Linux Kernel Security Done Right

https://security.googleblog.com/2021/08/linux-kernel-security-done-right.html

#Linux #Kernel #Security

The JingPad A1 is a Linux tablet that (kind of) runs Android apps

https://www.xda-developers.com/jingpad-a1-linux-tablet-android-support/

#JingPad #Linux #tablet

A serious bug in #Linux from 12 years ago allows you to get root on any distro

To fix it upgrade or:
chmod 0755 /usr/bin/pkexec

#PwnKit: Local Privilege Escalation #Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034)

https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034

The Bvp47 - a Top-tier #Linux #Backdoor of US #NSA Equation Group hidden for 10 years

https://www.pangulab.cn/en/post/the_bvp47_a_top-tier_backdoor_of_us_nsa_equation_group/

New Linux bug gives root on all major distros, exploit released.

A new Linux vulnerability known as 'Dirty Pipe' allows local users to gain root privileges through publicly available exploits.

Today, security researcher Max Kellermann responsibly disclosed the 'Dirty Pipe' vulnerability and stated that it affects Linux Kernel 5.8 and later versions, even on Android devices.

The vulnerability is tracked as CVE-2022-0847 and allows a non-privileged user to inject and overwrite data in read-only files, including SUID processes that run as root.

Kellerman discovered the bug after tracking down a bug that was corrupting web server access logs for one of his customers.

Kellerman states that the vulnerability is similar to the Dirty COW vulnerability (CVE-2016-5195) fixed in 2016.

https://www.bleepingcomputer.com/news/security/new-linux-bug-gives-root-on-all-major-distros-exploit-released/
https://dirtypipe.cm4all.com/

📡@cRyPtHoN_INFOSEC_EN

#linux #root #vulnerability

This new Linux malware is 'almost impossible' to detect

Symbiote is parasitic malware that provides rootkit-level functionality

A joint research effort has led to the discovery of Symbiote, a new form of Linux malware that is "almost impossible" to detect.

Symbiote has several interesting features. For example, the malware uses Berkeley Packet Filter (BPF) hooking, a function designed to hide malicious traffic on an infected machine. BPF is also used by malware developed by the Equation Group.

The malware is pre-loaded before other shared objects, allowing it to hook specific functions – including libc and libpcap – to hide its presence. Other files associated with Symbiote are also concealed and its network entries are continually scrubbed.

https://www.zdnet.com/article/this-new-linux-malware-is-almost-impossible-to-detect/

#linux #symbiote #malware

0xor0ne@infosec.exchange - Great website if you need a quick reference to Linux kernel syscalls (numbers)

https://syscalls.mebeim.net

#Linux #kernel #programming

0xor0ne@infosec.exchange - Nice project that collects the best Wi-Fi USB dongle with good Linux support
It contains a lot of up-to-date useful information

https://github.com/morrownr/USB-WiFi

#wireless #wifi #Linux #usbwifi

0xor0ne@infosec.exchange - Very cool series about persistence in Linux environments

Persistence map: https://pberba.github.io/assets/posts/common/20220201-linux-persistence.pdf

Auditd, Sysmon, Osquery: https://pberba.github.io/security/2021/11/22/linux-threat-hunting-for-persistence-sysmon-auditd-webshell/

Account Creation and Manipulation: https://pberba.github.io/security/2021/11/23/linux-threat-hunting-for-persistence-account-creation-manipulation/

Systemd, Timers, and Cron: https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/

Initialization Scripts and Shell Configuration: https://pberba.github.io/security/2022/02/06/linux-threat-hunting-for-persistence-initialization-scripts-and-shell-configuration/

Systemd Generators: https://pberba.github.io/security/2022/02/07/linux-threat-hunting-for-persistence-systemd-generators/

#Linux #kernel #malware #cybersecurity #infosec

#Speech Note Transcribes #Voice to #Text on #Linux

https://www.omglinux.com/speech-note-transcribe-voice-to-text-on-linux/

#Linux Desktop application that provides live #captioning

FUTO Fellowship program interview; linux captions software

👉 Live Captions github: https://github.com/abb128/LiveCaptions

🔵 Q&A w/ billionaire alt-tech investor/philanthropist Eron Wolf
https://www.youtube.com/watch?v=OJPmbcU-Vzo
🔵 FUTO Fellows program: https://futo.org/fellows/
🔵 FUTO Youtube channel - @futotech
⚠️ Google's breaches of privacy have gone TOO FAR!
https://www.youtube.com/watch?v=_vWAF13KigI

#speech #recognition #stt #voice

15 Best Tools for #Linux #Font Management

https://www.ubuntupit.com/best-linux-font-tools-and-how-to-install-linux-fonts-on-ubuntu/

@BonesTechGarage

11 Best Note-Taking Apps for #Linux in 2024

https://www.tecmint.com/note-taking-apps-linux/

@BonesTechGarage
#notes

How to Anonymize Your Linux System with Whoami

#Whoami is a comprehensive toolkit that can anonymize a running #Linux session. It comes with scripts that can hide your machine’s real IP address, change its default DNS resolvers, and secure your browser. This article will show you how to install Whoami and run some of its modules to anonymize your Ubuntu system.

Note: Don’t confuse this with the whoami command that displays the username of the current user. Also, Whoami works for any Debian and Arch based distro.

https://www.maketecheasier.com/anonymize-linux-with-whoami/

@BonesTechGarage

#NVIDIA 560 #Linux Graphics #Driver to Fully Adopt Open-Source GPU Kernel Modules

https://9to5linux.com/nvidia-560-linux-graphics-driver-to-fully-adopt-open-source-gpu-kernel-modules