main is usually a function: Writing kernel exploits

Saturday, January 28, 2012

Writing kernel exploits

Yesterday I gave a talk about writing kernel exploits. I've posted the slides [PDF]. Here is the original description:

Did you know that a NULL pointer can compromise your entire system? Do you know how UNIX pipes, multithreading, and an obscure network protocol from 1981 are combined to take over Linux machines today? OS kernels are full of strange and interesting vulnerabilities, thanks to the subtle nature of systems code. And the kernel's ultimate authority is the ultimate prize for an attacker.

In this talk you will learn how kernel exploits work, with detailed code examples. Compared to userspace, exploiting the kernel requires a whole different bag of tricks, and we'll cover some of the most important ones. We will focus on Linux systems and x86 hardware, though most ideas will generalize. We'll start with a few toy examples, then look at some real, high-profile Linux exploits from the past two years.

You will also see how to protect your own Linux machines against kernel exploits. We'll talk about the continual cat-and-mouse game between system administrators and those who would attack even hardened kernels.

Thanks again to SIPB for giving me a venue to talk about whatever I find interesting.

9 comments:

AnonymousJanuary 28, 2012 at 10:34 AM
I'm surprised that computers are still able to work at all.
ReplyDelete
Mikhail GlushenkovJanuary 28, 2012 at 12:52 PM
Thank you, I really enjoyed reading your slides!
ReplyDelete
AnonymousFebruary 1, 2012 at 10:21 AM
Nice presentation! Please keep posting stuff like this in the future :)

Also... where was this given? Was there more material like this?
ReplyDelete
Doug SlaterNovember 16, 2012 at 7:32 AM
Interesting slides. Is there a recording of the talk?
ReplyDelete
Shawn CNovember 20, 2012 at 11:48 PM
It's really nice to read! Thanks for sharing the information, Keegan!
ReplyDelete
jaring safetyMay 1, 2015 at 7:42 PM
Nice article, thanks for the information. It's very complete information. I will bookmark for next reference
jaring futsal | jaring golf | jaring pengaman proyek |
jaring pengaman bangunan | jaring pengaman gedung
http://www.jual-jaring.blogspot.com/
http://www.agen-jaring.blogspot.com/
http://www.pancasamudera-safetynet.blogspot.com/
http://www.toko-jaring.blogspot.com/
http://www.pusat-jaring.blogspot.com/
http://jualjaringpengaman.blogspot.com/
https://pancasamudera.wordpress.com/
https://pasangjaringfutsal.wordpress.com/
https://jualtambangmurah.wordpress.com/
https://tokojaring.wordpress.com/
https://jualjaringfutsal.wordpress.com/
https://jaringfutsal.wordpress.com/

ReplyDelete
Sachin AgarwalMay 27, 2016 at 9:53 AM
Packers and Movers Gurgaon
Packers and Movers Delhi
Packers and Movers Bangalore
Packers and Movers Pune
Packers and Movers Hyderabad
Packers and Movers Mumbai
ReplyDelete
Anurag 77August 18, 2016 at 11:10 PM
I love it. I hope that more and more Blogger will use this feature in the future, because it just makes the internet better I think!
Voot Apk Download Free
Bigg Boss Season 10 Watch Online
Google Play Store Apk Download Free
JioPlay APK Download

ReplyDelete
putri lubisAugust 28, 2017 at 8:51 AM

Thank you for sharing in this article
I can learn a lot and could also be a reference
I am happy to find your website and can join to comment

Share and Klick Info Blokwalking. Hammer Of Thor
=> Jual Hammer Of Thor Di Bogor
=> Jual Hammer Of Thor Di Medan
=> Jual Hammer Of Thor Di Semarang
=> Jual Hammer Of Thor Di Bandung
=> Jual Hammer Of Thor Di Bandar Lampung
Obat Good Man | Obat pembesar penis | Vimax Asli | Vimax Extender

ReplyDelete

Subscribe to: Post Comments (Atom)