Privilege Escalation
modprobe
└──╼ [★]$ python
>>> from pwn import *
>>> kernel = ELF('./vmlinux')
>>> hex(next(kernel.search(b'/sbin/modprobe\x00')))
'0xffffffff81e38180'
/ $ cat / proc/kallsyms | grep modprobe_pathcore_pattern
└──╼ [★]$ python
>>> from pwn import *
>>> kernel = ELF('./vmlinux')
>>> hex(next(kernel.search(b'/core\x00')))
'0xffffffff81d6904c'
/ $ cat /proc/sys/kernel/core_pattern
coretask_struct
Last updated