Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Security with Go
  • Table Of Contents Toc
  • Feedback & Rating feedback
Security with Go

Security with Go

By : John Daniel Leon, Gaekwad
4 (6)
Buy this Book
close
close
Security with Go

Security with Go

4 (6)
By: John Daniel Leon, Gaekwad
Buy this Book

Overview of this book

Go is becoming more and more popular as a language for security experts. Its wide use in server and cloud environments, its speed and ease of use, and its evident capabilities for data analysis, have made it a prime choice for developers who need to think about security. Security with Go is the first Golang security book, and it is useful for both blue team and red team applications. With this book, you will learn how to write secure software, monitor your systems, secure your data, attack systems, and extract information. Defensive topics include cryptography, forensics, packet capturing, and building secure web applications. Offensive topics include brute force, port scanning, packet injection, web scraping, social engineering, and post exploitation techniques.
Table of Contents (15 chapters)
close
close
close
Lock Free Chapter
1
Introduction to Security with Go
Icon
Introduction to Security with Go
Icon
About Go
Icon
Why use Go for security?
Icon
Development environment
Icon
Running Go examples
Icon
Summary
2
The Go Programming Language
Icon
The Go Programming Language
Icon
Go language specification
Icon
The Go playground
Icon
A tour of Go
Icon
Keywords
Icon
Notes about source code
Icon
Comments
Icon
Types
Icon
Control structures
Icon
Defer
Icon
Packages
Icon
Classes
Icon
Goroutines
Icon
Getting help and documentation
Icon
Summary
3
Working with Files
Icon
Working with Files
Icon
File basics
Icon
Reading and writing
Icon
Archives
Icon
Compression
Icon
Creating temporary files and directories
Icon
Downloading a file over HTTP
Icon
Summary
4
Forensics
Icon
Forensics
Icon
Files
Icon
Steganography
Icon
Network
Icon
Summary
5
Packet Capturing and Injection
Icon
Packet Capturing and Injection
Icon
Prerequisites
Icon
Getting a list of network devices
Icon
Capturing packets
Icon
Capturing with filters
Icon
Saving to the pcap file
Icon
Reading from a pcap file
Icon
Decoding packet layers
Icon
Creating a custom layer
Icon
Converting bytes to and from packets
Icon
Creating and sending packets
Icon
Decoding packets faster
Icon
Summary
6
Cryptography
Icon
Cryptography
Icon
Hashing
Icon
Encryption
Icon
Summary
7
Secure Shell (SSH)
Icon
Secure Shell (SSH)
Icon
Using the Go SSH client
Icon
Summary
8
Brute Force
chevron up
Icon
Brute Force
Icon
Brute forcing HTTP basic authentication
Icon
Brute forcing the HTML login form
Icon
Brute forcing SSH
Icon
Brute forcing database login
Icon
Summary
9
Web Applications
Icon
Web Applications
Icon
HTTP server
Icon
HTTP client
Icon
Summary
10
Web Scraping
Icon
Web Scraping
Icon
Web scraping fundamentals
Icon
Using the goquery package for web scraping
Icon
How to protect against web scraping
Icon
Summary
11
Host Discovery and Enumeration
Icon
Host Discovery and Enumeration
Icon
TCP and UDP sockets
Icon
Port scanning
Icon
Grabbing a banner from a service
Icon
Creating a TCP proxy
Icon
Finding named hosts on a network
Icon
Fuzzing a network service
Icon
Summary
12
Social Engineering
Icon
Social Engineering
Icon
Gathering intel via JSON REST API
Icon
Sending phishing emails with SMTP
Icon
Generating QR codes
Icon
Honeypots
Icon
Sandboxing
Icon
Summary
13
Post Exploitation
Icon
Post Exploitation
Icon
Cross compiling
Icon
Creating bind shells
Icon
Creating reverse bind shells
Icon
Creating web shells
Icon
Finding writable files
Icon
Changing file timestamp
Icon
Changing file permissions
Icon
Changing file ownership
Icon
Summary
14
Conclusions
Icon
Conclusions
Icon
Recapping the topics you have learned
Icon
More thoughts on the usage of Go
Icon
What I hope you take away from the book
Icon
Be aware of legal, ethical, and technical boundaries
Icon
Where to go from here
Icon
Getting help and learning more
15
Another Book You May Enjoy
Icon
Another Book You May Enjoy
Icon
Leave a review – let other readers know what you think

Brute forcing SSH

Secure Shell or SSH supports a few authentication mechanisms. If a server only supports public key authentication, a brute force attempt is near futile. This example will only look at password authentication with SSH.

To protect against attacks like these, implement rate-limiting or a tool such as fail2ban that locks out accounts for a short duration when a number of failed login attempts are detected. Also disable the root remote login. Some people like to put SSH on a non-standard port, but end up putting it on high number non-restricted ports such as 2222, which is not a good idea. If you use a high number non privileged port such as 2222, another low privilege user could hijack the port and start running their own service in its place if it ever went down. Put your SSH daemon on a port lower than 1024 if you want to change it from the default.

This attack...

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Security with Go
End of Section 8
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon