Source Conference, profile picture
Uploaded bySource Conference
2,831 views

Stephen Ridley - Greyhat Ruby

This document discusses automated HTTP verb tampering. It provides links to GitHub repositories containing code for modifying HTTP requests in Ruby, including changing the verb type and adding custom payloads. Specifically, it links to code that allows modifying the user32 library in Ruby, generating TLV packets to embed data, and a presentation on Ruby meta-fuzzing techniques and another GitHub project for HTTP request manipulation in Ruby.

Embed presentation

Downloaded 54 times
Automated HTTP Verb Tampering Usage
https://github.com/s7ephen/Tamatebako/blob/master/ user32.rb
https://github.com/s7ephen/Ruxxer
#declarations long typeop; long_lc pkt_len; #byte length calculator string dgram; structure tlv_packet; #assignments typeop = 0x0D030A0D; pkt_len = tlv_packet; dgram = “This is userdatarm” push(tlv_packet, typeop, pkt_len, dgram);
http://www.slideshare.net/d0cs4vage/ruby-meta-fuzzing https://github.com/tqbf/ruckus
Stephen Ridley - Greyhat Ruby
Stephen Ridley - Greyhat Ruby
Stephen Ridley - Greyhat Ruby

More Related Content

PDF
Mp26 : Tachyon, sloppiness is bliss
byMontreal Python
 
PDF
PSR-3 logs using Monolog and Graylog
byOCoderFest
 
PDF
Intro to grunt
by春行 常
 
PDF
Vimm
byguest7f6a7f
 
PDF
Kettunen, miaubiz fuzzing at scale and in style
byDefconRussia
 
DOCX
Creating qmgr and allowing remote authorization
byRavi Babu
 
PDF
MongoDB World 2019 Builder's Fest - Open source command line power tools for ...
byStennie Steneker
 
PDF
Http2 on go1.6rc2
byJxck Jxck
 
Mp26 : Tachyon, sloppiness is bliss
byMontreal Python
 
PSR-3 logs using Monolog and Graylog
byOCoderFest
 
Intro to grunt
by春行 常
 
Vimm
byguest7f6a7f
 
Kettunen, miaubiz fuzzing at scale and in style
byDefconRussia
 
Creating qmgr and allowing remote authorization
byRavi Babu
 
MongoDB World 2019 Builder's Fest - Open source command line power tools for ...
byStennie Steneker
 
Http2 on go1.6rc2
byJxck Jxck
 

Viewers also liked

PPTX
From DNA Sequence Variation to .NET Bits and Bobs
bySource Conference
 
PDF
Andrew Hay - Chris Nickerson - Building Bridges - Forcing Hackers and Busine...
bySource Conference
 
PDF
Advanced Data Exfiltration The Way Q Would Have Done It
bySource Conference
 
PDF
Advanced (persistent) binary planting
bySource Conference
 
PPTX
Legal/technical strategies addressing data risks as perimeter shifts to Cloud
bySource Conference
 
PDF
Dan Guido SOURCE Boston 2011
bySource Conference
 
PDF
Wendy Nather - Building a Rube Goldberg Application Security Program
bySource Conference
 
PDF
Don Bailey - A Million Little Tracking Devices
bySource Conference
 
PPTX
How To: Find The Right Amount Of Security Spend
bySource Conference
 
PDF
Adam Meyers - Obfuscation And Communications
bySource Conference
 
PDF
Ken Smith - Tokenization
bySource Conference
 
PPTX
Forensic Memory Analysis of Android's Dalvik Virtual Machine
bySource Conference
 
PPTX
Extracting Forensic Information From Zeus Derivatives
bySource Conference
 
PPT
Nazira Omuralieva - Susan Kaufman - Improving Application Security - Vulnerab...
bySource Conference
 
PDF
Banking Fraud Evolution
bySource Conference
 
PPTX
Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools
bySource Conference
 
PPTX
Men in the Server Meet the Man in the Browser
bySource Conference
 
PDF
Security Goodness with Ruby on Rails
bySource Conference
 
From DNA Sequence Variation to .NET Bits and Bobs
bySource Conference
 
Andrew Hay - Chris Nickerson - Building Bridges - Forcing Hackers and Busine...
bySource Conference
 
Advanced Data Exfiltration The Way Q Would Have Done It
bySource Conference
 
Advanced (persistent) binary planting
bySource Conference
 
Legal/technical strategies addressing data risks as perimeter shifts to Cloud
bySource Conference
 
Dan Guido SOURCE Boston 2011
bySource Conference
 
Wendy Nather - Building a Rube Goldberg Application Security Program
bySource Conference
 
Don Bailey - A Million Little Tracking Devices
bySource Conference
 
How To: Find The Right Amount Of Security Spend
bySource Conference
 
Adam Meyers - Obfuscation And Communications
bySource Conference
 
Ken Smith - Tokenization
bySource Conference
 
Forensic Memory Analysis of Android's Dalvik Virtual Machine
bySource Conference
 
Extracting Forensic Information From Zeus Derivatives
bySource Conference
 
Nazira Omuralieva - Susan Kaufman - Improving Application Security - Vulnerab...
bySource Conference
 
Banking Fraud Evolution
bySource Conference
 
Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools
bySource Conference
 
Men in the Server Meet the Man in the Browser
bySource Conference
 
Security Goodness with Ruby on Rails
bySource Conference
 

More from Source Conference

PPTX
Million Browser Botnet
bySource Conference
 
PDF
iBanking - a botnet on Android
bySource Conference
 
PPTX
I want the next generation web here SPDY QUIC
bySource Conference
 
PPTX
How to Like Social Media Network Security
bySource Conference
 
PDF
Wfuzz para Penetration Testers
bySource Conference
 
PDF
Securty Testing For RESTful Applications
bySource Conference
 
PPSX
Esteganografia
bySource Conference
 
PPTX
Adapting To The Age Of Anonymous
bySource Conference
 
PDF
Are Agile And Secure Development Mutually Exclusive?
bySource Conference
 
PDF
Who should the security team hire next?
bySource Conference
 
PDF
The Latest Developments in Computer Crime Law
bySource Conference
 
PDF
JSF Security
bySource Conference
 
PPTX
Everything you should already know about MS-SQL post-exploitation
bySource Conference
 
PPTX
Keynote
bySource Conference
 
PDF
Reputation Digital Vaccine: Reinventing Internet Blacklists
bySource Conference
 
PDF
Threat Modeling: Best Practices
bySource Conference
 
PDF
Geer - Hutton - Shannon - A Pilot Project On The Use Of Prediction Markets I...
bySource Conference
 
Million Browser Botnet
bySource Conference
 
iBanking - a botnet on Android
bySource Conference
 
I want the next generation web here SPDY QUIC
bySource Conference
 
How to Like Social Media Network Security
bySource Conference
 
Wfuzz para Penetration Testers
bySource Conference
 
Securty Testing For RESTful Applications
bySource Conference
 
Esteganografia
bySource Conference
 
Adapting To The Age Of Anonymous
bySource Conference
 
Are Agile And Secure Development Mutually Exclusive?
bySource Conference
 
Who should the security team hire next?
bySource Conference
 
The Latest Developments in Computer Crime Law
bySource Conference
 
JSF Security
bySource Conference
 
Everything you should already know about MS-SQL post-exploitation
bySource Conference
 
Keynote
bySource Conference
 
Reputation Digital Vaccine: Reinventing Internet Blacklists
bySource Conference
 
Threat Modeling: Best Practices
bySource Conference
 
Geer - Hutton - Shannon - A Pilot Project On The Use Of Prediction Markets I...
bySource Conference
 

Recently uploaded

PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
PDF
final.pdf
byomarbishtawi04
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
final.pdf
byomarbishtawi04
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 

Stephen Ridley - Greyhat Ruby