:hacker_z: :hacker_o: :hacker_d: :verified: · @zodmagus
182 followers · 921 posts · Server infosec.exchangeKenobi - I have just completed this room! Check it out: https://tryhackme.com/room/kenobi #tryhackme #samba #path var manipulation #suid #smb #kenobi via @RealTryHackMe
#tryhackme #samba #path #suid #smb #Kenobi
Evodefense · @evodefense
33 followers · 17 posts · Server infosec.exchange
[evodefense@deepthought ~]$ Kenobi
#CyberSecurity #offensivecyber #owaspzap #owasptop10 #linux #Penetrationtesting #redteam #bash #script #coder #cyberdefense #tryhackme https://tryhackme.com/room/kenobi #tryhackme #samba #path var manipulation #suid #smb #kenobi via @RealTryHackMe
#cybersecurity #offensivecyber #owaspzap #OWASPTOP10 #linux #penetrationtesting #redteam #bash #script #coder #cyberdefense #tryhackme #samba #path #suid #smb #Kenobi
Julien M. · @julm
485 followers · 4935 posts · Server framapiaf.org#InfoSec
> #Firejail: #Insecure Use of #OverlayFS as #Sandbox File System
> Firejail is a #SUID security sandbox program that reduces the risk of #security breaches by restricting the running environment of untrusted applications using #Linux #namespaces and #seccomp-#bpf.
> [...] a #RaceCondition [...] allows creation of or granting write access to arbitrary files.
https://unparalleled.eu/publications/2021/advisory-unpar-2021-0.txt
https://unparalleled.eu/blog/2021/20210208-rigged-race-against-firejail-for-local-root/
#racecondition #bpf #seccomp #namespaces #linux #security #suid #sandbox #overlayfs #insecure #firejail #infosec