Trying something new, let me know what you think of this video in the comments below. Hoping to record adding Dependency Injection to this program next week, but if there are a lot of comments about this video being too advanced could always do an "Episode 0" going over more golang basics. So be sure to leave comments about what you want related to Golang!
00:00 - Introduction
01:30 - Going over LDAP Injection, showing we can log in with a wild card for username and password
02:27 - Showing the request in BurpSuite, going over how we can enumerate data via Boolean Injection and wild card behavior
06:43 - Quickly going over Binary Search/Divide and Conquer, unfortunately, we cannot use it, but good to know for other Boolean Injections
08:45 - Start of creating our program, creating a TestPassword function, so we can replicate what we did in BurpSuite
16:15 - Creating a function that generates a lower alpha-numeric character set for us to use
20:40 - Starting the Bruteforce Logic, making a function that will bruteforce a single character
24:30 - Making the Bruteforce function, which will bruteforce each character of the password
26:30 - Talking about an optimization we can do and how many requests each method of bruteforce would do
29:07 - Creating the Prune Charset function, which will reduce our charset to only those that are in the password
32:13 - Going over each function, cleaning up some if/then statements
Support the originator by clicking the read the rest link below.
