domingo, 19 de abril de 2020

goBox - GO Sandbox To Run Untrusted Code


GO sandbox to run untrusted code.
goBox uses Ptrace to hook into READ syscalls, giving you the option to accept or deny syscalls before they are executed.

Usage
Usage of ./gobox:

  gobox [FLAGS] command

  flags:
    -h Print Usage.
    -n value
        A glob pattern for automatically blocking file reads.
    -y value
        A glob pattern for automatically allowing file reads.

Use cases

You want to install anything
> gobox -n "/etc/password.txt" npm install sketchy-module

  BLOCKED READ on /etc/password.txt
> gobox -n "/etc/password.txt" bash <(curl  https://danger.zone/install.sh)

  BLOCKED READ on /etc/password.txt

You are interested in what file reads you favourite program makes.
Sure you could use strace, but it references file descriptors goBox makes the this much easier at a glance by printing the absolute path of the fd.
> gobox ls
Wanting to READ /usr/lib/x86_64-linux-gnu/libselinux.so.1 [y/n]
NOTE: It's definitely a better idea to encrypt all your sensitive data, goBox should probably only be used when that is inconvenient or impractical.
NOTE: I haven't made any effort for cross-x compatibility so it currently only works on linux. I'd happily accept patches to improve portability.




via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com
Related links

  1. Pentest Tools Apk
  2. Hacker Search Tools
  3. Hack Tools Mac
  4. Hacking Tools Github
  5. Tools For Hacker
  6. Hacker Tools Apk Download
  7. Nsa Hacker Tools
  8. Hacking Tools Download
  9. Hacker Tools Github
  10. Hacker Tools Free Download
  11. Hacker
  12. Hacking Tools For Mac
  13. Hacker Tools Apk
  14. New Hack Tools
  15. Pentest Tools For Mac
  16. Hack Tools Download
  17. Pentest Tools Website Vulnerability
Publicado por en

No hay comentarios:

Publicar un comentario

Suscribirse a: Enviar comentarios (Atom)