heaptrace
heap-exploitation
Our great sponsors
| heaptrace | heap-exploitation | |
|---|---|---|
| 5 | 1 | |
| 291 | 1,228 | |
| - | - | |
| 0.0 | 10.0 | |
| over 1 year ago | over 1 year ago | |
| C | C | |
| BSD 3-clause "New" or "Revised" License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
heaptrace
heap-exploitation
-
Glibc Dynamic Loader Hit by a Nasty Local Privilege Escalation Vulnerability
Not in a HN news comment, I don't have that level of dedication to this because its definitely non trivial. However you can read about them in use against the glibc allocator are here: https://github.com/DhavalKapil/heap-exploitation/blob/master...
The "house of" attack method are attacks against the allocator, its been a while since I've looked into it, I hope musl have hardened their allocator against this kind of attacks.
What are some alternatives?
gdb-frontend - ☕ GDBFrontend is an easy, flexible and extensible gui debugger. Try it on https://debugme.dev
Abstract-Data-Types - A set of efficient data structures in C, created in a generic way
hunter - Hunter is a flexible code tracing toolkit.
eyra - Rust programs written entirely in Rust
b1m0-dbg - linux debugger
c-ward - An implementation of libc written in Rust
snoop - A powerful set of Python debugging tools, based on PySnooper
llvm-project - The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.
sc - Common libraries and data structures for C.
isoalloc - A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance