Andrea Ferraris

2 posts published

Kernel exploitation - CVE-2017-5123 PoC e Writeup

Local Privilege Escalation effettuando Bypass di SMEP/SMAP (no KASLR) "The waitid implementation in upstream kernels did not restrict the target destination to copy information results. This can allow local users to write to otherwise protected kernel memory, which can lead to privilege escalation. "XKCD PointersIntroduzioneIn questo articolo analizzeremo una

BELEAAF (CSAW-2019-Quals) writeup con Unicorn

Unicorn is a lightweight multi-platform, multi-architecture CPU emulator framework e fa parte della "Reversing Trilogy" insieme a Capstone-engine e Keystone-engine. Nello specifico, Unicorn ci permette di emulare del codice for fun and profit. Unicorn FrameworkUnicorn framework è un CPU Emulator: ci permette di emulare codice nativo per varie architetture (Arm,