https://github.com/ravro-ir/golang_bug_hunting

Live for Go hackers (bug bounty)
https://github.com/ravro-ir/golang_bug_hunting

bugbounty clickjacking cors golang live livestream ravro recon vulnerability

Last synced: 8 months ago
JSON representation

Live for Go hackers (bug bounty)

• Host: GitHub
• URL: https://github.com/ravro-ir/golang_bug_hunting
• Owner: ravro-ir
• Created: 2022-06-30T17:56:30.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2022-08-21T06:25:53.000Z (almost 4 years ago)
• Last Synced: 2025-10-06T06:49:56.842Z (8 months ago)
• Topics: bugbounty, clickjacking, cors, golang, live, livestream, ravro, recon, vulnerability
• Language: Python
• Homepage: https://www.ravro.ir/
• Size: 62.5 KB
• Stars: 26
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Golang For Bug Hunting (Live)

 

 > In these two live sessions, I intended to teach how to write tools with `golang` for vulnerability hunting.

 

  ## Video by [@raminfp](https://github.com/raminfp)

- `Part 1 (Persian language)` - https://www.youtube.com/watch?v=GY6vrAH_SuU

- `Part 2 (Persian language)` - https://www.youtube.com/watch?v=KEMFi0V2zdM

 ## Code

 

- `Recon`

  - [Port scan slow](https://github.com/ravro-ir/golang_bug_hunting/tree/main/recon/portscan)

  - [Port scan fast](https://github.com/ravro-ir/golang_bug_hunting/tree/main/recon/portscanfast)

  - [Port scan no auth database](https://github.com/ravro-ir/golang_bug_hunting/tree/main/recon/portscannoauthdb)

  - `Arvan Cloud`

    - [CDN Finder](https://github.com/ravro-ir/golang_bug_hunting/tree/main/recon/arvan/cdn_finder)

    - [S3 Bucket Enum](https://github.com/ravro-ir/golang_bug_hunting/tree/main/recon/arvan/s3_bucket_enum)

- [Clickjacking](https://github.com/ravro-ir/golang_bug_hunting/tree/main/clickjacking)

- [CORS](https://github.com/ravro-ir/golang_bug_hunting/tree/main/cors)

- [DoS](https://github.com/ravro-ir/golang_bug_hunting/tree/main/dos)

- [OGNL Injection - CVE-2022-26134](https://github.com/ravro-ir/golang_bug_hunting/tree/main/ognl_injection)

- [Dependency Confusion](https://github.com/ravro-ir/golang_bug_hunting/tree/main/dependency_confusion)

- [S3 Bucket Takeover](https://github.com/ravro-ir/golang_bug_hunting/tree/main/s3bucket_takeover)

- [Subdomain Takeover](https://github.com/ravro-ir/golang_bug_hunting/tree/main/subdomain_takeover)

- [Path Traversal - CVE-2021-41773](https://github.com/ravro-ir/golang_bug_hunting/tree/main/path_traversal)

- [SSRF](https://github.com/ravro-ir/golang_bug_hunting/tree/main/ssrf)

- [Race Condition](https://github.com/ravro-ir/golang_bug_hunting/tree/main/race_condition)

I hope enjoy, 


Thanks, Ramin