**dump_stack()** @[email protected] · Jun 14, 2020, 21:45

**dump_stack()** @[email protected] · Jun 14, 2020, 21:45

dump_stack() @[email protected]

Jun 14, 2020, 21:45

out-of-tree v1.4.0 has been released: https://github.com/jollheef/out-of-tree/releases/tag/v1.4.0

Added ability to preload any supported kernel module just by a URL. It can be used to develop new mitigations and test existing exploits against them.

Checkout example of usage with LKRG here: https://github.com/jollheef/out-of-tree/blob/master/examples/preload/.out-of-tree.toml

**dump_stack()** @[email protected] · 2020-06-14T22:24:57Z

dump_stack() @[email protected]

Here are results of testing exploits from https://github.com/jollheef/lpe with the LKRG by Openwall (https://www.openwall.com/lkrg/)

For unprepared (no code to bypass LKRG) exploits it actually works well. Only CVE-2016-5195 (aka Dirty COW) still works.

9a7b33d8167ea093.png

Jun 14, 2020, 22:24 · · ·

**kravietz 🦇** @[email protected] · Jun 14, 2020, 23:20

**kravietz 🦇** @[email protected] · Jun 14, 2020, 23:20

Jun 14, 2020, 23:20

kravietz 🦇 @[email protected]

@dump_stack

Good to know. Actually everyone is looking for an exploit that would work under LKRG as you've probably seen on the mailing list :)

Trending now

Resources

Developers

What is Mastodon?

lor.sh

More…