Andrea Ferraris - Rev3rse Security Blog

Andrea Ferraris

Kernel exploitation - CVE-2017-5123 PoC e Writeup

Kernel exploitation - CVE-2017-5123 PoC e Writeup

Local Privilege Escalation effettuando Bypass di SMEP/SMAP (no KASLR) > "The waitid implementation in upstream kernels did not restrict the target destination to copy information results. This can allow local users to write to otherwise protected kernel memory, which can lead to privilege escalation. [ https://access.redhat.com/security/cve/

BELEAAF (CSAW-2019-Quals) writeup con Unicorn

BELEAAF (CSAW-2019-Quals) writeup con Unicorn

Unicorn is a lightweight multi-platform, multi-architecture CPU emulator framework e fa parte della "Reversing Trilogy" insieme a Capstone-engine e K eystone-engine. Nello specifico, Unicorn ci permette di emulare del codice for fun and profit. -------------------------------------------------------------------------------- Unicorn Framework [https://www.unicorn-engine.org/] Unicorn framework è un CPU Emulator: ci permette di