Ben Kurtz - Golang Malware part 2

Update: 2022-04-19

Description

Topics covered:

Golang

Hells gate, direct system calls on windows

How system calls are normally done in windows, Windows Kernel

Evading anti malware detection on Windows with Banana Phone

How to get started writing c2's in golang.

Sliver, Opensource golang command and control.

Red team mindset

Evolution of programmers, bad patterns

CVE's, common vulnerability enumeration number

Auditing source code

Javascript frameworks

Cross site scripting, SQL injection and XXE(Xml External Entity) for scanning internal networks and exfiltrating data.

Building secure code bases

Security Engineers

Supervisory control and data acquisition (SCADA)

log4j

Remote of execution and directory traversal in Java, Java's file constructor, LDAP and DirContext

Golang for micro services

Python

Common bad patterns

LDAP injection

Modern security nightmares

Remote debug protocols

String concatenation

Resistance to current modern implementation and safer framework.

Finding bugs in games that can be used to attack power-plants.

Dependency management

Backdoor factory

Bettercap

Man in the middle

Spoofing BGP

BGP hijacks

Links:

https://github.com/Binject

https://github.com/C-Sto/BananaPhone

https://github.com/BishopFox/sliver

https://cve.mitre.org/

https://owasp.org/www-community/vulnerabilities/XML_External_Entity_(XXE)_Processing

https://www.youtube.com/watch?v=FkuUpg5FO2g

https://en.wikipedia.org/wiki/SCADA

https://en.wikipedia.org/wiki/Log4j

https://www.coding-bootcamps.com/blog/build-containerized-applications-with-golang-on-kubernetes.html

https://docs.oracle.com/javase/8/docs/api/index.html?javax/naming/directory/DirContext.html

https://apache.org/foundation/foundation-projects.html

https://docs.oracle.com/javase/8/docs/api/index.html?javax/management/JMX.html

https://en.wikipedia.org/wiki/Java_Debug_Wire_Protocol

https://www.freecodecamp.org/news/big-o-notation-why-it-matters-and-why-it-doesnt-1674cfa8a23c/

https://github.com/bettercap/bettercap

https://www.bettercap.org/

https://bgpmon.net/

https://en.wikipedia.org/wiki/BGP_hijacking

https://labs.ripe.net/author/vastur/bgplay-integrated-in-ripestat/

https://www.symbolcrash.com/podcast/

https://www.youtube.com/symbolcrash

Comments

In Channel

New Year special 2024

2024-12-2902:04:30

Cat shaped hardware hacking with Alex Lynd

2023-04-1459:56

Darknet Operation Security with Sam Bent Part 1

2022-12-2701:12:07

Bug Bounty Bootcamp with Vickie lii

2022-11-2438:02

CodeQL with Alvaro Munoz

2022-10-2453:38

SecBSD - The penetration testing distribution for the BSD community | BSDBandit on Hacker Talk

2022-09-2601:02:15

Podman with Daniel Walsh

2022-09-1958:25

Social engineering | Scam calls with Mattias Borg

2022-09-0651:23

Vulnhub | G0t mi1k on Hacker Talk

2022-08-2335:40

Wifi Wardriving with Mike Spicer | d4rkm4tter

2022-08-0848:28

AI-Powered Super Hackers | Steve Phillips Part 2

2022-07-1101:08:46

Scanning the internet with Lucas Lundgren

2022-07-0558:44

Hackers on Planet Earth with Greg Newby and Mitch Altman

2022-06-2001:05:26

Black Hat Python with Tim Arnold and Justin Seitz

2022-05-3101:04:04

Ben Kurtz - Golang Malware part 2

2022-04-1901:06:48

Golang Malware with Ben Kurtz Part 1

2022-03-1601:06:07

Programmable Philosophy with Steve Phillips - Part 1

2022-06-1401:02:48

Compromising Covid-19 systems with Pavol Luptak

2022-05-1653:56

David Jacoby

2022-05-0201:13:18

Threat intelligence with Dan Demeter

2022-03-0301:35:02

00:00

Ben Kurtz - Golang Malware part 2

#box-pro-ellipsis-17568697718538{-webkit-line-clamp:2;}Ben Kurtz - Golang Malware part 2

Ben Kurtz - Golang Malware part 2

Firo Solutions LTD

Ben Kurtz - Golang Malware part 2