Security-foo/2023-06-05

From Chaosdorf Wiki
< Security-foo
Revision as of 23:45, 30 May 2023 by 172.58.43.239 (talk)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Security foo
ROP and kernel debugging - Setup
Art Meet-Up
Datum 2023-06-05
Start 19:00
Dauer 4h
Host Barbieauglend, wirklichniemand
Relevant? Yes

ROP

We continue on our journey of exploiting the Linux kernel - now we are going to review and build our ROP chain and setup our environment for kernel debugging :)

Please install the tools and test them beforehand !

  • md.chaosdorf.de/security-foo

Mentors

Reading Materials

Pre-work for kernel debug:

  • blog.packagecloud.io/how-to-extract-and-disassmble-a-linux-kernel-image-vmlinuz/ - For getting the linux kernel binary image
  • www.golinuxcloud.com/systemtap-tutorial-linux-example/ - To get started with `systemtap`
  • cscope.sourceforge.net/cscope_vim_tutorial.html - no help navigate C code from vim

Pre-work for ROP chain:

  • github.com/JonathanSalwan/ROPgadget - to get a list of ROP gadgets from our binary