Skip to content
View lockedbyte's full-sized avatar
💭
Executing /usr/bin/dash
💭
Executing /usr/bin/dash

Block or report lockedbyte

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
lockedbyte/README.md

N-day Exploits

  • CVE-2019-18634: Linux sudo LPE exploit for a stack-based buffer overflow in tgetpass.c
  • CVE-2020-28018: Linux Exim RCE exploit for a Use-After-Free in tls-openssl.c
  • CVE-2020-9273: Linux ProFTPd RCE exploit for a Use-After-Free in pool allocator
  • CVE-2021-3156: Linux LPE exploit for a heap-based buffer overflow in sudo
  • CVE-2021-40444: Microsoft Windows RCE exploit for a MS Office bug chain
  • CVE-2022-0185: Linux Kernel LPE exploit for an integer underflow in fs_context.c
  • CVE-2022-2586: Linux Kernel LPE exploit for an nft_object Use-After-Free

Talk slides

Blog posts

Other projects

  • Protcheck: Parse ELF executables to identify enabled memory mitigations

Popular repositories Loading

  1. CVE-2021-40444 CVE-2021-40444 Public

    CVE-2021-40444 PoC

    HTML 1.6k 484

  2. CVE-Exploits CVE-Exploits Public

    PoC exploits for software vulnerabilities

    C 674 160

  3. so_loader so_loader Public

    In-memory ELF shared library loading

    C 37 4

  4. protcheck protcheck Public

    A C-based checksec without readelf or grep dependance.

    C 11 2

  5. slides slides Public

    Speech slides

    8

  6. vroute vroute Public

    vroute: Reverse SOCKS proxy through HTTP(S) for network pivoting

    C 6 1