May 10 2021
Writing software is similar to translating from one language to another. Specifically, it is similar to translating from your native language to some other language. You are translating to that other language so that you can help those others do some task for you. You might not understand this other language very well, and some …
Permanent link to this article: https://blog.simos.info/a-gentle-introduction-to-security-fuzzing-and-the-advanced-fuzzing-league-afl/
Nov 13 2020
LXD gives you system containers and virtual machines, usable from the same user interface. You would rather use system containers as they are more lightweight than VMs. Previously we have seen how to use the Kali LXD containers (includes how to use a USB network adapter). There is documentation on using graphics applications (X11) in …
Permanent link to this article: https://blog.simos.info/how-to-run-graphics-x11-applications-in-the-kali-lxd-container/
Oct 28 2019
CVE-2019-11043 is a buffer overflow in php-fpm that under certain conditions, can lead to remote execution. There is an exploit at PHuiP-FPizdaM that targets certain nginx and php-fpm configurations. On their page, the describe how to use Docker to test this exploit. In this post, we use LXD to test the exploit and verify whether …
Permanent link to this article: https://blog.simos.info/testing-cve-2019-11043-php-fpm-security-vulnerability-with-lxd-system-containers/
Aug 28 2019
If you have a look at the list of container images for LXD (repository images:), you will notice the recent addition of the Kali container images. These were added by Re4son (@kali.org). But Kali is a security distribution, does it make sense to create system containers with Kali? LXD offers system containers, which are similar …
Permanent link to this article: https://blog.simos.info/using-the-lxd-kali-container-image/
Jan 29 2018
Here is the status page for the Ubuntu updates on Spectre and Meltdown. For a background on these vulnerabilities, see the Meltdown and Spectre Attacks website. In this post we are trying out the Spectre & Meltdown Checker on different versions of the stock Ubuntu Linux kernel. Trying the Spectre & Meltdown Checker before any …
Permanent link to this article: https://blog.simos.info/checking-the-ubuntu-linux-kernel-updates-on-spectre-and-meltdown/
Nov 07 2017
Sysdig (.org) is an open-source container troubleshooting tool and it works by capturing system calls and events directly from the Linux kernel. When you install Sysdig, it adds a new kernel module that it uses to collect all those system calls and events. That is, compared to other tools like strace, lsof and htop, it …
Permanent link to this article: https://blog.simos.info/how-to-use-sysdig-and-falco-with-lxd-containers/
Recent Comments