Security-foo/2023-06-05: Difference between revisions

From Chaosdorf Wiki
(Created page with "{{Event |Title=Security foo |Description=ROP and kernel debugging - Setup |Type=Meet-Up |Date=2023-06-05 |Start=19:00 |Duration=4 |Host=Barbieauglend |isRelevant=Yes }}")
 
No edit summary
 
Line 6: Line 6:
|Start=19:00
|Start=19:00
|Duration=4
|Duration=4
|Host=Barbieauglend
|Host=Barbieauglend, wirklichniemand
|isRelevant=Yes
|isRelevant=Yes
}}
}}
= ROP =
We continue on our journey of exploiting the Linux kernel - now we are going to review and build our ROP chain and setup our environment for kernel debugging :)
Please install the tools and test them beforehand !
* md.chaosdorf.de/security-foo
== Mentors ==
* {{U|barbieauglend}}
* {{U|wirklichniemand}}
== Reading Materials ==
Pre-work for kernel debug:
* blog.packagecloud.io/how-to-extract-and-disassmble-a-linux-kernel-image-vmlinuz/ - For getting the linux kernel binary image
* www.golinuxcloud.com/systemtap-tutorial-linux-example/ - To get started with `systemtap`
* cscope.sourceforge.net/cscope_vim_tutorial.html - no help navigate C code from vim
Pre-work for ROP chain:
* github.com/JonathanSalwan/ROPgadget - to get a list of ROP gadgets from our binary

Latest revision as of 23:45, 30 May 2023

Security foo
ROP and kernel debugging - Setup
Art Meet-Up
Datum 2023-06-05
Start 19:00
Dauer 4h
Host Barbieauglend, wirklichniemand
Relevant? Yes

ROP[edit | edit source]

We continue on our journey of exploiting the Linux kernel - now we are going to review and build our ROP chain and setup our environment for kernel debugging :)

Please install the tools and test them beforehand !

  • md.chaosdorf.de/security-foo

Mentors[edit | edit source]

Reading Materials[edit | edit source]

Pre-work for kernel debug:

  • blog.packagecloud.io/how-to-extract-and-disassmble-a-linux-kernel-image-vmlinuz/ - For getting the linux kernel binary image
  • www.golinuxcloud.com/systemtap-tutorial-linux-example/ - To get started with `systemtap`
  • cscope.sourceforge.net/cscope_vim_tutorial.html - no help navigate C code from vim

Pre-work for ROP chain:

  • github.com/JonathanSalwan/ROPgadget - to get a list of ROP gadgets from our binary