Build A Buffer Overflow Exploit To Learn Golang – Project-Based Learning

One thing I regret about my career is that I waited so long to learn to code. That said, I’m still nowhere near where I need to be and I still have a TON of leveling-up to do. To that end, I’ve decided that Golang is going to be my language of choice.

Now, I really don’t enjoy highly structured training and I find that I learn better by giving myself a challenge, or goal to accomplish and that was the impetus of this video.

When I was learning the basics of buffer overflows, I found Vulnserver to be useful and so I thought I’d go back to my roots and see if I couldn’t whip up a golang-based version.

Github Repo for the Code:
https://github.com/daniellowrie/Golang-BufferOverflow

Immunity Debugger:
https://www.immunityinc.com/products/debugger

Buy Me a Coffee:
https://www.buymeacoffee.com/daniellowrie

Vulnserver:
https://thegreycorner.com/vulnserver.html
https://github.com/stephenbradshaw/vulnserver

Mona for Immunity:
https://github.com/corelan/mona

Golang Standard Library Package ‘net’:
https://pkg.go.dev/[email protected]

Repeating a String for Specific Number of Times in Golang:
https://www.geeksforgeeeks.org/repeating-a-string-for-specific-number-of-times-in-golang/#

Using Command-Line Arguments with Golang:
https://gobyexample.com/command-line-arguments

================
Chapters
================
00:00 What are we doing today?
02:56 The setup
05:55 TCP Networking with Golang
12:10 Fuzzing with Golang
18:56 Controlling EIP with Golang
19:28 SQUIRREL! How I Learned All This
21:36 Back to EIP Tomfoolery
27:16 Controlling EIP and CPU Registers
31:50 The Final Exploit – Poppin’ Shellz
38:04 [import “mentoring”]

============================================

#golang #cybersecurity #ethicalhacking #hacking