Explore >> Select a destination

You are here

 a13xp0p0v.tech
Four Bytes of Power: Exploiting CVE-2021-26708 in the Linux kernel | Alexander Popov
| | blog.lexfo.fr
Lexfo's security blog - CVE-2017-11176: A step-by-step Linux Kernel exploitation (part 3/4)
2.2 parsecs away

Travel
| |
| | www.willsroot.io
Will's Root: corCTF 2021 Fire of Salvation Writeup: Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel
2.4 parsecs away

Travel
| | Vulnerability Research on Low-Level Systems
| | syst3mfailure.io
[corCTF 2021] Wall Of Perdition: Utilizing msg_msg Objects For Arbitrary Read And Arbitrary Write In The Linux Kernel
2.4 parsecs away

Travel
| | Wall of Perdition is the second and harder part of a two part series of kernel exploitation challenges designed by FizzBuzz101 and me for corCTF 2021. You can find the writeup for the first part, Fire of Salvation, on his blog. Unfortunately, both challenges during competition remained unsolved. Wall of Perdition consists of a vulnerable Linux Kernel Module, the bug is a 0x30 bytes Use After Free Write in kmalloc-64. With this challenge, we present a new approach to transform the Linux kernel's IPC mechanism, more specifically, message operations, in an exploitation toolkit. Let's get started!
| | a13xp0p0v.github.io
Linux kernel heap quarantine versus use-after-free exploits | Alexander Popov
6.5 parsecs away

Travel
| It's 2020. Quarantines are everywhere - and here I'm writing about one, too. But this quarantine is of a different kind. In this article I'll describe the Linux Kernel Heap Quarantine that I developed for mitigating kernel use-after-free exploitation.