DEV Community: Alex M. Espinosa

#12in24: Learning COBOL in 1h.

Alex M. Espinosa — Sat, 24 Feb 2024 15:40:56 +0000

The title is even more clickbaiting thean the previous article: #12in24: Learning Perl in 4h. But read me out: Yes, you can learn COBOL (Common Business-Oriented Languge) in just 1 hour!

I will use this video to learn the basics: COBOL Course - Programming with VSCode.

Why learning COBOL?

Well, COBOL has been around for over 60 years and is still used in many operations like card payments, in fact, everyday about 3 trillion dollars in finance gets handled by COBOL.

This language, Business-Oriented, was designed around data processing with high accuracy, efficiency, ease of reading and writing.

COBOL pretty much runs the world: It has been kept up to date to support new requirements and 1.5 billion lines of COBOL are written every year!

Learning this language will give you a very valuable set of skills that can be used in finance (the people that hold the money and will likely pay quite well), Big Data or Live Events Lighting (once I saw a lighting desk running programs in COBOL).

Basics

There are different COBOL flavours, this will be COBOL written specifically for IBM Z Mainframe OS.
COBOL is column dependent - 5 key areas of a 72 char line:

1. Sequence Number Area (1-6): Blank or to provide context.
2. Indicator Area (7): Multi-purpose area - * for comments or to continue a previous line...
3. A Area (8-11): Structure.
4. B Area (12-72): Actual statements area.
5. Id Area (73-80): Ignored, used for any purpose.

The full list of reserved words can be found here.

Structure

DIVISIONS > SECTIONS > PARAGRAPHS > SENTENCES > STATEMENTS

(tl;dw)

Basic variables

Basic rules apply: no reserved words, no weird chars or spaces (letters, numbers and dashes are fine) and no longer that 30 chars.
Type of variable and size using PIC clause: PIC M(N) where M is the value type and (N), optional, the length.

- PIC 9(4): Number value with a length of 4 numbers. We can use V for decimals: PIC 9(2)V99 could be 24.59.
- PIC A: Alphabetic value.
- PIC X(8): Alphanumeric value with a length of 8 chars.

For the sake of efficiency you can as well use literals like: ZERO/ZEROES, SPACE/SPACES, LOW-VALUE, HIGH-VALUE, NULL/NULLS.

Divisions

DATA DIVISION & PROCEDURE DIVISION

DATA DIVISION is where all the program data goes. Then in PROCEDURE DIVISION MOVE and COMPUTE are used to alter the value of variables. A simple program to undertand COBOL so far:

1    678   12
|    | |   |
       IDENTIFICATION DIVISION.
       PROGRAM-ID. PAYROLL00.
       DATA DIVISION. 
       WORKING-STORAGE SECTION. 
      *VARIABLES
       77  FNAME       PIC X(15).
       77  SNAME       PIC X(15).
       77  RATE        PIC 9(3).
       77  HOURS       PIC 9(3).
       77  GROSS-PAY   PIC 9(5).

       PROCEDURE DIVISION.
      *MOVE STATEMENTS
           MOVE "Alex" TO FNAME.
           MOVE "Espinosa" TO SNAME.
           MOVE 100 TO RATE.
           MOVE 40 TO HOURS.
      *CALCULATE GROSS-PAY WITH COMPUTE     
           COMPUTE GROSS-PAY = HOURS * RATE.

      *DISPLAY
           DISPLAY "Name: " FNAME.
           DISPLAY "Surname: " SNAME.
           DISPLAY "Hour worked: " HOURS.
           DISPLAY "Hourly rate: " RATE.
           DISPLAY "Gross Pay: " GROSS-PAY.

As you can see, it's pretty easy stuff: set variables in the DATA DIVISION and then we assign values to variables and we display the values in the PROCEDURE DIVISION.

Paragraphs

Paragraphs are chunks of code defined in the PROCEDURE DIVISION starting at column A and can have the name you like. The termination of a pragraph is a period and can contain one to many COBOL sentences.

Conditionals

1    678   12
|    | |   |
      *CONDITIONAL
           IF GROSS-PAY < 6000 THEN
              DISPLAY FNAME " is being underpaid!"
           ELSE DISPLAY FNAME "is being paid a fair salary."
           END-IF.

We can also use EVALUATE and WHEN as if it was a switch statement:

1    678   12
|    | |   |
           EVALUATE GROSS-PAY 
              WHEN (GROSS-PAY < 6000)
                 DISPLAY FNAME " is being underpaid!"
              WHEN (GROSS-PAY >= 6000)
                 DISPLAY FNAME "is being paid a fair salary."
           END-EVALUATE.

Loops

As COBOL is pretty much like plain english I believe there is no need to explain this type of loop:

1    678   12
|    | |   |
           MOVE 'THE NUMBER IS: ' TO MSG-HEADER OF PRINT-REC.
           PERFORM VARYING COUNTER FROM 01 BY 1 UNTIL COUNTER EQUAL 11
           MOVE COUNTER TO MSG-TO-WRITE
           WRITE PRINT-REC
           END-PERFORM.

           CLOSE PRINT-LINE.
           STOP RUN.

Program linkage

We use the CALL keyword to call another program:

CALL 'PROG1' ...

Intrinsic functions

These are functions ready-made for us to use within our COBOL programs. There are 6 categories:

MATH
STATISTICS
DATE/TIME
FINANCIAL
CHARACTER-HANDLING
GENERAL

To use them we use FUNCTION NAME-OF-THE-FUNCTION(PARAMETERS).

Project

As COBOL is frequently used in finance, I decided to build a simple banking program. The user is able to add and withdraw money, check his balance and exit the program:

IDENTIFICATION DIVISION.
PROGRAM-ID. SIMPLEBANKING.

DATA DIVISION.
WORKING-STORAGE SECTION.
01 ACCT-BALANCE         PIC 9(7)V99 VALUE 1000.00.
01 TRS-AMOUNT           PIC 9(7)V99.
01 CHOICE               PIC X.

PROCEDURE DIVISION.
MAIN-PROCEDURE.
    DISPLAY "Welcome to the Simple Banking Program".
    PERFORM UNTIL CHOICE = '4'
        DISPLAY "1. Deposit"
        DISPLAY "2. Withdraw"
        DISPLAY "3. Check Balance"
        DISPLAY "4. Exit"
        DISPLAY "Enter your choice (1-4): "
        ACCEPT CHOICE

        EVALUATE CHOICE
            WHEN '1'
                PERFORM DEPOSIT
            WHEN '2'
                PERFORM WITHDRAW
            WHEN '3'
                PERFORM CHECK-BALANCE
            WHEN '4'
                DISPLAY "Thank you for using the banking program. Goodbye!"
            WHEN OTHER
                DISPLAY "Invalid choice. Please enter again."
        END-EVALUATE
    END-PERFORM.

    STOP RUN.

DEPOSIT.
    DISPLAY "Enter the amount to deposit: "
    ACCEPT TRS-AMOUNT
    ADD TRS-AMOUNT TO ACCT-BALANCE
    DISPLAY "Amount deposited successfully."
    PERFORM CHECK-BALANCE.

WITHDRAW.
    DISPLAY "Enter the amount to withdraw: "
    ACCEPT TRS-AMOUNT
    IF TRS-AMOUNT <= ACCT-BALANCE
        SUBTRACT TRS-AMOUNT FROM ACCT-BALANCE
        DISPLAY "Amount withdrawn successfully."
    ELSE
        DISPLAY "Insufficient funds."
    END-IF
    PERFORM CHECK-BALANCE.

CHECK-BALANCE.
    DISPLAY "Your current balance is: ", ACCT-BALANCE.

🎣 Phishing Websites: When Web Development and Cybersecurity Come Together

Alex M. Espinosa — Tue, 06 Feb 2024 13:00:00 +0000

In the landscape of web development, practical experience often proves to be the most effective teacher. As well as in cybersecurity.

And one intriguing method that aspiring developers can explore is the ethical replication of existing websites for educational purposes. This approach allows learners to gain hands-on experience, honing their skills in a real-world context.

Emulating websites for educational purposes

Before delving into the technicalities, it's crucial to draw a clear distinction between ethical learning and malicious activities. Ethical website replication involves creating projects with the sole purpose of learning and skill development, rather than aiming to deceive or harm users. Or to be used in Red Team engagements, always with permission.

The benefits of hands-on experience in web development cannot be overstated. By replicating existing websites, learners gain insights into various aspects of web development, from frontend design to backend functionalities.

What can you learn from emulating websites?

Server-Side Aspects

Learning how to manage servers is a fundamental skill for any web developer. Ethical website replication provides an excellent opportunity to practice server management in a controlled and educational environment. Security practices should be implemented to protect these projects, even if they are solely for learning purposes.

Database Exploration

Understanding database management is a crucial aspect of web development. Replicating data structures from existing websites provides learners with a practical understanding of how information is stored and retrieved. Implementing secure database practices should be a priority, even in educational environments.

Forms and Data Handling

Web forms are ubiquitous in online applications, and learning how to create them and handle data is an essential skill. Ethical replication allows learners to practically apply their knowledge in creating forms and responsibly handling user data.

Benefits of emulating websites

Skill Enhancement and Portfolio Building

One of the significant advantages of ethical website replication is the enhancement of practical skills. By tackling real-world challenges, learners build a robust portfolio that showcases their capabilities. Employers often value hands-on experience, and including ethical replication projects in a portfolio demonstrates proficiency and initiative.

Cybersecurity Awareness in Educational Projects

Incorporating ethical hacking principles into web development education enhances cybersecurity awareness. By understanding potential vulnerabilities and responsibly disclosing and fixing them in educational projects, learners contribute to a safer online environment. This dual focus on development and security is invaluable in today's interconnected digital landscape.

Some examples I made that worked during my Red Team engagements

WARNING

The following pages are FAKE pages hosted on my website. They are harmless "phishing" pages. They are showcased for educational purposes and they have no real functionality of logging any credentials.

Sign in with Google

amtzespinosa.github.io

Click the Sign in with Google button and it will take you to the fake login page.

WordPress Backdoor plugin download page

Extracted from a longer post published on my website: WordPress Backdoor Plugin: A Complete Phishing Scheme.

Here you can see a fake website where you can download a "security patch" from WordPress plugins repository. But that plugin is actually a backdoor.

WordPress Security Patch CVE-2023-46732 – WordPress plugin | WordPress.orgAkismet Anti-spam: Spam Protection – Plugin WordPress | WordPress.org España

This security plugin serves as a patch for the recently identified vulnerability known as CVE-2023-46732. This specific vulnerability is categorized as a Remote Code Execution (RCE) threat, meaning that attackers can exploit it to gain unauthorized access to your website.

amtzespinosa.github.io

Captive portals: TP Link, Vodafone and Starbucks.

These pages can actually be used with the tool Wifiphisher. And here you can see how they look:

I know, the WordPress Security Patch website and the Vodafone Firmware Update page are simple copy/paste. But still you can learn about form submissions, data handling, server management...

Conclusion

Phishing websites, when approached ethically, become a unique intersection where web development and cybersecurity converge. The lessons learned from emulating phishing scenarios contribute to a deeper understanding of security challenges as well as web development.

Why developers should learn hacking (and vice versa)

Alex M. Espinosa — Sat, 03 Feb 2024 11:21:09 +0000

The worlds of developers and hackers may seem like polar opposites: builders and breakers, creators and exploiters. However, the reality is far more nuanced. Both share a deep understanding of technology, albeit from contrasting perspectives. This shared foundation fosters a mutually beneficial relationship, where each side can learn and grow from the other. Here's why developers should embrace hacking, and hackers should explore development.

Developers, Embrace the Hacker Mindset:

Security-first mentality: Understanding hacking techniques exposes vulnerabilities you might miss, leading to more secure software from the ground up.
Creative problem-solving: Hackers excel at unconventional thinking, finding solutions beyond textbook approaches. This can inspire developers to approach problems from new angles.
Testing and vulnerability assessment: Hackers excel at finding weak points. By learning their methods, developers can proactively test their own applications, identifying and fixing issues before attackers do.
Staying ahead of the curve: Understanding emerging hacking trends helps developers anticipate future threats and implement preventative measures.

Hackers, Dive into the World of Development:

Understanding the system: Knowing how software works grants deeper insight into vulnerabilities and attack vectors. This enhances your effectiveness and avoids unintended consequences.
Building responsible tools: Your hacking skills can be used ethically to create security testing tools, helping developers identify and fix vulnerabilities.

I have created a free version of WPScan using Python called WPyScan that you can check. Any contribution is welcomed!

WPyScan: My FREE, UNLIMITED version of WPScan, now released | Alex's pwnlab!

A tool developed in Python for enumerating and scanning WordPress websites. It is an easy-to-use tool that can be run from the command line. WPyScan can enumerate and find any vulnerability associated with version, theme and plugins installed.

amtzespinosa.github.io

Bug bounty programs: Leverage your skills to earn rewards by ethically disclosing vulnerabilities to companies through bug bounty programs.
Collaboration and contribution: Join the developer community and collaborate on open-source projects, contributing your security expertise and improving software for everyone.
Ethical awareness: Understanding the impact of your actions strengthens your ethical compass, ensuring responsible hacking practices.

The Synergy of Two Worlds:

The true potential lies in collaboration. Imagine developers building with a hacker's security mindset, anticipating and thwarting attacks. Conversely, imagine hackers armed with development knowledge, creating responsible tools and contributing to a more secure ecosystem. Together, we can:

Strengthen the security posture of software: A combined understanding leads to more robust solutions, protecting against sophisticated attacks.
Foster a culture of security: Shared knowledge empowers both sides to promote security awareness and best practices throughout the technology landscape.
Bridge the communication gap: Developers and hackers often speak different languages. Learning each other's perspectives fosters better understanding and collaboration.

The Future of Technology:

As technology evolves, the lines between development and hacking will continue to blur. Embracing this interconnectedness, where both sides learn and grow from each other, is crucial for building a more secure and responsible digital future.

So, developers, open your minds to the hacker's perspective. Hackers, explore the world of development. Together, we can build a more secure and innovative future for technology.

#12in24: Learning Perl in 4h.

Alex M. Espinosa — Wed, 24 Jan 2024 16:00:00 +0000

The title is pretty clickbaiting. But read me out: Yes, you can learn a new language in just 4 hours. Other thing is mastering it...

So, as this is the first language of my #12in24, I wanted to start small. I will use this video to learn the basics: Perl Programming Course for Beginners.

The basics

File structure

#!/usr/bin/env perl
# Good ol' shebang

use strict; # This does not allow execution if errors
use warnings; # This prints the errors in console

print "DEV community is cool!"; # The actual program

1; # Not always present, indicates that compilation succeeded
# Don't forget ; at the end of the lines

Data types: Scalars

my $number = 1;
my $decimal = 3.14;

print $number + $decimal; # 4.14
print $number - $decimal; # -2.14
# ...

my $string = "Follow me "; 
my $string2 = "on dev.to!";

print $string . $string2; # Follow me on dev.to!

# Variables are case sensitive
my $variable = 1;
# is different to
my $Variable = 1;

# To declare a global variable
our $global_variable = 5;

Data types: Arrays

my @array = (
    1,
    "two",
    3.14
);

print @array;
# $VAR1 = 1;
# $VAR2 = "two";
# $VAR3 = "3.14";

print $array[0]; # This will print 1
my $size = @array; 
print $size; # This will print $VAR1 = 3;

my @array2 = ( 3 .. 7 );
# $VAR1 = 3;
# $VAR2 = 4;
# $VAR3 = 5;
# $VAR4 = 6;
# $VAR5 = 7;
# If you use (  "a" .. "d" ) it will print each letter from a to d
# You can use it for array indexes as well

push @array2, 8; # Adds number 8 to the array
pop @array; # Removes last element
shift @array; # Removes first element
unshft @array, 0; # Adds element at the beginning

Subroutines

sub my_function {
    $hi = "Hello";
}
print my_function(); # This will print Hello

sub my_name( $name ) {
    print $name;
}
my_name("Alex"); # This will print Alex

Conditionals

$test = 3;

if ( $test > 1 ) {
    print "Hi!";
} 
elsif ( $test < 4 ) {
    print "How are you?";
}
else {
    print "Goodbye!";
}

Loops

$test = 0;

while ( $test < 5 ) {
    print "Count: $test";
    $test++;
} 
# Count: 0
# Count: 1
# Count: 2
# Count: 3
# Count: 4

for ( my $count = 0; $count < 3; $count++; ) {
    print "Hello"
}
# Hello
# Hello
# Hello

The video covers way more than this, I know, but these are the basics. With a little help of the documentation, I will be fine for the next sections.

Practice

Now, I will put my knowledge to test using Exercism.

Starting here!

Hello World

Hello World in Perl on Exercism

Can you solve Hello World in Perl? Improve your Perl skills with support from our world-class team of mentors.

exercism.org

I must say that Exercism complicates way too much the exercises. But anyway, it's not bad to practice.

Project

I wanted to do something related to Cybersecurity but not too complex as I am new to Perl. After some deliberation, I came up with this:

A very simple SQLi Vulnerability Finder. It is simple as it is just a PoC but can be enhanced to be usable just by adding payloads and places to check.

#!/usr/bin/env perl

use strict;
use warnings;
use LWP::UserAgent;

sub check_sql_injection {
    my ($url) = @_;

    my $payload = "' OR '1'='1";
    my $test_url = $url . "?id=" . $payload;

    my $ua = LWP::UserAgent->new;
    my $response = $ua->get($test_url);

    if ($response->content =~ /error in your SQL syntax/i) {
        return "Vulnerable to SQL Injection: $url";
    } else {
        return "Not Vulnerable: $url";
    }
}

# Prompt the user for the target URL
print "Enter the target URL: ";
my $target_url = <STDIN>;
chomp $target_url;  

# Example usage:
my $result = check_sql_injection($target_url);
print $result, "\n";

Hope you enjoyed it! See you next month learning COBOL.

💰 The Cybersecurity (or Any IT Job) Salary Myth

Alex M. Espinosa — Tue, 23 Jan 2024 17:00:00 +0000

In the dynamic world of cybersecurity, the allure of high salaries often takes center stage, creating a myth that can mislead aspiring professionals. Let's delve into the complexities of cybersecurity salaries and debunk the common misconceptions surrounding six-figure incomes in the industry.

The Hype vs. Reality

While the prospect of earning a six-figure salary in cybersecurity is undeniably attractive, it's crucial to separate hype from reality. Many training programs, universities, and influencers leverage the allure of high incomes as a marketing tool. However, the truth lies in a nuanced understanding of the factors that shape cybersecurity salaries.

Context Matters

The average cybersecurity salary varies significantly based on factors like geographical location, experience, qualifications, and industry demand. A cursory glance at median salaries may suggest a lucrative field, but a closer look reveals disparities among states and regions. Half of the United States, for instance, reports average cybersecurity salaries below the six-figure mark, emphasizing the importance of considering the cost of living.

Entry-Level Realities

The myth gains traction when considering entry-level cybersecurity positions. While Google searches may yield enticing figures, the reality is more nuanced. Median salaries for entry-level roles hover around $74,000, a respectable starting point but not necessarily reflective of the hyped six-figure promise. Variables such as company type, qualifications, certifications, and location play pivotal roles in shaping entry-level compensation.

Bridging the Skills Gap

Addressing the persistent cybersecurity skills gap remains a priority. Aspiring professionals must set realistic expectations and acknowledge the factors influencing salary levels. Negotiation for fair compensation is essential, but cultivating a realistic mindset during the initial stages of a cybersecurity career is equally crucial.

The Pursuit of Passion over Paycheck

Beyond the monetary aspect, the cybersecurity industry demands genuine interest and commitment. The field's ever-evolving nature requires continuous learning, making passion a driving force for success. While a high-income potential exists, pursuing cybersecurity solely for financial gains may lead to dissatisfaction. Striking a balance between income goals and job satisfaction is imperative for a fulfilling career.

Caution in the Training Landscape

As individuals explore cybersecurity training programs and educational avenues, it's vital to approach information with a critical mindset. Recognize that not every entry-level position guarantees a six-figure income, and success in the industry involves a combination of factors beyond financial compensation.

In dispelling the cybersecurity salary myth, it's essential to navigate the industry with informed expectations. While high incomes are achievable in the long run, the journey begins with a realistic understanding of entry-level realities, geographical nuances, and the evolving nature of cybersecurity. Pursuing passion, coupled with a balanced outlook on income expectations, ensures a gratifying and successful cybersecurity career.

Happy hacking!

Coding Bootcamps: Elevate Your Career or Stall Your Ambitions?

Alex M. Espinosa — Tue, 16 Jan 2024 16:30:00 +0000

Are coding bootcamps the golden ticket to a lucrative software development career, or are they just a bunch of hype?

On one hand, bootcamps promise to catapult you from coding novice to employable developer in a matter of months.

On the other hand, critics warn that bootcamps' accelerated pace and limited scope may leave you with a superficial understanding of programming, limiting your career growth.

So, is it bootcamp or bust? Or is there a more balanced path to becoming a software developer?

Debate is open!

Cybersecurity: Trends for 2024

Alex M. Espinosa — Tue, 09 Jan 2024 08:12:50 +0000

As we enter 2024, cybersecurity stands on the brink of significant changes. The frequency and sophistication of cyber threats challenge traditional security approaches. This article explores my top 8 cybersecurity trends for the upcoming year, including the role of AI and the growing importance of mobile security.

The Battle of AIs

The integration of artificial intelligence (AI) continues to be a pivotal factor in cybersecurity. Not only are defenders leveraging AI for threat detection and response, but cyber adversaries are also employing sophisticated AI techniques to enhance their attacks. The evolving role of AI in both offense and defense sets the stage for a relentless battle between automated systems.

Growing Importance of IoT Security

With the proliferation of Internet of Things (IoT) devices, the attack surface for cyber threats has expanded exponentially. The coming year will witness a heightened focus on securing IoT ecosystems to prevent potential breaches. Cybersecurity measures will extend beyond traditional devices to encompass a diverse range of interconnected smart devices.

Evolution of Phishing Attacks

Phishing attacks are becoming more sophisticated, employing advanced techniques to deceive even the most vigilant users. As cybercriminals refine their tactics, organizations must enhance their phishing detection and prevention mechanisms. A comprehensive approach that combines technology, awareness training, and real-time threat intelligence will be essential.

If you want to know how easy is to set up a Phishing campaign targeting WordPress users, check my article here.

Enhanced Focus on Mobile Security

The increasing reliance on mobile devices necessitates a stronger emphasis on mobile security. With a surge in mobile-centric threats, organizations must implement robust security measures to safeguard sensitive data and ensure the integrity of mobile applications. Mobile security will take center stage in cybersecurity strategies in 2024.

Zero Trust Security

The concept of Zero Trust Security, which assumes no inherent trust within or outside an organization, will gain prominence. As traditional perimeter defenses prove inadequate, organizations will adopt a Zero Trust model, requiring continuous authentication and verification for every user and device accessing their network.

Cybersecurity Skills Gap and Education

The shortage of skilled cybersecurity professionals remains a critical challenge. In 2024, addressing the skills gap will be a priority, with increased focus on educational initiatives, training programs, and collaborative efforts between academia and industry to nurture a capable workforce capable of tackling evolving threats.

Now a degree is not enough to land a cybersecurity job and companies are taking in better consideration people with industry standard certs rather than degrees.

Cybersecurity Insurance Becoming Mainstream

As cyber threats become more prevalent and damaging, the adoption of cybersecurity insurance will become mainstream. Organizations will seek comprehensive coverage to mitigate financial losses and operational disruptions resulting from cyberattacks. The insurance industry will respond with tailored policies addressing the unique challenges of the digital age.

Cyber Warfare and State-Sponsored Cyber Attacks

Geopolitical tensions will continue to spill into the digital realm, leading to an escalation in cyber warfare and state-sponsored cyber attacks. Nation-states will invest heavily in offensive cyber capabilities, making it imperative for governments and private entities alike to bolster their defenses against these sophisticated and potentially devastating cyber threats.

In conclusion, the cybersecurity landscape for 2024 is marked by a dynamic interplay of technological advancements, evolving threat landscapes, and strategic responses. Organizations must remain vigilant, adaptive, and proactive to navigate these trends and secure their digital assets effectively.

Share your thoughts and forecasts with the community!

#12in24: Trying 12 languages during 2024!

Alex M. Espinosa — Tue, 02 Jan 2024 14:45:08 +0000

Happy New Year DEV family! As a new year comes in, so do the new year resolutions.

Mine, regarding coding, is to try new programming languages and get better in the ones I already know. Hence, I thought that posting about my impressions learning new languages could be fun!

I have made a simple Python script to randomly choose the 12 languages I will be trying. The list of the languages corresponds to the languages listed in Exercism so it will be easy to practice them!

import random

list_of_languages = ["8th", "ABAP", "AWK", "Ballerina", "Bash", "C", "C#", "C++", "CFML", "Clojure", "COBOL", "CoffeeScript", "Common Lisp", "Crystal", "D", "Dart", "Delphi Pascal", "Elixir", "Elm", "Emacs Lisp", "Erlang", "F#", "Fortran", "Gleam", "Go", "Groovy", "Haskell", "Java", "JavaScript", "jq", "Julia", "Kotlin", "LFE", "Lua", "MIPS Assembly", "Nim", "Objective-C", "OCaml", "Perl", "Pharo", "PHP", "PL/SQL", "PowerShell", "Prolog", "PureScript", "Python", "R", "Racket", "ReasonML", "Red", "Ruby", "Rust", "Scala", "Scheme", "Standard ML", "Swift", "Tcl", "TypeScript", "Unison", "V", "Vim script", "Visual Basic", "Web Assembly", "Wren", "x86-64 Assembly", "Zig"]
count = 1

while count <= 12:
    language = random.choice(list_of_languages)
    print(str(count) + ". " + language)
    list_of_languages.remove(language)
    count += 1

And, after running the script...

1. Perl
2. COBOL
3. Nim
4. Go
5. 8th
6. Kotlin
7. Ruby
8. R
9. Lua
10. Elm
11. Crystal
12. jq

Boom! Not a bad batch at all! I see some interesting languages here.

To be honest, there are languages I never heard of. So it will be a nice adventure.

See you in the next post regarding basic Perl and my impressions about it!