I frequently find myself wanting, or needing, to learn about particular languages, technologies, frameworks, or services; often, some of these pursuits are complete and utter failures, while others are marginal successes. However, once in a blue moon, there are some that have potential and might be worth sharing. I consider the following projects as mildly successful and yearn to see them, one day, evolve past their currently rough or unfinished states.
As always, please contact us (me) with comments, concerns, questions, etc. regarding any of the works below.
This site, mpettersson.com, has currently been one of my higher priorities (w.r.t. coding) projects. Past versions of this site were experiments based on either static HTML/CSS (as can be seen at old.mpettersson.com) or ASP.NET (this version was never hosted publicly and was more of a ASP.NET Web Forms exercise). The current version is built on WordPress (mostly because it’s extremely easy to make a decent looking site and I’m not a full time web dev), which allows me to indulge a desire to learn a bit of PHP.
The REINS verifier is a continuation of a University of Texas at Dallas graduate level CS project to prove aspects of the REINS algorithm in Coq, and is an extension of the RockSalt project. That is, the REINSVerifier project is a monolithic task of writing a mathematically verifiable proofs in a formal proof management system (or Coq) a binary rewriting and inlining system or algorithm (a.k.a. REINS), “to tame and secure untrusted binary programs”.
For a full description of REINS, checkout Wartell, Mohan, Hamlin, and Lin’s paper. It is worth the read…
For more information on the REINSVerifier checkout the Bitbucket repo.
pydan is a tool that provides a way to easily use the Shodan API (sorry, but you’ll have to get and use your own API key) and try to perform some analysis to find interesting and possibly vulnerable devices.
For more information on pydan checkout the GitHub repo.