book

Black Hat Go

by Tom Steele, Chris Patten, Dan Kottmann

January 2020

Intermediate to advanced

368 pages

9h 46m

English

No Starch Press

Read now

Unlock full access

Who This Book Is ForWhat This Book Isn’tWhy Use Go for Hacking?Why You Might Not Love GoChapter Overview
Setting Up a Development EnvironmentUnderstanding Go SyntaxSummary

Understanding the TCP HandshakeBypassing Firewalls with Port ForwardingWriting a TCP ScannerBuilding a TCP ProxySummary
HTTP Fundamentals with GoBuilding an HTTP Client That Interacts with ShodanInteracting with MetasploitParsing Document Metadata with Bing ScrapingSummary
HTTP Server BasicsCredential HarvestingKeylogging with the WebSocket APIMultiplexing Command-and-ControlSummary
Writing DNS ClientsWriting DNS ServersSummary
The SMB PackageUnderstanding SMBGuessing Passwords with SMBReusing Passwords with the Pass-the-Hash TechniqueRecovering NTLM PasswordsSummary
Setting Up Databases with DockerConnecting and Querying Databases in GoBuilding a Database MinerPillaging a FilesystemSummary
Setting Up Your EnvironmentIdentifying Devices by Using the pcap SubpackageLive Capturing and Filtering ResultsSniffing and Displaying Cleartext User CredentialsPort Scanning Through SYN-flood ProtectionsSummary
Creating a FuzzerPorting Exploits to GoCreating Shellcode in GoSummary
Using Go’s Native Plug-in SystemBuilding Plug-ins in LuaSummary
Reviewing Basic Cryptography ConceptsUnderstanding the Standard Crypto LibraryExploring HashingAuthenticating MessagesEncrypting DataBrute-Forcing RC2Summary
The Windows API’s OpenProcess() FunctionThe unsafe.Pointer and uintptr TypesPerforming Process Injection with the syscall PackageThe Portable Executable FileUsing C with GoSummary
Exploring the PNG FormatReading Image Byte DataWriting Image Byte Data to Implant a PayloadEncoding and Decoding Image Byte Data by Using XORSummaryAdditional Exercises
Getting StartedDefining and Building the gRPC APICreating the ServerCreating the Client ImplantBuilding the Admin ComponentRunning the RATImproving the RATSummary

Content preview from Black Hat Go

14BUILDING A COMMAND-AND-CONTROL RAT

In this chapter, we’ll tie together several lessons from the previous chapters to build a basic command and control (C2) remote access Trojan (RAT). A RAT is a tool used by attackers to remotely perform actions on a compromised victim’s machine, such as accessing the filesystem, executing code, and sniffing network traffic.

Building this RAT requires building three separate tools: a client implant, a server, and an admin component. The client implant is the portion of the RAT that runs on a compromised workstation. The server is what will interact with the client implant, much like the way Cobalt Strike’s team ...