Loading an ELF without the execve syscall

 Date: September 20, 2020

URL: https://github.com/0xbigshaq/runtime-unpack

Please note: This is not a shiny tool but rather a tiny PoC code that will (hopefully) help beginners who are trying to learn more about the concept of packers. The loader is compiled with debug info so you can fire-up gdb and step through the C code to see how the magic is done.

It is also a great introduction if you’re a researcher who’s trying to learn about how the linux kernel loads an elf (which is far more complicated in reality)

 Tags:  packer
Related Posts:
Pwning LLaMA.cpp RPC Server
Reverse Engineering a Kernel Driver chall
Hunting bugs in Nginx JavaScript engine (njs)

Previous
⏪ Firebase Applications – The Untold Attack Surface

Next
NACTF 2020 - 'Format' writeup (pwn) ⏩