VM Size reduction tips for OVA distribution

In my many years of exploring Linux systems and building Android Tamer, OVA export has always been a fun challenge. Everyone distribute VM’s in OVA format as it is easy to import in both VMWare and Virtual box systems. Over the period I have relied on various smallish tweaks that eventually lead to a largish difference in final OVA Size. I think it’s time I document the entire set here:

Do you like what you read, What to share it

Public release: Android Security Repository

I wanted to celebrate this new year by giving something back to the community and so i am making my old Android Security Course content public.

I used to run android security training which started with basics of android and evolved to pin pointed android pentesters specific pain point solving course. for the last 3 years of it 2015-2017 I maintained a github repository which I am opensourcing today. This repository contains collection of resources I gathered for my students.

I am opensourcing the content in the hopes that it will benefit someone starting in Android Security.

Feel free to suggest changes, submit pull requests with updated content and improvements.

Repository is available at https://github.com/anantshri/Android_Security

Do you like what you read, What to share it

Introducing Hacking Archives of India

It’s been slightly more than 10 years that I have spent in the information security domain. Information Security is mostly assumed to be a very small and tightly connected community. However in these 10 years I have learned there are many persona’s active in the current industry, some very vocal, some very active yet not socially present at all. I have also always wondered how the information security industry started and proliferated in India.

Do you like what you read, What to share it

Wireguard Setup

Quick notes on how to setup wireguard on 20..04

Best guide i could find : https://www.linuxbabe.com/ubuntu/wireguard-vpn-server-ubuntu

But still pieces missing so trying to write this and make those pieces sorted

Base OS : ubuntu 20.04

  1. Install software
sudo apt-get install wireguard wireguard-tools

Do you like what you read, What to share it

Logged in User Details In Azure AD App Service

Idenifying the Logged-In User in Azure AD

Lately I have been experimenting with Azure AD and putting Apps behind Azure AD. Once they are behind Azure AD Auth i wanted to make decisions based on the logged in user and it turned out to be a bit of a adventure trying to get those values.

I will document two different ways of obtaining authenticated user. one via python and one via javascript.

Do you like what you read, What to share it

Clair and ClairCTL Shenanigans

So last night i was experimenting with Clair and ClairCTL. main task i wanted to do was run clair and clairctl without requiring their individual containers.

Long story short, clair versions on website are different via different methods with no easy way to distiguish between them

Do you like what you read, What to share it

Public Release of HTML5 attack and Secure course

Now a days we are living in difficult times (covid19 and all) and one way to maintain some sanity is to involve ourselves in some shape or form of learning. In that spirit i am today opening the github repo of my HTML5 course from private to public and making all those resources that i gathered public for everyone to access.

This course was created back in 2015 when html5 was just in its infancy contains some basic attack and defense tips. I hope it can be of good use to people.

Feel free to suggest changes, submit pull requests with updated content and improvements.

URL for the repository is here : https://github.com/anantshri/html5_attack_and_secure

Do you like what you read, What to share it