Linux Kernel exploitation Tutorial.

Hi, I am Lazneca.0x0

These files are the example files used at "https://www.lazenca.net/display/TEC/07.Linux+Kernel". I hope that I will be able to use the text that I wrote and these files to help people who are new to Hacking's exploit technology to understand the technology a little easier.

All my writings are written in Korean. If someone can translate the contents on my site in English. Please help me.

Site

• Web site : https://www.lazenca.net/
• Facebook: https://www.facebook.com/Lazenca.0x0/

Basic exploit techniques.

• Basic exploit techniques

Tutorial list

01.Development of Kernel Module

• 01.Hello world!
• 02.Character Device Drivers
• 03.ioctl(Input/Output control)
• 04.Creating a kernel module to privilege escalation

02.Debugging kernel and modules

03.Linux Kernel Exploitation Tutorial

• 01.Stack smashing(32bit) & Return-to-user(ret2usr)
• 02.Stack smashing(64bit) & Return-to-user(ret2usr)
• 03.Stack smashing(64bit) & ROP
• 04.Write-what-where(Arbitrary Memory Overwrite)(feat.ret2usr)
• 05.Null pointer dereference(32bit & 64bit)
• 06.Use-After-Free(UAF) (feat.struct cred)
• 07.Use-After-Free(UAF) (feat.tty_struct)
• 08.ret2dir(return-to-direct-mapped memory)

04.Kernel Self-Protection

• 01.Kernel Address Space Layout Randomization (KASLR)
• 02.Segregation of kernel memory from userspace memory(x86's SMEP/SMAP, ARM's PXN/PAN)