linux – Page 12 – WindowsTechs.com

How should be set an unprotect environment on modern linux to test an old buffer overflow example?

Posted on August 14, 2024 by nostromo

Reading a technical paper on the issue I wanted to test it on my computer.
The idea is to provoke privilege escalation (change on the whoami output from peter to root) through a buffer overflow.
The example is quite old, so I guess actual … Continue reading How should be set an unprotect environment on modern linux to test an old buffer overflow example?→

“0.0.0.0-Day” vulnerability affects Chrome, Safari and Firefox

Posted on August 9, 2024 by Zeljka Zorz

A “0.0.0.0-Day” vulnerability affecting Chrome, Safari and Firefox can be – and has been – exploited by attackers to gain access to services on internal networks, Oligo Security researchers have revealed. The vulnerability stems… Continue reading “0.0.0.0-Day” vulnerability affects Chrome, Safari and Firefox→

Format string attack with printf

Posted on August 7, 2024 by Ricardi

We can do a format string attack in the following way:
$ ./program.out $(echo -en ‘\xa8\xd1\xff\xff’)%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%n

Address of name: ffffd1ac, secret: ffffd1a8

ffffd849.ffffd1a8.565561b7.3.0.0.ffffd684.f7d6e70c.f7feec36… Continue reading Format string attack with printf→

Encrypted LUKS fs inside a file: sparse or not?

Posted on August 7, 2024 by Luis A. Florit

I have a LUKS encrypted file filled with around 160GB of data that I use a lot. For safety, I created the file with 400GB. That is of course a lot of wasted space. So I switched to a sparse file, basically following the advice here, simply… Continue reading Encrypted LUKS fs inside a file: sparse or not?→

Using the server hostname as a variable in openssl.cnf for the CN?

Posted on August 6, 2024 by whitedragon87

Is there a variable I can use to fill the openssl.cnf file with the Linux server hostname?
I know you can use -subj fields, but I specifically want to prefill the openssl.cnf if possible as I can then use it elsewhere in the configuration … Continue reading Using the server hostname as a variable in openssl.cnf for the CN?→

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous

Posted on August 5, 2024 by Eduard Kovacs

A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.
The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek.
Continue reading New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous→

At Last, Chumby is Ready

Posted on August 5, 2024 by Matthew Carlson

It has been two years, but the slow and steady progress that [Doug Brown] has been making towards bringing a modern Linux kernel to the Chumby has approached the point …read more Continue reading At Last, Chumby is Ready→

How “professional” ransomware variants boost cybercrime groups

Posted on August 1, 2024 by GReAT

Kaspersky researchers investigated three ransomware groups that tapped newly built malware samples based on Babuk, Lockbit, Chaos and others, while lacking professional resources. Continue reading How “professional” ransomware variants boost cybercrime groups→

Restoring lost encrypted partition [migrated]

Posted on July 27, 2024 by username

I accidantally formatted the entire hard disk (quick format into NTFS)
it contains multiple partitions of different filesystem

ext4 encrypted with luks (whole partition encryption)
ext4 no encrypted
ntfs not encrtpted

I restored partitio… Continue reading Restoring lost encrypted partition [migrated]→

Linux Mint 22 “Wilma” is Now Available

Posted on July 25, 2024 by Paul Thurrott

Linux Mint has released the next major long-term support version of its popular Linux distribution for desktop PCs.
The post Linux Mint 22 “Wilma” is Now Available appeared first on Thurrott.com.
Continue reading Linux Mint 22 “Wilma” is Now Available→