|
@David3141593 | |||||
|
Ever wanted to inject a shared library into an already-running linux process, without using ptrace? Well, now you can...
github.com/DavidBuchanan3…
asciinema.org/a/290906
|
||||||
|
||||||
|
Dаvіd Вucһаnаn
@David3141593
|
30. pro |
|
Next, I'm gonna implement a kernel module that lets me:
a) map pages in a remote process
b) CreateRemoteThread
That way, I can avoid side-effects of SIGSTOP, or any race conditions.
|
||
|
|
||
|
Arnaud Le Blanc
@arnaud_lb
|
1. sij |
|
In order to replace sigstop, would it work to change the scheduling priority of the process such that it’s effectively not executed?
|
||
|
|
||
|
Dаvіd Вucһаnаn
@David3141593
|
1. sij |
|
That did cross my mind, I need to look into it more to see if it's practical. Could certainly increase the probability of it working without sigstop
|
||
|
|
||
|
Dan Kaminsky
@dakami
|
1. sij |
|
Oh, neat. Thanks for taking the time to document this well!
|
||
|
|
||
|
paπcake🎗🌱
@trufae
|
31. pro |
|
smart trick and nice read. thanks
|
||
|
|
||
|
Simone Scarduzio 🇬🇧
@s_scarduzio
|
1. sij |
|
If this was the JVM, everyone would have panicked about the whole new level of vulnerabilities this enables. And they would be right.🤷🏻♂️
|
||
|
|
||
|
hexpwn
@hexpwn
|
11. sij |
|
just learned so many things from reading your code. thanks for sharing this.
|
||
|
|
||
|
Tom Hatskevich
@TomHatskevich
|
30. pro |
|
Wow Amazing !! Actually code injection into running linux process ;)
|
||
|
|
||
|
reaper
@reaper2k12
|
31. pro |
|
this is awesome 👍
|
||
|
|
||