Disable certificate verification on Android with Frida

Published: Mar 17 2021

Some notes about how to write a Frida script with the (somewhat classic) example of disabling certificate verification for TLS communications on Android applications.

DNS rebinding vulnerabilities in Freebox

Published: Sep 23 2020

I found some DNS rebinding vulnerabilities in Freebox devices (CVE-2020-24374, CVE-2020-24375, CVE-2020-24376, CVE-2020-24377) as well as a Cross Site Request Forgery (CSRF) vulnerability (CVE-2020-24373). These vulnerabilities were fixed in 2020-08-05.

GNU/Linux host name resolution

Published: Apr 20 2020

This post describes different software components involved in host name resolutions and DNS configuration on GNU/Linux systems. It consists of a diagram and some accompanying explanations. The goal is to give some pointers and references to understand how to troubleshoot host name/DNS resolution problems and configuration problems on GNU/Linux systems.

Push-to-talk in any application

Published: Apr 11 2020

Some scripts I wrote to enable system-wide push-to-talk (for X11 and PulseAudio). Some people might find it useful for the ongoing lockdown.

Systemd-resolved DNS configuration for VPN

Published: Mar 17 2020

Some guidance about configuring/fixing domain name resolution with a corporate Virtual Private Network (VPN), especially OpenVPN and with systemd-based Linux systems. This configuration uses the internal/private corporate resolvers for resolving internal/private domain names while using the ISP resolver for general domain names. This might help if your VPN is struggling these days because of the COVID-19 threat 😷.

Disk usage with FlameGraph

Published: Nov 18 2019

Using FlameGraph for displaying disk usage.

Using dig as a LLMNR or mDNS CLI lookup utility

Published: Apr 2 2019

I was looking for a LLMNR commandline lookup utility. Actually, dig can do the job quite fine.

Surprising shell pathname expansion

Published: Mar 29 2019

I thought I was understanding pretty well how bash argument processing and various expansions is supposed to behave. Apparently, there are still subtleties which tricks me, sometimes.

Remote code execution via cross site request forgery in InternetCube and YunoHost

Published: Feb 12 2019

How I found remote code execution vulnerabilities via Cross Site Request Forgery (CSRF) on the administration interfaces of InternetCube applications and of the YunoHost administration interface which could have been used to execute arbitrary code as root. These vulnerabilities were fixed in YunoHost 3.3, OpenVPN Client app 1.3.0. and YunoHost 3.4.

My document generation workflow with Markdown, YAML, Jinja2 and WeasyPrint

Published: Nov 26 2018

Here is the workflow I am using to generate simple text documents (resume, cover letters, etc.) from Markdown, YAML and Jinja2 templates.

Page 6 of 11 | Previous page | Next page | JSON Feed | Atom Feed