Roberto Clapis, security engineer at Secure Network, was present as a speaker at Black Hat Asia 2017.
On May 6th at HackInBo Spring edition 2017 (Bologna, IT) he presented “GO GET MY/VULNERABILITIES”.
The talk dives into golang scheduling internals and shows how the differences between classical threads and goroutines can lead to the introduction of new vulnerabilities. Goroutines, one of the go language unique features, is explained in details, showing how easy it is to misuse them. Every issue those features can introduce has been explained along with good code practices in order to provide attendees with the instruments to detect and prevent them.