Violent Python: Python in The Dark Side: Darkx Pycon - TW 2013
Violent Python: Python in The Dark Side: Darkx Pycon - TW 2013
darkx
PyCON.tw 2013
About
● a.k.a. xatier
● 平凡無奇的大學生
● 喜好自由軟體和資訊安全技術
● Python 只是輔助 (?)
工商服務
晚點 BoF 八號場地
強者我學長 Dr. Ken 大大
●
講題『 Mining Interest Topics from
Plurk by using Python 』
最常拿 Python 來 ...
We Love Python
● Easy to Learn
● Easy to Read
● Libraries
“This (Programming), of course, is the
fundamental hacking skill. If you don't know any
computer languages, I recommend starting with
Python. It is cleanly designed, well documented,
and relatively kind to beginners. Despite being a
good first language, it is not just a toy; it is very
powerful and flexible and well suited for large
projects. ”
● import itertools
Brute force
● http://pvanhoof.be/files/bruteforce.c
● import itertools
Z
APIs
● socket API 跟 C 用起來幾乎一模一樣
● ctypes 標準庫提供 C/dll/so 跨接的橋樑
● 物件、流程控制等可省下更多時間
Hacking Skype
● main.db
● 你想要的通通都在這邊 (?
● 聯絡人、聊天紀錄 ... 等
scapy
dpkt
Immunity Debugger
IDAPython
Lldb (llvm's debugger)
…...
python-nmap
● http://xael.org/norman/python/python-nmap/
● Nmap 工具的 Python binding
● 搭配 IPython shell 一同服用
● GPL licensed
Inspired by
● Nicolle Neulist: Write your own tools with
python! Derbycon2012