Product details

  • Publisher : No Starch Press (February 4, 2020)
  • Publication date : February 4, 2020
  • Language : English
  • File size : 9483 KB
  • Print length : 368 pages
  • by Tom Steele (Author), Chris Patten (Author), Dan Kottmann (Author)
  • Format : epub、pdf、mobi

Like the best-selling Black Hat PythonBlack Hat Go explores the darker side of the popular Go programming language. This collection of short scripts will help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset.

Black Hat Go explores the darker side of Go, the popular programming language revered by hackers for its simplicity, efficiency, and reliability. It provides an arsenal of practical tactics from the perspective of security practitioners and hackers to help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset, all using the power of Go.

You’ll begin your journey with a basic overview of Go’s syntax and philosophy and then start to explore examples that you can leverage for tool development, including common network protocols like HTTP, DNS, and SMB. You’ll then dig into various tactics and problems that penetration testers encounter, addressing things like data pilfering, packet sniffing, and exploit development. You’ll create dynamic, pluggable tools before diving into cryptography, attacking Microsoft Windows, and implementing steganography.

You’ll learn how to:
  Make performant tools that can be used for your own security projects
  Create usable tools that interact with remote APIs
  Scrape arbitrary HTML data
  Use Go’s standard package, net/http, for building HTTP servers
  Write your own DNS server and proxy
  Use DNS tunneling to establish a C2 channel out of a restrictive network
  Create a vulnerability fuzzer to discover an application’s security weaknesses
  Use plug-ins and extensions to future-proof productsBuild an RC2 symmetric-key brute-forcer
  Implant data within a Portable Network Graphics (PNG) image.

Are you ready to add to your arsenal of security tools? Then let’s Go!


Editorial Reviews

Review

“It’s been incredibly fun having these kinds of projects, where you’re not just learning syntax, you’re not just learning the mechanics of Go, but you have things to build that are kind of fun.” —Johnny Boursiquot, Go Time Podcast 

About the Author

Tom SteeleDan Kottmann, and Chris Patten share over 30 years in penetration testing and offensive security experience, and have delivered multiple Go training and development sessions.


资源下载付费资源价格2立即支付
支付后请复制提取码进入网盘下载,电子书格式请参考“基本信息”说明, 如未显示下载按钮,请刷新网页或扫码关注公众号联系客服处理。