User contributions

(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)

• 18:22, 10 December 2015 diff hist +140‎ Exploit Methods/Userspace execution ‎
• 22:02, 18 November 2015 diff hist +47‎ Exploit Methods/Text overwrite ‎ →‎Examples current
• 21:49, 17 November 2015 diff hist +544‎ Kernel Self Protection Project ‎ principles
• 21:40, 17 November 2015 diff hist +129‎ Exploit Methods/Userspace data usage ‎ →‎Examples
• 01:50, 5 November 2015 diff hist +147‎ Bug Classes/Kernel pointer leak ‎ →‎Details current
• 23:25, 4 November 2015 diff hist +557‎ N Exploit Methods/Reused code chunks ‎ Created page with "= Details = This is more generally knows as Return Oriented Programming (ROP) or Jump Oriented Programming (JOP), but ultimately boils down to using the kernel's own executabl..."
• 23:20, 4 November 2015 diff hist +689‎ N Exploit Methods/Userspace data usage ‎ Created page with "= Details = Sometimes an attacker won't be able to control the instruction pointer directly, but they will be able to redirect the dereference a structure or other pointer. In..."
• 23:15, 4 November 2015 diff hist +626‎ N Exploit Methods/Userspace execution ‎ Created page with "= Details = Once an attacker has gain control over the instruction pointers, it must be aimed somewhere. The place where attackers have the most control over memory layout ten..."
• 23:10, 4 November 2015 diff hist +702‎ N Exploit Methods/Function pointer overwrite ‎ Created page with "= Details = When an attacker has a write primitive, they can start function pointers to redirect execution. Function pointers exist in a large number of places in the kernel r..."
• 23:00, 4 November 2015 diff hist +376‎ N Exploit Methods/Text overwrite ‎ Created page with "= Details = If an attacker has a write primitive and knows where the kernel is located in memory, they could overwrite functions to do whatever they wanted. Protecting against..."
• 22:55, 4 November 2015 diff hist +2‎ Exploit Methods/Kernel location ‎ →‎Details current
• 22:54, 4 November 2015 diff hist −2‎ m Exploit Methods/Kernel location ‎ →‎Mitigations
• 22:54, 4 November 2015 diff hist +876‎ N Exploit Methods/Kernel location ‎ Created page with "= Details = Finding the kernel location can be an important first step for exploitation. Without it, for example, it's harder to make kernel function calls for privilege escal..."
• 22:46, 4 November 2015 diff hist +96‎ Active Projects ‎ →‎ASLR for kernel code current
• 22:44, 4 November 2015 diff hist +641‎ N Bug Classes/Uninitialized variables ‎ Created page with "= Details = When variables (on either stack or heap) are used without being explicitly initialized, behavior is "undefined". In reality, "uninitialized" just means "still has ..." current
• 22:35, 4 November 2015 diff hist +5‎ m Kernel Self Protection Project ‎ →‎Mission Statement
• 22:34, 4 November 2015 diff hist +890‎ N Bug Classes/Kernel pointer leak ‎ Created page with "= Details = When a kernel memory address (any of text, stack, heap, etc) leaks into userspace, attackers can learn potentially sensitive information about data layout, kernel ..."
• 22:17, 4 November 2015 diff hist +613‎ N Bug Classes/Format string injection ‎ Created page with "= Details = When an attacker supplied string is accidentally passed to format string parsing, the attacker can manipulate the resulting output. The write primitive available ..."
• 22:11, 4 November 2015 diff hist +506‎ N Bug Classes/Heap overflow ‎ Created page with "= Details = Heap overflows tend to occur due to integer overflows or otherwise broken bounds checking. Exploits overwrite adjacent heap memory, or manipulate the heap metadata..." current
• 22:02, 4 November 2015 diff hist +799‎ N Bug Classes/Integer overflow ‎ Created page with "= Details = Integer overflows (or underflows) occur when a multiplication happens that exceeds the size that can be represented by the datatype, generally wrapping around. Th..."
• 21:48, 4 November 2015 diff hist +1‎ Bug Classes/Stack overflow ‎ current
• 21:47, 4 November 2015 diff hist +206‎ Bug Classes/Stack overflow ‎ →‎Details
• 21:44, 4 November 2015 diff hist +92‎ Bug Classes/Stack overflow ‎ →‎Mitigations
• 21:35, 4 November 2015 diff hist +68‎ Bug Classes/Stack overflow ‎
• 21:33, 4 November 2015 diff hist +684‎ N Bug Classes/Stack overflow ‎ Created page with "= Details = The traditional bug results in the stack buffer being written past the end of the stack frame, which allows the saved instruction pointer to be overwritten in orde..."
• 20:57, 4 November 2015 diff hist −7‎ Template:Bug Classes/Preload ‎ Blanked the page current
• 20:57, 4 November 2015 diff hist +7‎ N Template:Bug Classes/Preload ‎ Created page with "Testing"
• 20:52, 4 November 2015 diff hist +1‎ m Exploit Methods ‎ current
• 20:52, 4 November 2015 diff hist +340‎ N Exploit Methods ‎ Created page with "When bugsin the kernel provide unintended read and write primitives to an attacker, there are many techniques used to gain execution control over the kernel. H..."
• 20:49, 4 November 2015 diff hist +276‎ N Bug Classes ‎ Created page with "Many bugs in the kernel belong to specific classes. Here we try to focus on classes of bugs that have security implications, explain them, link to examples, and link to defens..." current
• 20:41, 4 November 2015 diff hist −5‎ Kernel Self Protection Project ‎
• 17:59, 4 November 2015 diff hist +233‎ Kernel Self Protection Project ‎ carve out sections
• 16:39, 4 November 2015 diff hist −36‎ Kernel Self Protection Project ‎ →‎Kernel Self Protection Project
• 16:38, 4 November 2015 diff hist +216‎ Kernel Self Protection Project ‎ →‎Kernel Self Protection Project: add links to existing bug-hunting tools
• 16:35, 4 November 2015 diff hist +3,076‎ N Kernel Self Protection Project ‎ Outline the KSPP
• 16:02, 4 November 2015 diff hist +63‎ Projects ‎ →‎Kernel Security Projects
• 00:23, 14 August 2014 diff hist −3‎ Linux Security Summit 2014 ‎ →‎Day 2 (Tuesday 19th August)
• 06:38, 14 September 2013 diff hist −3‎ m Linux Security Summit 2013 ‎ →‎Day 1 (19th September)
• 21:59, 8 October 2012 diff hist +55‎ Projects ‎ →‎Kernel Security Projects
• 21:59, 8 October 2012 diff hist 0‎ m Linux Security Workgroup ‎ →‎Projects
• 21:48, 8 October 2012 diff hist −10‎ Linux Security Workgroup ‎ →‎Projects
• 21:48, 8 October 2012 diff hist +29‎ N Active Hardening Projects ‎ Active Hardening Projects moved to Active Projects: let's not over-use "hardening" current
• 21:48, 8 October 2012 diff hist 0‎ m Active Projects ‎ Active Hardening Projects moved to Active Projects: let's not over-use "hardening"
• 21:47, 8 October 2012 diff hist −16‎ Active Projects ‎ →‎Coverity
• 16:49, 31 August 2012 diff hist +41‎ Linux Security Summit 2012/Schedule ‎ →‎Kernel Security Subsystem Updates
• 16:48, 31 August 2012 diff hist +16‎ m Linux Security Summit 2012/Abstracts/Cook ‎ →‎Slides current
• 00:30, 31 August 2012 diff hist 0‎ m Linux Security Summit 2012/Abstracts/Cook ‎ →‎Slides
• 00:30, 31 August 2012 diff hist +48‎ Linux Security Summit 2012/Abstracts/Cook ‎ →‎Slides
• 00:29, 31 August 2012 diff hist +47‎ Linux Security Summit 2012/Abstracts/Cook ‎ →‎Abstract
• 23:42, 9 August 2012 diff hist −1‎ Linux Security Summit 2012/Schedule ‎ →‎Kernel Security Subsystem Updates: Yama capitalization

(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)