book

Gray Hat Python

by Justin Seitz

April 2009

Intermediate to advanced

216 pages

5h 9m

English

No Starch Press

Read now

Unlock full access

Operating System Requirements
Installing Python on WindowsInstalling Python for Linux
The Hacker's Best Friend: ctypesUsing Dynamic Librarieschapter1-printf.py Code on Windowschapter1-printf.py Code on LinuxConstructing C DatatypesPassing Parameters by ReferenceDefining Structures and UnionsIn CIn PythonIn CIn Pythonchapter1-unions.py
General-Purpose CPU Registers
Function Call in CFunction Call in CFunction Call in x86 Assembly

Soft BreakpointsOpcode Before Breakpoint Is SetModified Opcode After Breakpoint Is SetHardware BreakpointsMemory Breakpoints
Debuggee, Where Art Thou?my_debugger_defines.pymy_debugger_defines.pymy_debugger.pymy_test.pymy_debugger.pymy_test.py
Thread EnumerationPutting It All Togethermy_debugger.pymy_test.py
my_debugger.pymy_debugger.pymy_test.pymy_debugger.py
Soft Breakpointsmy_debugger.pymy_debugger.pyprintf_loop.pymy_test.pyHardware Breakpointsmy_debugger.pymy_debugger.pymy_test.pyMemory Breakpointsmy_debugger.pymy_debugger.py
Extending Breakpoint Handlersprintf_random.pyprintf_random.pyAccess Violation Handlersbuffer_overflow.pyaccess_violation_handler.py
Obtaining Process Snapshotssnapshot.pyPutting It All Togetherdanger_track.py
Installing Immunity Debugger
PyCommandsPyHooks
Finding Exploit-Friendly Instructionsfindinstruction.pyBad-Character Filteringbadchar.pyBypassing DEP on Windowsfindantidep.py
IsDebuggerPresentDefeating Process Iteration
Soft Hooking with PyDbgfirefox_hook.pyfirefox_hook.py
hippie_easy.pyhippie_easy.py
Remote Thread CreationDLL Injectiondll_injector.pyCode Injectioncode_injector.py
File Hidingfile_hider.pyCoding the Backdoorbackdoor.pybackdoor.pybackdoor.pyCompiling with py2exesetup.pybackdoor_shell.py
Bug ClassesBuffer OverflowsInteger OverflowsFormat String Attacks
file_fuzzer.pyfile_fuzzer.pyfile_fuzzer.pyfile_fuzzer.pyfile_fuzzer.py
Code CoverageAutomated Static Analysis
Sulley Installation
StringsDelimitersStatic and Random PrimitivesBinary DataIntegersBlocks and Groups
FTP 101Creating the FTP Protocol Skeletonftp.pySulley Sessionsftp_session.pyNetwork and Process MonitoringFuzzing and the Sulley Web Interface
Driver Communication
ioctl_fuzzer.pyioctl_fuzzer.py
Discovering Device NamesFinding the IOCTL Dispatch Routine
ioctl_dump.pyioctl_dump.pymy_ioctl_fuzzer.py
IDAPython Installation
Utility FunctionsSegmentsFunctionsCross-ReferencesDebugger Hooks
Finding Dangerous Function Cross-Referencescross_ref.pyFunction Code Coveragefunc_coverage.pyCalculating Stack Sizestack_calc.py
Installing PyEmu
PyCPUPyMemoryPyEmuExecutionMemory and Register ModifiersHandlersRegister HandlersLibrary HandlersException HandlersInstruction HandlersOpcode HandlersMemory HandlersHigh-Level Memory HandlersProgram Counter Handler
addnum.cppaddnum.cppFunction Emulationaddnum_function_call.pyaddnum_function_call.pyaddnum_function_call.pyaddnum_function_call.pyPEPyEmuExecutable PackersUPX PackerUnpacking UPX with PEPyEmuupx_unpacker.pyupx_unpacker.pyupx_unpacker.py

Overview

Python is fast becoming the programming language of choice for hackers, reverse engineers, and software testers because it's easy to write quickly, and it has the low-level support and libraries that make hackers happy. But until now, there has been no real manual on how to use Python for a variety of hacking tasks. You had to dig through forum posts and man pages, endlessly tweaking your own code to get everything working. Not anymore.

Gray Hat Python explains the concepts behind hacking tools and techniques like debuggers, trojans, fuzzers, and emulators. But author Justin Seitz goes beyond theory, showing you how to harness existing Python-based security tools - and how to build your own when the pre-built ones won't cut it.

You'll learn how to:

Automate tedious reversing and security tasks
Design and program your own debugger
Learn how to fuzz Windows drivers and create powerful fuzzers from scratch
Have fun with code and library injection, soft and hard hooking techniques, and other software trickery
Sniff secure traffic out of an encrypted web browser session
Use PyDBG, Immunity Debugger, Sulley, IDAPython, PyEMU, and more

The world's best hackers are using Python to do their handiwork. Shouldn't you?

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Publisher Resources

ISBN: 9781593271923Errata Page

Gray Hat Python

by Justin Seitz

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

Gray Hat C#

Raspberry Pi Image Processing Programming: With NumPy, SciPy, Matplotlib, and OpenCV

How to Become a Game-Changing Leader

Use Gemini for Market Analysis

Publisher Resources

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

Gray Hat C#

Raspberry Pi Image Processing Programming: With NumPy, SciPy, Matplotlib, and OpenCV

How to Become a Game-Changing Leader

Use Gemini for Market Analysis

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.