ret2dl_resolve to bypass seccomp

前言

  一个通过利用ret2dl_resolve bypass seccomp的demo,主要有几点tips:

  • 通过ret2dl_resolve达到任意地址跳转;
  • 如何找到一个死循环hold住进程;

ret2dl_resolve x64 study

前言

  这篇文章记录ret2dl_resolvex64下的运用场景,这里有2个例子。

ret2dl_resolve exp

前言

  在上篇文章中说过dl_runtime_resolve延迟绑定的技术原理,这篇记录ret2dl_resolve的攻击方法。

Your browser is out-of-date!

Update your browser to view this website correctly. Update my browser now

×