Saturday, January 28, 2012

Writing kernel exploits

Yesterday I gave a talk about writing kernel exploits. I've posted the slides [PDF]. Here is the original description:

Did you know that a NULL pointer can compromise your entire system? Do you know how UNIX pipes, multithreading, and an obscure network protocol from 1981 are combined to take over Linux machines today? OS kernels are full of strange and interesting vulnerabilities, thanks to the subtle nature of systems code. And the kernel's ultimate authority is the ultimate prize for an attacker.

In this talk you will learn how kernel exploits work, with detailed code examples. Compared to userspace, exploiting the kernel requires a whole different bag of tricks, and we'll cover some of the most important ones. We will focus on Linux systems and x86 hardware, though most ideas will generalize. We'll start with a few toy examples, then look at some real, high-profile Linux exploits from the past two years.

You will also see how to protect your own Linux machines against kernel exploits. We'll talk about the continual cat-and-mouse game between system administrators and those who would attack even hardened kernels.

Thanks again to SIPB for giving me a venue to talk about whatever I find interesting.

Posted by keegan at 9:02 AM
Labels: , , , ,

41 comments:

  1. AnonymousJanuary 28, 2012 at 10:34 AM

    I'm surprised that computers are still able to work at all.

    ReplyDelete
  2. Mikhail GlushenkovJanuary 28, 2012 at 12:52 PM

    Thank you, I really enjoyed reading your slides!

    ReplyDelete
  3. AnonymousFebruary 1, 2012 at 10:21 AM

    Nice presentation! Please keep posting stuff like this in the future :)

    Also... where was this given? Was there more material like this?

    ReplyDelete
  4. Doug SlaterNovember 16, 2012 at 7:32 AM

    Interesting slides. Is there a recording of the talk?

    ReplyDelete
  5. UnknownNovember 20, 2012 at 11:48 PM

    It's really nice to read! Thanks for sharing the information, Keegan!

    ReplyDelete
  6. putri lubisAugust 28, 2017 at 8:51 AM


    Thank you for sharing in this article
    I can learn a lot and could also be a reference
    I am happy to find your website and can join to comment

    Share and Klick Info Blokwalking. Hammer Of Thor
    => Jual Hammer Of Thor Di Bogor
    => Jual Hammer Of Thor Di Medan
    => Jual Hammer Of Thor Di Semarang
    => Jual Hammer Of Thor Di Bandung
    => Jual Hammer Of Thor Di Bandar Lampung
    Obat Good Man | Obat pembesar penis | Vimax Asli | Vimax Extender


    ReplyDelete
  7. hole ioNovember 22, 2019 at 7:44 PM

    Great post! I didn’t knowral of these resources and I’m going to go check them out now!

    ReplyDelete
  8. Taylor BaraJanuary 28, 2020 at 10:18 AM

    This comment has been removed by the author.

    ReplyDelete
  9. Open apk fileSeptember 12, 2020 at 2:38 AM

    How to open apk files on several devices

    ReplyDelete
  10. Open bin filesSeptember 23, 2020 at 7:32 AM

    Open bin files

    ReplyDelete
  11. Nox appSeptember 23, 2020 at 7:33 AM

    Nox-app

    ReplyDelete
  12. Open DLL filesSeptember 28, 2020 at 5:49 AM

    Open DLL files

    ReplyDelete
  13. chaneeNovember 1, 2020 at 7:48 AM

    Welcome to My Blog
    กลับลำ แตงกวา ไม่ได้เป็นทอม บอกแค่แหย่เล่น

    ReplyDelete
  14. edok69December 4, 2020 at 1:48 AM

    Suggest good information in this message, click here.
    emeraldgardensnw.com
    lelandbchapman.com

    ReplyDelete
  15. UnknownNovember 1, 2021 at 4:50 AM

    Hello there! Quick question that’s completely off topic.
    Do you know how to make your site mobile friendly? My website looks weird when viewing from my iphone.
    I’m trying to find a template or plugin that might
    be able to resolve this issue. If you have any recommendations, please share.
    Thank you!

    website:경마



    ReplyDelete
  16. magosucomwepNovember 10, 2021 at 6:45 AM

    This article gives the light in which we can observe the reality. This is very nice one and gives in-depth information. Thanks for this nice article
    국내경마

    magosucowep

    ReplyDelete
  17. KUPZJanuary 22, 2022 at 6:44 PM

    That is really attention-grabbing, You are a very skilled blogger. I’ve joined your rss feed and look forward to searching for more of your fantastic post. Also, I have shared your website in my social networks

    야설
    오피헌터
    외국인출장
    마사지
    카지노

    ReplyDelete
  18. AnonymousFebruary 4, 2022 at 3:48 PM

    https://gameeffect.xyz Lots of people have adored the video game of baseball for several years. There are fans around the globe, from committed very little-leaguers to die-difficult spectators. This information has ideas to demonstrate how pleasant baseball actually is.

    ReplyDelete
  19. AnonymousFebruary 4, 2022 at 7:03 PM

    https://gamebegin.xyz You are able to practice by yourself. A pitching device allows you to established the rate of your tennis ball. By reloading many baseballs in to the equipment, you may training hitting without the need for a pitcher. This electronic digital device is perfect for these who wish to exercise baseball by yourself. Pitching equipment may be found in your nearby showing off goods retail store.

    ReplyDelete
  20. AnonymousFebruary 5, 2022 at 11:07 AM

    ビット コイン 賭け Obtaining a work out spouse can substantially increase your muscle mass-developing results. Your lover can be quite a useful source of enthusiasm for staying on your workout program, and forcing you to definitely optimize your efforts when you workout. Having a reputable lover to sort out with can also help make you stay secure simply because you will usually have got a spotter.

    ReplyDelete
  21. sportstoto365February 23, 2022 at 5:26 PM

    This site was… how do you say it? Relevant!! Finally I’ve found something which helped me. Cheers! 토토사이트

    ReplyDelete
  22. powerballsiteFebruary 23, 2022 at 5:33 PM

    Very neat post. Really looking forward to read more. Keep writing. 파워볼사이트

    ReplyDelete
  23. casinositelinkFebruary 23, 2022 at 5:33 PM

    Hi to every one, it’s really a pleasant for me to pay a visit this site, it consists of useful Information. Appreciate you sharing! 바카라사이트

    ReplyDelete
  24. SKMarch 8, 2022 at 4:14 AM

    Really Good Work Done By You...However, stopping by with great quality writing, it's hard to see any good blog today.
    PROcrackerr
    Helium Music Manager CRACK

    ReplyDelete
  25. AdyanMarch 9, 2022 at 5:58 AM

    Really Good Work Done By You...However, stopping by with great quality writing, it's hard to see any good blog today.
    KaliCrack
    Advanced SystemCare Pro CRACK

    ReplyDelete
  26. 먹튀검증May 23, 2022 at 1:34 AM

    I think this is an informative post and it is very useful and knowledgeable. therefore, I would like to thank you for the efforts you have made in writing this article :D 먹튀검증


    ReplyDelete
  27. casinositeone.JDSMay 25, 2022 at 12:48 AM

    So informative things are provided here,I really happy to read this post,I was just imagine about it and you provided me the correct information I really bookmark it,for further . 바카라사이트

    ReplyDelete
  28. casinosite777info.JDSMay 25, 2022 at 12:49 AM


    You make so many great points here that I read your article a couple of times. 카지노사이트

    ReplyDelete
  29. casinositezone.JDSMay 25, 2022 at 12:49 AM

    Your views are in accordance with my own for the most part. This is great content for your readers. 카지노사이트

    ReplyDelete
  30. casinositeguidecom.JDSMay 25, 2022 at 12:50 AM

    It’s exceptionally useful and you are clearly extremely proficient around there. Appreciate it for your efforts. Feel free to visit my website; 바카라사이트

    ReplyDelete
  31. AnonymousJune 21, 2022 at 11:36 PM

    ook ahead to in the hunt for more of your fantastic post. Also, I have shared your web site in my social networks . I found your blog using msn. This is a really well written article. I will be sure to bookmark it and return to read more of your useful information. Thanks for the post. I'll certainly return. You're amazing! Thanks! 가입머니

    ReplyDelete
  32. AnonymousJune 22, 2022 at 1:27 AM

    hich has been very famous whether or not in thailand or neighboring countries and additionally meet the worldwide on line casino requirements of the world as properly similarly . 오래된토토사이트

    ReplyDelete
  33. AnonymousOctober 18, 2022 at 12:10 AM

    Really cool article!! How about writing it with relevant content? like my blog.
    카지노먹튀

    ReplyDelete
  34. AnonymousOctober 22, 2022 at 3:56 AM

    총판출장샵
    총판출장샵
    고고출장샵
    심심출장샵
    서울출장샵
    서울출장샵
    홍천출장샵
    서울출장샵

    ReplyDelete
  35. TatianaJune 26, 2023 at 10:11 AM


    You're so smart

    ReplyDelete
  36. casinositerankJuly 20, 2023 at 8:04 PM


    very interesting information and i really glad to getting this information

    ReplyDelete
  37. gwolfJuly 20, 2023 at 8:04 PM

    This article is very helpful and interesting too. Keep doing this in future.

    ReplyDelete
  38. sportstoto365July 20, 2023 at 8:05 PM

    thank you again for allowing me to read these posts, and have a nice day today. Thank youuu.

    ReplyDelete
  39. AnonymousSeptember 19, 2023 at 2:35 AM

    I aduch 광주오피

    ReplyDelete
  40. 핑크출장샵 핫밤출장샵February 24, 2024 at 6:05 AM

    단밤콜걸
    콜걸
    서울콜걸
    부산콜걸
    인천콜걸
    광주콜걸
    세종콜걸
    울산콜걸

    ReplyDelete
  41. AnonymousMarch 9, 2024 at 10:21 AM

    pesksoft.com

    ReplyDelete

Subscribe to: Post Comments (Atom)