python library (FastOptDict) for dictionary

0x00 Introduction

FastOptDict is a simple dictionary library. It allows you to find all the keys, values, and paths in the dictionary variable.

For example, we have a dictionary variable and we have to find out the value for the key “test”.

1
2
3
4
5
>>> import FastOptDict
>>> dict_data = {"a": "b", "c": "d", "e": [{"f": "a"}, "e", {"h": ["tt", "dd"]}], "h": ["tt", "dd"], "i": "c","z": {"f": "a","t":{"x":"z"}}}

>>> value_list = FastOptDict.get_value_by_key("a")
>>> print(value_list)

It uses a path generation algorithm to finish the task instead of using regex.

Read more

Wso2_Vul_Analysis_cve_2022_29464

0x00 Official information

On Apr 20,I found that someone posted a meesage on twitter.It was a message about cve-2022-29464.
Actually, we can get a lot of information of this vuln from wso2 official website and cve website.

1
https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2021-1738

Obviously,it is an unrestricted arbitrary file upload vulnerability.I installed a test enviroment and analyse the patch,so that I got the real poc by using reverse engineering.

1
https://github.com/wso2/product-apim/releases
Read more

HelloWorld

0x00 ~$ whoami

I’m a Cyber Security Researcher.I mayjor in Web Security.

0x01 ~$ ls -al my_skill

Penetration,Code Review,Java,Python

0x02 ~$ cat my_blog

I want to share some security skills and something instresting from mylife on this blog.