Hello, welcome to the Monday, May 3, 2021 edition of the Sandcent Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

Nice little diary on Friday by Remko about quilling, at least.

That's how I think you pronounce this.

It's a framework that's,

well, I would say somewhere between sort of virtualization and debugger, but what it does allow you is it essentially allows you to run binaries across different operating systems and different

architecture in sort of a debugger-like environment.

Now, since the framework, it's very extensible and very customizable.

You can essentially a hot patch, some binaries that you're working on to, for example, bypass

certain functions that would otherwise lock you out or, for example,

detect that you are running in a debugger.

Sounds like a real useful tool for anybody doing serious reverse engineering.

And I hope Remko's post will cut the learning time a little bit short.

It's not the easiest tool to get started with, but he walks you sort of through the basic

functionality.

And it looks like the Python standard lip IP address is also suffering from an improper

input validation problem that we had in other languages

about a month ago or so I think I mentioned that.

The root cause here is that the library does not consider the octal format, which is valid

and used by libraries that usually set up the connection.

So for example, you're restricting your users to connecting to 10.d. addresses.

These libraries, like IP address in Python standard lip, will consider 010 as 10 and that'll pass.

...