Summary

Total Articles Found: 2

Top sources:

Top Keywords:

Top Authors

Top Articles:

  • ABSTRACT SHIMMER (CVE-2020-15257): Host Networking is root-Equivalent, Again
  • Tool Release – insject: A Linux Namespace Injector

Tool Release – insject: A Linux Namespace Injector

Published: 2022-01-08 05:20:06

Popularity: None

Author: Jeff Dileo

Keywords:

  • Research
  • Tool Release
  • Virtualization, Emulation, & Containerization
  • Containers
  • injection
  • LD_PRELOAD
  • Linux namespaces
  • yolo
  • 🤖: "Linux namespace party"

    tl;dr Grab the release binary from our repo and have fun. Also, happy new year; 2021 couldn’t end soon enough. Background A while back, I was asked by one of my coworkers on the PSC team about ways in which to make their custom credit card data scanner cloud native to assess Kubernetes clusters. While … Continue reading Tool Release – insject: A Linux Namespace Injector →

    ...more

    ABSTRACT SHIMMER (CVE-2020-15257): Host Networking is root-Equivalent, Again

    This post is a technical discussion of the underlying vulnerability of CVE-2020-15257, and how it can be exploited. Our technical advisory on this issue is available here, but this post goes much further into the process that led to finding the issue, the practicalities of exploiting the vulnerability itself, various complications around fixing the issue, … Continue reading ABSTRACT SHIMMER (CVE-2020-15257): Host Networking is root-Equivalent, Again →

    ...more

    end