[B! go][vulnerability] ishideoã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

ishideo id:ishideo

goã¨vulnerabilityã«é–¢ã™ã‚‹ishideoã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (11)

${{author_name}}$

{{author_name}} {{created}}

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

{{#following_bookmarks}}

${{author_name}}$

{{author_name}} {{created}}

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

{{/following_bookmarks}}

{{/is_wiped}}

GitHub - ozansz/binaryedge-challenge-amileaked
ishideo 2021/03/07
amlleaked

golang

go

binaryedge

leak

vulnerability

security

github
ãƒªãƒ³ã‚¯
GitHub - haccer/subjack: Subdomain Takeover tool written in Go
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
ishideo 2020/07/27
subjack

subdomain

takeover

go

golang

github

security

vulnerability

pentest
ãƒªãƒ³ã‚¯
DNSæ”¹ç«„æ¤œçŸ¥ãƒ„ãƒ¼ãƒ«ã‚’golangã§ä½œã£ãŸ(Slacké€šçŸ¥ä»˜ã) - Code Day's Night
DNSã®NSãƒ¬ã‚³ãƒ¼ãƒ‰ã€MXãƒ¬ã‚³ãƒ¼ãƒ‰ã®æ”¹ç«„ã‚’æ¤œçŸ¥ï¼ˆå¤‰æ›´æ¤œçŸ¥ï¼‰ã—ã€ã‚ªãƒ—ã‚·ãƒ§ãƒ³ã§Slacké€šçŸ¥ã‚‚ã§ãã‚‹ãƒ„ãƒ¼ãƒ«ã‚’å…¬é–‹ã—ã¾ã—ãŸã€‚ https://github.com/ichikaway/nschecker Goè¨€èªžã§é–‹ç™ºã—ã€Linuxã¨Macã®ãƒã‚¤ãƒŠãƒªã‚‚ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã§ãã¾ã™ã€‚ ã™ãã«å®Ÿè¡Œã§ãã‚‹ãŸã‚ã€cronæŒ‡å®šã—ã¦ãŠã‘ã°æ„å›³ã—ãªã„ãƒ¬ã‚³ãƒ¼ãƒ‰ã®å¤‰æ›´ãŒã‚ã‹ã‚Šã¾ã™ã€‚ ä½œã£ãŸçµŒç·¯ æœ€è¿‘ã€ãƒ‰ãƒ¡ã‚¤ãƒ³ãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã®äº‹ä»¶ã‚’ç›®ã«ã™ã‚‹ã‚ˆã«ãªã‚Šã¾ã—ãŸã€‚ DNSè¨å®šã®æ”¹ã–ã‚“ã«ã‚ˆã‚‹ãƒ‰ãƒ¡ã‚¤ãƒ³åãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«æ³¨æ„å–šèµ·ï¼ˆJPRSï¼‰ | ScanNet Security 2020å¹´6æœˆã«ã‚³ã‚¤ãƒ³ãƒã‚§ãƒƒã‚¯ã®ãƒ‰ãƒ¡ã‚¤ãƒ³ãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯äº‹ä»¶ãŒèµ·ãã¦ã„ã¾ã™ã€‚ ã‚³ã‚¤ãƒ³ãƒã‚§ãƒƒã‚¯ã®ãƒ‰ãƒ¡ã‚¤ãƒ³ãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã®æ‰‹æ³•ã‚’èª¿æŸ»ã—ãŸ - Shooting!!! ã“ã®è¨˜äº‹ã‚’èªã‚€ã¨ã€æ”¹ç«„ã•ã‚ŒãŸãƒ¬ã‚³ãƒ¼ãƒ‰ã¯ã€ns-1515.aws dns-"0"61.orgã®ã‚ˆã†ãªä¸€è¦‹æ£ã—ãã†ã ãŒ
ishideo 2020/07/27
dns

golang

go

slack

security

vulnerability

nschecker

registrar

domain-hijacking

name-server
ãƒªãƒ³ã‚¯
GitHub - projectdiscovery/dnsprobe: DNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.
ishideo 2020/06/11
golang

go

dns

dnsprobe

security

vulnerability

subdomain

bug-bounty

github
ãƒªãƒ³ã‚¯
GitHub - tomnomnom/burl: A Broken-URL Checker
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
ishideo 2020/06/11
burl

url

broken

checker

vulnerability

security

golang

go

github

tomnomnom
ãƒªãƒ³ã‚¯
GitHub - hakluke/hakrawler: Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
ishideo 2020/06/08
hakrawler

go

golang

endpoint

github

security

vulnerability

javascript

sitemap.xml

wayback-machine
ãƒªãƒ³ã‚¯
Vulsã®ã‚³ãƒ¼ãƒ‰ã‚’èªã‚€ ãã®ï¼’ go-cve-dictionary ã‚’ç†è§£ã™ã‚‹ã€ãƒã‚°ã‚’è¦‹ã¤ã‘ã¦ãƒ—ãƒ«ãƒªã‚¯ã‚’å‡ºã—ã¦ãƒžãƒ¼ã‚¸ã•ã‚Œã‚‹ã¾ã§ - Security Index
å‰å›žã€Vulsã®ã‚³ãƒ¼ãƒ‰ã‚’èªã‚€ ãã®ï¼‘ å…¨ä½“åƒã®æŠŠæ¡ã§ã–ã£ãã‚Šã¨scanã‚³ãƒžãƒ³ãƒ‰å‘¨ã‚Šã®ããƒ¼ã†ã‚³ãƒ¼ãƒ‰ã¨å®Ÿè¡Œæ™‚ã®æµã‚Œã®ç†è§£ã‚’è¡Œã„ã¾ã—ãŸã€‚ ä»Šå›žã¯ã€Vulsã®ä¸ã§åˆ©ç”¨ã•ã‚Œã¦ã„ã‚‹ go-cve-dictionary ã«ã¤ã„ã¦ã‚½ãƒ¼ã‚¹ã‚³ãƒ¼ãƒ‰ã‚’èªã‚“ã§ã€ç†è§£ã‚’ã—ã¦ã„ããŸã„ã¨æ€ã„ã¾ã™ã€‚ ã¾ãŸã€ä»Šå›žã¯ã‚½ãƒ¼ã‚¹ã‚³ãƒ¼ãƒ‰ã‚’ç¢ºèªã—ã¦ã„ãä¸ã§ãƒã‚°ã‚’ç™ºè¦‹ã—ãƒ—ãƒ«ãƒªã‚¯ã‚’å‡ºã—ã¦ã¿ã¾ã—ãŸã®ã§ãƒ—ãƒ«ãƒªã‚¯ã®æŠ•ã’æ–¹ã«ã¤ã„ã¦ã‚‚ç°¡å˜ã«è§£èª¬ã—ã¦ã„ããŸã„ã¨æ€ã„ã¾ã™ã€‚ (è¿½è¨˜ 2019/11/23) ç„¡äº‹ãƒ—ãƒ«ãƒªã‚¯ãŒãƒžãƒ¼ã‚¸ã•ã‚Œã¾ã—ãŸï¼ go-cve-dictionaryã®ç‰¹å¾´ ã‚½ãƒ¼ã‚¹ã‚³ãƒ¼ãƒ‰ main.go commands/ commands/fetchnvd.go 1. ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹æŽ¥ç¶š 2. metaæƒ…å ±ã®å–å¾— 3. metaæƒ…å ±ã‚ˆã‚Šæ›´æ–°ãŒå¿…è¦ã‹ã©ã†ã‹åˆ¤æ– (éŽåŽ»ã®metaæƒ…å ±ã¨æ¯”è¼ƒ) 4. NVDã®è„†å¼±æ€§æƒ…å ±ã®åŽé›†ã€å¤‰æ› 5. è„†å¼±æ€§æƒ…å ±ã‚’ãƒ‡ãƒ¼ã‚¿
ishideo 2019/11/18
vuls

go-cve-dictionary

golang

go

bug

pull-request

vulnerability

security
ãƒªãƒ³ã‚¯
Vulsã¯ã©ã†ã‚„ã£ã¦è„†å¼±æ€§ã‚’è¦‹ã¤ã‘ã‚‹ã‹ - Qiita
Deleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article? ã¯ã˜ã‚ã« VulsãŒã©ã†ã‚„ã£ã¦ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã•ã‚ŒãŸãƒ‘ãƒƒã‚±ãƒ¼ã‚¸ã¨ãã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã«å¯¾å¿œã™ã‚‹CVEã‚’è¦‹ã¤ã‘å‡ºã™ã®ã‹ç–‘å•ã«æ€ã„ã¾ã—ãŸã€‚ Golangã‚‚Vulsã‚‚ä½•ã‚‚åˆ†ã‹ã‚‰ãªã„ã®ã§é–“é•ã£ã¦ãŸã‚‰çªã£è¾¼ã‚“ã§ãã ã•ã„ é–¢æ•°å‘¼ã³å‡ºã—ãƒªã‚¹ãƒˆï¼ˆï¼Ÿ ã“ã†ã„ã†ã¨ãã©ã†ã„ã†å›³ã«ã™ã‚Œã°è‰¯ã„ã‹ã‚ã‹ã‚“ãªã„ã§ã™ãâ€¦ ãƒãƒ¼ã‚«ãƒ«ã®CentOSã‚’Deep Scanã™ã‚‹å ´åˆã‚’ä»®å®šã—ã¦ã„ã¾ã™ã€‚ä¸»è¦ãªã‚‚ã®ã ã‘æŠœãå‡ºã—ã¦ã¾ã™ã€‚ ()ã¯æ·±ã•ï¼Ÿã¿ãŸã„ãªã‚‚ã®ã®ã¤ã‚‚ã‚Šã§ã™ (0) commands/scan.go Execute vuls scanã•ã‚ŒãŸã¨ãå‘¼ã³å‡ºã•ã‚Œã‚‹ (1) scan/ser
ishideo 2019/11/14
golang

vuls

qiita

vulnerability

security

osint

go
ãƒªãƒ³ã‚¯
GitHub - future-architect/vuls: Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
For a system administrator, having to perform security vulnerability analysis and software update on a daily basis can be a burden. To avoid downtime in a production environment, it is common for a system administrator to choose not to use the automatic update option provided by the package manager and to perform update manually. This leads to the following probl ems. The system administrator will
ishideo 2019/08/15
vuls

go

golang

vulnerability

scanner

detection

security

linux

github
ãƒªãƒ³ã‚¯
è„†å¼±æ€§è¨ºæ–ãƒ„ãƒ¼ãƒ«Vulsã‚’ä½¿ã† - ã”ã¡ã†ã•æ°‘ã®è¦šãˆæ›¸ã
ã¯ã˜ã‚ã« è„†å¼±æ€§æ¤œæŸ»ãƒ„ãƒ¼ãƒ«ã«ã¯æœ‰å„Ÿã®ã‚‚ã®ã€ç„¡å„Ÿã®ã‚‚ã®æ§˜ã€…ãªã‚‚ã®ãŒå˜åœ¨ã™ã‚‹ã€‚ã™ã¹ã¦ã®è„†å¼±æ€§ã®æ¤œçŸ¥ã¯ç„¡ç†ãªã®ã§é©åˆ‡ãªè„†å¼±æ€§æ¤œæŸ»ãƒ„ãƒ¼ãƒ«ã‚’ç”¨ã„ã‚‹ã“ã¨ãŒã‚·ã‚¹ãƒ†ãƒ ã®è„†å¼±æ€§ã‚’ãªãã™ã†ãˆã§é‡è¦ã§ã‚ã‚‹ã€‚ ã§ã¯ã©ã†ã„ã£ãŸæ¡ä»¶ã®æ™‚ã«ã©ã®ãƒ„ãƒ¼ãƒ«ã‚’ä½¿ãˆã°ã„ã„ã®ã‹ã¯èª¿ã¹ãªã‘ã‚Œã°ã‚ã‹ã‚‰ãªã„ã€‚ä»Šå›žã¯Vulsã‚’èª¿ã¹ã‚‹ Vulsã¨ã¯ Vulsã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ« IPAãŒVulsã«é–¢ã—ã¦ã¯ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã¨ä½¿ã„æ–¹å«ã‚è³‡æ–™ã‚’å‡ºã—ã¦ã„ã¾ã™ã€‚ https://www.ipa.go.jp/files/000071584.pdf ä»Šå›žã¯ãã‚Œã‚’ãªãžã£ãŸè¨˜äº‹ã¨ãªã‚Šã¾ã™ã€‚å°‘ã—ã ã‘ã‚³ãƒžãƒ³ãƒ‰ãŒå¤‰ã‚ã£ã¦ã‚‹ã€ãƒãƒ¼ã‚¸ãƒ§ãƒ³ãŒæ–°ã—ã„ã¨ã‹ã‚ã‚Šã¾ã™ãŒå•é¡Œãªã‚“ã¦ã»ã¨ã‚“ã©ã‚ã‚Šã¾ã›ã‚“ã€‚ Vulsã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«æ‰‹å‹•ç·¨ äº‹å‰æº–å‚™ ã“ã“ã§ã¯vulsã‚’ä½¿ã†ãŸã‚ã«å¿…è¦ãªãƒ‘ãƒƒã‚±ãƒ¼ã‚¸ç‰ã‚’å…¥æ‰‹ã—ã¾ã™ã€‚ vulsã‚’ä½¿ã†ãŸã‚ã«ã¯sqlite, gcc, git, make, wget, goã«ãªã‚Š
ishideo 2019/08/15
vuls

tools

golang

go

vulnerability

security

scanner

detection

ipa
ãƒªãƒ³ã‚¯
test1
ishideo 2019/08/07
go

golang

vulnerability

secure-coding

security

gist
ãƒªãƒ³ã‚¯
1

ãŠçŸ¥ã‚‰ã›

ã‚‚ã£ã¨èªã‚€

å…¬å¼Twitter

@HatenaBookmark
ãƒªãƒªãƒ¼ã‚¹ã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“ã‚¹ã®ãŠçŸ¥ã‚‰ã›
@hatebu
æœ€æ–°ã®äººæ°—ã‚¨ãƒ³ãƒˆãƒªãƒ¼ã®é…ä¿¡

ã‚ãƒ¼ãƒœãƒ¼ãƒ‰ã‚·ãƒ§ãƒ¼ãƒˆã‚«ãƒƒãƒˆä¸€è¦§

jæ¬¡ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

kå‰ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

lã‚ã¨ã§èªã‚€

eã‚³ãƒ¡ãƒ³ãƒˆä¸€è¦§ã‚’é–‹ã

oãƒšãƒ¼ã‚¸ã‚’é–‹ã

è¨å®šã‚’å¤‰æ›´ã—ã¾ã—ãŸx