Collaborate Disseminate
Latest version of UnC0ver uses unpatched zero-day exploit to take complete control of devices, even those running iOS 13.5. Continue reading New iOS Jailbreak Tool Works on iPhone Models iOS 11 to iOS 13.5
I’m familiar with creating Linux memory profiles as stated here. However, this is assuming that I have access to the live system which often times is not the case.
I heard there is a way to build the profile with the compiled linux kernel… Continue reading How to build Linux Volatility Profiles With the Compiled Kernel
My Mac had a kernel security level of 0. Then, I changed the kernel security level to 1.
Here’s how I changed it to 1: sysctl kern.securelevel=1
I’d like to change it back to 0 because my hosts file has a system immutable flag on it.
Th… Continue reading How to change kernel security level? [closed]
So i was running this command: sysdig evt.dir=\< and not ( ) , and there were a few results that seemed kind of strange. There are two processes, one named gmain and the other InputThread. They’re threads, so they don’t show up on top…. Continue reading What is gmain and Input thread?
When I run sysctl kern.securelevel on my Mac, it gives me a value of 0.
I’d like to increase the kernel security level on my computer. I want it to give me a 1.
Can I do that?
Continue reading Can I change my kernel security level? [closed]
I was experimenting to see if I can make an ROP chain within the kernel. In the kernel debugging mode, I can make the first jump to an arbitrary gadget address without any problem. But the problem occurs after that. If I want to continue t… Continue reading Kernel ROP crashes running OS
I am trying to make a restriction to procfs like only a certain groups of members can perform read and write actions.
kernel document says we can do that by setting hidepid and gid in /etc/fstab. It will restrict the malicious user from m… Continue reading What is the best way to restrict /proc fs from malicious users (linux)?
I’d like to have your opinion about if a UEFI rootkit could infect a kernel inside an ISO that is saved in a bootable usb “distro”. I mean I have a usb stick with installed easy2boot. Inside easy2boot there are various ISOs which can be bo… Continue reading UEFI rootkit could infect a kernel of an iso inside an other iso?
I am scanning Linux server which has two kernels versions stored, when I run following command I can see for example this version:
user@host [~]# rpm -q kernel
kernel-3.10.0-327.el7.x86_64
kernel-3.10.0-1062.4.1.el7.x86_64
While trying to solve old ctf task (https://blog.frizn.fr/plaidctf-2013/pwn-400-servr) I’ve encountered a situation which I don’t understand.
TLTR
After escalating process privileges my exploit invokes system(“/bin/sh”). Th… Continue reading Kernel exploit fails after executing first command