Perl, Ruby Python: use the language that suits your character. However, one of the things that differentiate python from the rest is its philosophy, which is: there should be one– and preferably only one –obvious way to do it (where it is a problem). This philosophy gives python some interesting advantages over other similar languages. That will be explained later on. [...]
In my last post I showed my own implementation of an HTTPS Man-in-the-middle proxy written from scratch in Python. I’ve spent great deal of time to make the proxy as programmer-friendly as possible. I this post I am planning to show how you can use the code to write your own proxies in the spirit of Burp, Paros, WebScarab, RatProxy, etc.
Why is this interesting? Well, it is interesting to Python developers/hackers only. [...]
Lately I’ve been busy with putting together a python module which allows me to create man-in-the-middle (MITM) HTTP Proxies with a programmer-friendly extension interface and support for SSL. This kind of proxies can be used for many things ranging from creating your own tampering proxies to hijacking network traffic via a transparent proxy connection.
I am quite pleased with the end result! [...]
I don’t want to brag about it but this project was slashed in 5 minutes and this is not due to some amazing tech wizardy. It is mainly due to the powerful Java development platform and the tones of development information resources, Java coders have on their hands. I just made use of them. This morning I had some thoughts around the Metasploit and w3af projects and how the GNUCITIZEN team can contribute some modules to make both of them even more powerful. [...]
TStore.py is an easy to use semantic database storage class useful for aggregating random data.
You can use the class by importing it in any python project. You insert triples in the form of (predicate, subject, object). Once these triples are inside the store, you can query them and extract meaning. Check the Semantic Web project for more information.
I personally use this code to store and query random data without carrying much about the structure of the database.
Jython Shell is a python shell that works straight from your browser. This application can prove to be quite helpful in many situations. For example, you can use it when you don’t have access to your computer but you still want to test a few things in python. I’ve made use of it many times to penetrate various kiosks or to launch python scripts where I have some sort of browser access.
In order to run the applet, you need Java and you have to approve the security warning. [...]
test your web apps with websecurify application security testing runtime