Security assessment techniques for Go projects
https://blog.trailofbits.com/2019/11/07/attacking-go-vr-ttps/ [blog.trailofbits.com]
2019-11-08 19:22
With a better understanding of the root causes, we searched for existing tooling to help us quickly and effectively instrument client codebases. The result was a sample of static and dynamic open-source tools, including several that were Go-agnostic. To complement these tools, we also identified several compiler configurations that help with instrumentation.
Useful for developers who aren’t auditors as well.
source: L