|
You are here |
pwning.systems | ||
| | | | |
duasynt.com
|
|
| | | | | Universal Linux kernel heap spray | |
| | | | |
albocoder.github.io
|
|
| | | | | [AI summary] This blog post details the process of using static analysis with LLVM bitcode to identify the slab cache for kernel objects in the Linux kernel. | |
| | | | |
xcellerator.github.io
|
|
| | | | | In all the playing around I've been doing with Linux kernel modules, I decided to see what would happen if you tried to load one from a Docker container. It turns out that privileged containers (or just those with CAP_SYS_MODULE) are able to use the sys_init_module() and sys_finit_module() syscalls - which are what's used to load kernel modules. As all containers share their kernel with the host (unlike VMs), this clearly results in yet another complete system compromise. | |
| | | | |
tech.co
|
|
| | | The old rules of coding are being rewritten. Learn how vibe coding can help you bring your app to life, with a few simple prompts. | ||