| for a in $(git branch -a | grep remotes | awk '{print $1}' | sed 's/remotes\/origin\///'); do echo -n ${a} -\ ; git clean -d -x -f > /dev/null 2>&1 ;git checkout ${a} > /dev/null 2>&1; du -hs -I .git .;done |
| package main | |
| import ( | |
| "github.com/tehmoon/errors" | |
| "fmt" | |
| ) | |
| // This example is similar to "github.com/pkg/errors" from Dave Cheney | |
| // The idea is to declare simple error and have them chained using WrapErr | |
| // so it's easy to have the complete chain of errors if needed. |
| package main | |
| import ( | |
| "github.com/pkg/errors" | |
| "github.com/gorilla/mux" | |
| "time" | |
| "net/http" | |
| "net" | |
| "log" | |
| "fmt" |
| Check if the process is vulnerable to DNS rebinding attack. | |
| First run the server after changing the code: | |
| $> go server.go | |
| Find the ip address of one of you iface and then add this line to /etc/hosts: | |
| x.x.x.x blihblah | |
| export WORDCHARS='*?_[]~=&;!#$%^(){}' | |
| setopt HIST_IGNORE_SPACE |
| package main | |
| import ( | |
| "io" | |
| "syscall" | |
| "os" | |
| "errors" | |
| ) | |
| func main() { |
| package main | |
| import ( | |
| "os" | |
| "os/exec" | |
| "io" | |
| "strings" | |
| "github.com/kr/pty" | |
| ) |
Format0 introduces format string vulnerabilities.
The vuln relies on the fact that user input is not sanitized and can be used as format string fed into the printf family.
In this example sprintf() is used. It takes at least 2 arguments, the destination's string and the source's string.
The idea is to do a classic buffer overflow and write 0xdeadbeef to target.
Here's the following exploit:
| package main | |
| // From https://play.golang.org/p/dXBizm4xl3 | |
| import ( | |
| "io" | |
| "fmt" | |
| "net" | |
| "net/http" | |
| "os" |
| package main | |
| import ( | |
| "net/http" | |
| "fmt" | |
| "io" | |
| "os" | |
| "log" | |
| "crypto/x509" | |
| "crypto/x509/pkix" |