
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
vc.maxkaya.com/mirrors/hardwareid
Advanced tools

… because sometimes you just need to reliably identify your hardwares.
Get the library with
go get github.com/sandipmavani/hardwareid
You can also add the cli app directly to your $GOPATH/bin with
go get github.com/sandipmavani/hardwareid/cmd/hardwareid
package main
import (
"fmt"
"log"
"github.com/sandipmavani/hardwareid"
)
func main() {
id, err := hardwareid.ID()
if err != nil {
log.Fatal(err)
}
fmt.Println(id)
}
Or even better, use securely hashed hardware IDs:
package main
import (
"fmt"
"log"
"github.com/sandipmavani/hardwareid"
)
func main() {
id, err := hardwareid.ProtectedID("myAppName")
if err != nil {
log.Fatal(err)
}
fmt.Println(id)
}
Returns original hardware address as a string like MM:MM:MM:SS:SS:SS.
Returns hashed version of the hardware ID as a string. The hash is generated in a cryptographically secure way, using a fixed, application-specific key (calculates HMAC-SHA256 of the app ID, keyed by the hardware ID).
This package returns the hardware address mac address of your system.
Do something along these lines:
package main
import (
"crypto/hmac"
"crypto/sha256"
"fmt"
"github.com/sandipmavani/hardwareid"
)
const appKey = "WowSuchNiceApp"
func main() {
id, _ := hardwareid.ID()
fmt.Println(protect(appKey, id))
// Output: dbabdb7baa54845f9bec96e2e8a87be2d01794c66fdebac3df7edd857f3d9f97
}
func protect(appID, id string) string {
mac := hmac.New(sha256.New, []byte(id))
mac.Write([]byte(appID))
return fmt.Sprintf("%x", mac.Sum(nil))
}
Or simply use the convenience API call:
hashedID, err := hardwareid.ProtectedID("myAppName")
The Go gopher was created by Denis Brodbeck with gopherize.me, based on original artwork from Renee French.
The MIT License (MIT) — Denis Brodbeck. Please have a look at the LICENSE.md for more details.
FAQs
Unknown package
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.