|
|
Line 1: |
Line 1: |
| {{Event
| | #REDIRECT [[Security-foo/2022-10-10]] |
| |Title=Heap foo
| |
| |Description=Kernel 1
| |
| |Type=Meet-Up
| |
| |Date=2022-10-10
| |
| |Start=19:00
| |
| |Duration=4
| |
| |Host=hanemile, barbieauglend
| |
| |isRelevant=Yes
| |
| }}
| |
| = Heap Basics =
| |
| | |
| == Mentors ==
| |
| | |
| * {{U|hanemile}}
| |
| * {{U|barbieauglend}}
| |
| | |
| == Topics ==
| |
| | |
| * Real world heap exploitation - Linux Kernel CVE as case study.
| |
| Please go over the 4 parts of the blog post as well as the slide deck before this session, and have the target VM ready (pay attention to which kernel release this bug has been fixed, and get a earlier version!).
| |
| | |
| == Participants ==
| |
| | |
| == Materials ==
| |
| [https://blog.lexfo.fr/cve-2017-11176-linux-kernel-exploitation-part1.html CVE-2017-11176 (Start here)]
| |
| | |
| [https://keybase.pub/barbieauglend/H2HC_Linux_Kernel_Exploitation.pdf Hints for the exploit]
| |
| *
| |