A lazy blog

Certificate Transparency Info Leaks

This is part two of the Certificate Transparency series. I show here how certificate transparency is leaking valuable information about companies due to either unfamiliarity or obliviousness from companies’ IT or DevOps teams. ...

Certificate Transparency 101

This is part one of the Certificate Transparency series. Certificate Transparency (CT) is a public, append-only logging system for TLS certificates. It was created to make certificate issuance observable so that mis-issuance can be detected quickly and independently. Instead of relying only on trust, CT lets anyone audit which certificates were issued for a domain and when they appeared in a public log. ...

6 Things to Do With Docker

1. Operate on root files without sudo password We all know that docker access is basically root access, but examples are critical to understanding. ...

Thoughts on shell tools

Below a list of points I believe should be handled when writing shell tools. Exit Status Exit status (exit(0) or exit(1)) is the way for letting the caller know the execution has failed. ...

Long Time Ago Refactoring Ideas

Refactoring ideas suggested long time ago from previous jobs Libraries are too tightly coupled with each other Libraries should not depend on each other too much, otherwise you have to update all libraries which misses the entire idea of decoupling. ...

Linux User Time

Say we want to measure the number of user space instructions a process is spending at a function. There are number of ways to do so: gettimeofday, times, clock and getrusage, but they give you time and not CPU cycles and not very accurate. ...

Old macOS kernel debugging with LLDB

Note: This won’t work anymore, Apple has pretty much disabled any ability to work with kernel extensions. This is just an old blog post. Kext are no longer supported, use System Extensions and similar approach ...

Crashing Compilers

The compilers Let’s see if we can crash some compilers. python3 -c "print('{' * 99999)" > test.c && clang test.c Clang SEGFAULT but GCC has made it :) ...

Static Inline Mess

It’s a known fact (at least to me), that static inline functions in C++ will generate multiple instances of a function if used in a different translation unit (a file, why call it differently?). ...

OSX kernel simple operations

Getting current information Get current task with: #include <kern/task.h> task_t cur_task = current_task(); Get current thread with: ...