isoalloc
heap-exploitation
isoalloc | heap-exploitation | |
---|---|---|
3 | 1 | |
351 | 1,228 | |
- | - | |
7.8 | 10.0 | |
10 days ago | over 1 year ago | |
C | C | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
isoalloc
heap-exploitation
-
Glibc Dynamic Loader Hit by a Nasty Local Privilege Escalation Vulnerability
Not in a HN news comment, I don't have that level of dedication to this because its definitely non trivial. However you can read about them in use against the glibc allocator are here: https://github.com/DhavalKapil/heap-exploitation/blob/master...
The "house of" attack method are attacks against the allocator, its been a while since I've looked into it, I hope musl have hardened their allocator against this kind of attacks.
What are some alternatives?
hardened_malloc - Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability / integration over time.
Abstract-Data-Types - A set of efficient data structures in C, created in a generic way
herpaderping - Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
eyra - Rust programs written entirely in Rust
buddy_alloc - A single header buddy memory allocator for C & C++
c-ward - An implementation of libc written in Rust
MBE - Course materials for Modern Binary Exploitation by RPISEC
llvm-project - The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.
heaptrace - helps visualize heap operations for pwn and debugging
sc - Common libraries and data structures for C.