Introduction to Go and its Ecosystem

Security concepts

• Memory safety,  Garbage collector, Error handling, Concurrency

Golang common vulnerabilities

• Panicking function

• Arithmetic errors

• Out-of-bounds panics

• SIGSEGV / Nil pointer dereference

• Resource exhaustion / OOM, Stack overflow

Advanced vulnerabilities

• Unsafe code

• Data races, Race conditions, 

• Memory Leak, Logic errors

• Concurrency issues (Deadlock, Goroutine leak, etc.)

• Web Application Vulnerabilities (SQLI, XSS, etc.)

Attack surface discovery & Auditing tools