Skip to content
This repository has been archived by the owner on Mar 5, 2023. It is now read-only.
/ snow-crash Public archive

42 | Privilege escalation exercices on a system image

Notifications You must be signed in to change notification settings

kema-dev/snow-crash

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

47 Commits
 
 
 
 
 
 
 
 

Repository files navigation

Project's status Project's focus

exploit demo

About The Project

snow-crash is a 42 project and an introduction to IT security. A system image is given, and the goal is to escalate privileges, with various techniques. All steps are documented in markdown files in levels folder, feel free to read them.

Environment

I did all of this using Kali as host, and VirtualBox as virtualization software to run the ISO. I configured the network as a bridged adapter.

Some of the techniques used

  • Decompilation / Reverse engineering -> Exploitation
  • Input checking bypass
  • Code injection
  • File impersonating
  • Library injection
  • Environnement variables / $PATH trickery
  • Reversing deprecated cryptography algorithms

Full subject is available here and system image file (.iso) here

Using

Contact

kema-dev - GitHub