Collaborate Disseminate
We’re a company selling embedded devices. Our devices use u-boot & Linux, both being GPL and therefore we have to release the sourcecode as used to build our binary.
We’re in the process of implementing more security measures (both to… Continue reading Is there a reasoning encrypting a GPL binary where I have to publish the sourcecode?
Why hide kernel symbols?
Quote
Anyone with basic knowledge of kernel exploitation knows how important information gathering is to reliable exploitation. This protection hides the kernel symbols from various places that an attacker cou… Continue reading How to hide Kernel Symbols in Linux Kernel Image? Recompliation?
In Linux, every process holds its own file descriptor table, which keeps references to all opened files and file-like devices. This table is managed by the kernel.
Is it possible that a non-privileged user modifies a file de… Continue reading Can a non-privileged user modify the file descriptor table of an elevated process?
Suppose that there were a security system in an Android kernel meant to prevent exploits that have arbitrary kernel memory read/write from getting root privileges. This system,
Kills a process by using force_sig() with SIGK… Continue reading Countering a system killing UID/GID=0 processes in Android
A patch is currently under revision but has not yet been incorporated into the Linux kernel. Continue reading Four-Year-Old Critical Linux Wi-Fi Bug Allows System Compromise
I’ve been reading a writeup of the pwnable.kr challenge ‘syscall’ (http://alkalinesecurity.com/blog/ctf-writeups/pwnable-challenge-syscall/)
While the exploitation steps make sense, there is one thing that has confused me:
… Continue reading Understanding an exploit for a vulnerable syscall
I am second-year CS student, I know C, OOP concepts, x86 architecture, reverse engineering basics, TCP/IP stack and OS concepts, also I love Linux OS.
I have just one question:
Is it a mandatory to learn in depth a Linux kern… Continue reading Question about Linux kernel and ARM architecture
I’m currently working on a prototype. I need RSA Encryption at the Linux Kernel level,although from my research, it seems that the Linux Kernel only supports signature verification. When I look through the code in rsa.c and… Continue reading Does Linux Kernel Support RSA Encryption/Decryption?
I’m learning about privilege escalation.
I’m trying exploits in my lab machine like vulnhub.
In my opinion, if I successfully run the exploit linux/local/udev/net_link, I can read etc/shadow and etc/passwd files. But I already have root ri… Continue reading Is exploit different from the kernel level or root?
We are currently developing a security software for Windows. This application consists of a service running in user mode and a driver in kernel mode. These two need to communicate, so that the service can get data from the dr… Continue reading Securing IPC between kernel and user-mode application