Book Image

Security with Go

By : John Daniel Leon
Book Image

Security with Go

By: John Daniel Leon

Overview of this book

Go is becoming more and more popular as a language for security experts. Its wide use in server and cloud environments, its speed and ease of use, and its evident capabilities for data analysis, have made it a prime choice for developers who need to think about security. Security with Go is the first Golang security book, and it is useful for both blue team and red team applications. With this book, you will learn how to write secure software, monitor your systems, secure your data, attack systems, and extract information. Defensive topics include cryptography, forensics, packet capturing, and building secure web applications. Offensive topics include brute force, port scanning, packet injection, web scraping, social engineering, and post exploitation techniques.
Table of Contents (15 chapters)

Summary

In this chapter, we covered the basics of running a web server written in Go. You should now feel comfortable creating a basic HTTP and HTTPS server. Furthermore, you should understand the concept of middleware and know how to implement prebuilt and custom middleware using the Negroni package.

We also covered some best practices when trying to secure a web server. You should understand what a CSRF attack is, and how to prevent it. You should be able to explain local and remote file inclusion and what the risks are.

The web server in the standard library is of production quality, and it has everything you need to create a production-ready web application. There are a number of other frameworks for web applications, such as Gorilla, Revel, and Martini, but, ultimately, you will have to evaluate the features provided by each framework and see if they align with your project...