Linux process injection - PoCs

The source code in this repository accompanies the articles series at https://blog.f0b.org/

I recommend to start working with the PoCs in a virtual machine without any protections (Yama, SELinux, etc.) on. You can enable protections (see part 3 of the series) to see their impact.

Do note, however, that pwntools, a tool used for most Python-based PoCs, uses the Unicorn engine. This tool will not work with certain protections on, but it does not mean that the technique(s) cannot be used with those protections on.

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
01-ptrace		01-ptrace
02-ptrace-mmap		02-ptrace-mmap
03-ptrace-mmap-fork		03-ptrace-mmap-fork
04-hollowing		04-hollowing
05-unused		05-unused
06-codecave		06-codecave
07-clone		07-clone
08-signals		08-signals
09-timers		09-timers
10-got		10-got
11-vdso		11-vdso
12-stack		12-stack
13-procmem		13-procmem
14-pvmw-spray		14-pvmw-spray
14-pvmw		14-pvmw
15-int3		15-int3
16-ulexec		16-ulexec
17-solib		17-solib
misc		misc
recording		recording
tools		tools
LICENSE.txt		LICENSE.txt
Makefile		Makefile
README.md		README.md
auditd.rules		auditd.rules
sysctl.conf		sysctl.conf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Linux process injection - PoCs

About

Releases

Packages

Languages

antifob/linux-prinj

Folders and files

Latest commit

History

Repository files navigation

Linux process injection - PoCs

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages