROM --platform=linux/aarch64 debian as builder #<do things> FROM scratch as artifact COPY --from=builder /full/path/to/file/to/copy /path/on/host And then you can build it like so. docker build --target artifact --output type=local,dest=. . You then get a file from the build process on your host.

I don't really use much Ghidra in my day job, I tend to use a compination of IDA and Binary Ninja. My experience with Ghidra has been limited to CTF's. I did pick up some tips and tricks when using Ghidra, and I feel like I should document that somewhere. Custom Highlight When looking at the decompiler and you select a value, it does not make it overly clear if the value its used elsewhere.

Recently I found out that you can have multiple images in a Dockerfile. I found this really helpful for fuzzing, where I could build the harness in one docker image, and then copy only the harness to the AFL++ image. Here is a bit of a bare bone extract of my Dockerfile. FROM --platform=linux/aarch64 debian AS builder # rest of the builder stuff FROM --platform=linux/aarch64 aflplusplus/aflplusplus:latest COPY --from=builder /build/harness /src/ COPY --from=builder /build/other_stuff_for_fuzzing /src/ This is useful, when we only care about the last stage.

I really want to be fuzzing more in general. Towards the end of last year I decided to play a bit with libfuzzer. Here is my quick test from the tutorial. The command wget https://github.com/google/fuzzing/raw/master/tutorial/libFuzzer/fuzz_me.cc /opt/homebrew/Cellar/llvm/17.0.6/bin/clang++ -g -fsanitize=address,fuzzer fuzz_me.cc ./a.out The output --2023-12-21 16:13:34-- https://github.com/google/fuzzing/raw/master/tutorial/libFuzzer/fuzz_me.cc Resolving github.com (github.com)... 140.82.121.3 Connecting to github.com (github.com)|140.82.121.3|:443... connected. HTTP request sent, awaiting response... 302 Found Location: https://raw.githubusercontent.com/google/fuzzing/master/tutorial/libFuzzer/fuzz_me.cc [following] --2023-12-21 16:13:35-- https://raw.githubusercontent.com/google/fuzzing/master/tutorial/libFuzzer/fuzz_me.cc Resolving raw.githubusercontent.com (raw.

Denote is my new note taking system and I really wanted to add the phrack articles to denote so I can search and index them. At time of writing there are 70 articles, and you can download the archives for each one here. But I wanted to automate the whole process, and do it with Emacs lisp. Downloading and extracting the articles This could be done with wget brace expansion and tar like so:

I love writing in org-mode It's much better than traditional markdown, however most markdown editors have the ability to render your text so you can preview it before. I argue that a good theme in Emacs allows for this, but none the less, I started looking into a way to render a folder with a bunch of org-mode files in it. Hugo This blog's content is written in org-mode and then using ox-hugo converted to markdown.

I first heard of Haggus in 2022 when a friend showed them to me and from there I've been hooked on mincecore ever since, specifically the project Haggus. Earlier this year I made it to Obscene Extreme 24, and Haggus played. My favourite album of theirs is Straight From The Slaughterhaus, that's not to say their other material is not good (because it is), I just really like this album.

My background is in penetration testing and system/network administration. About a year ago I decided that penetration testing was not what it once was, and moved into vulnerability research, specifically researching all things Apple. Researching Apple devices I quickly came across the term PAC, and struggled to get my head around it. So because it seems like black magic voodoo I'm going to share and write up some notes on it.

I went to upgrade my home Gitlab server with sudo apt update && sudo apt upgrade -y and was met with the following error. Preparing to unpack .../gitlab-ce_16.6.0-ce.0_armhf.deb ... gitlab preinstall: It seems you are upgrading from 16.2 to 16.6. gitlab preinstall: It is required to upgrade to the latest 16.3.x version first before proceeding. gitlab preinstall: Please follow the upgrade documentation at https://docs.gitlab.com/ee/update/index.html#upgrade-paths dpkg: error processing archive /var/cache/apt/archives/gitlab-ce_16.6.0-ce.0_armhf.deb (--unpack): new gitlab-ce package pre-installation script subprocess returned error exit status 1 Errors were encountered while processing: /var/cache/apt/archives/gitlab-ce_16.

Its been a while since I last posted here, I've like most people been busy with work and life in general, and that's let a few things slide. One of those was my emacs configuration. Being put on bed rest for a few weeks while I recover from an operation, I thought I'd go through my configuration and see if I can tidy it up a bit, and maybe try out a few different packages.