My Python Journey – Blog #1

One of the great things about blogs can be their interesting titles. I had a couple of titles picked out for this blog/series that I am going to be writing.

The one that liked was “40 year old Python Virgin.” This was my feeble attempt to play off the fact that I am new to Python…well, new to any scripting or development as well as my approximate age. I certainly don’t plan on having my chest waxed and don’t feel like oil diving like Steve Carell does in the movie “40 year old virgin.”  I was happy with the title until I actually said it out loud. I was talking to my friends Josh and Matt in a coffee shop. As far as I am concerned, you can get so much done over either coffee or bourbon (drinking some Elijah Craig now)…either one I am fine with. After I said it out loud and saw my friends’ smirks, I realized how poor of a choice that was. At least they got a kick out of it. So, “My Python Journey” it was.

I mentioned in my last blog that one of the things that can help you grow as a security professional was to start writing code. I have tried many times to learn Python as well as other languages. Python made the most sense to me. Well, that and PowerShell. I would go through the lessons or the class and it would make sense at the time but then I would forget most of it after I was finished. I was, quite obviously, going about it all wrong. I need to find a problem that I want to solve or something that I want to improve upon and then try to make that work with Python. Below are a few options of what I may try and do. For one reason or another, they all mean something to me.

 

Option 1: My kids love YouTube. Frankly, who doesn’t. They have specific YouTubers that they watch. Some I like. Some I don’t. I want to create a small user interface for them to enter in certain criteria and have a playlist created and launched for them. This way I can tell them that they can watch YouTube all they like but have to choose the channels and/or topics that they want to watch through my approved list. There will be other criteria that they can enter such as date and duration of the video as well.

Option 2: I have a YouTube channel. The channel has nothing to do with InfoSec. It is a couple of “Average Joe’s” making cocktails. The channel is http://www.youtube.com/c/averagejoedrinks. One of the things that we struggle with is choosing what drinks to make. If we only made the drinks that we liked, we may not have very many people interested. We want to choose some of the drinks that are “trending.” I want to have a small application that I can input criteria that will show me what is popular and which drinks are being searched for. This will allow us to make intelligent decisions on what we drinks we should make.

 

Option 3: At work, we have a very large and diverse network. At times, alerts pop up for IP addresses that we are not immediately familiar with. It takes time to hop around the network in order to find the host and also the team that may be responsible for that host (re-image, re-image, re-image…). I want to ingest as much info as I can (usually csv format) and then correlate that information in order to make decisions on the fly a lot faster. To be able to input an IP address, region, state, and/or employee and then find  pertinent information would be very helpful and make us a lot more efficient.

I am sure that there may be products out there that do all of the above. That isn’t entirely the point of going through this exercise. The point is that if I have some vested interest in the problem or improvement needed, I am much more likely to press on and learn how to write Python. In the next post, I will have made my decision on which problem to tackle and take the next step in my journey. Thanks and have a great day.

Advertisements

Path to InfoSec Success – Blog #0

Hello, my name is Eddie and I am a security professional. I have been in the Information Security field for about 5 or 6 years. I have been in IT for 12 years. As I continue to learn from some of the smartest people in the current workforce, I have noticed a few themes that appear to remain true for all of the smart, successful, and respected people in Information Security.

  1. Write a blog
  2. Have a github repository
  3. Write technical papers
  4. Give talks at cons

I am (quite obviously) writing this blog. This is me working on number 1. I plan to write about my continuing journey, share some experiences, and maybe even share some great cocktail recipes (see my hobby at Average Joe Drinks).

Two is a lot more difficult for me as I am not nor will I ever be a developer. I am however a security professional and do tasks frequently that can be helped by creating scripts and I plan to put those here (bucfoo github). I also plan to delve into python a bit not just for security but to help me with my YouTube hobby.

The third one I will work on as the opportunities come. The fourth one will come with time. I am not completely terrified to talk in front of people. I am however at least a little bit terrified talking in front of people that most likely know more than me. That is a fear that I will have to get over. And I will. What I do need is to write a talk that is relevant and will be a benefit to a information security professional audience. This will happen…eventually.

If you made it this far, thank you very much. I will write more as I have things that I feel are worth reading.

 

Eddie