Linux Kernel Security Done Right
https://security.googleblog.com/2021/08/linux-kernel-security-done-right.html
#Linux #Kernel #Security
https://security.googleblog.com/2021/08/linux-kernel-security-done-right.html
#Linux #Kernel #Security
Google Online Security Blog
Linux Kernel Security Done Right
Posted by Kees Cook, Software Engineer, Google Open Source Security Team To borrow from an excellent analogy between the modern computer ec...
The JingPad A1 is a Linux tablet that (kind of) runs Android apps
https://www.xda-developers.com/jingpad-a1-linux-tablet-android-support/
#JingPad #Linux #tablet
https://www.xda-developers.com/jingpad-a1-linux-tablet-android-support/
#JingPad #Linux #tablet
XDA Developers
The JingPad A1 is a Linux tablet that (kind of) runs Android apps
The JingPad A1 aims to be the ultimiate productivity tablet, with a custom Linux OS and support for Android apps.
A serious bug in #Linux from 12 years ago allows you to get root on any distro
To fix it upgrade or:
chmod 0755 /usr/bin/pkexec
#PwnKit: Local Privilege Escalation #Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034)
https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034
To fix it upgrade or:
chmod 0755 /usr/bin/pkexec
#PwnKit: Local Privilege Escalation #Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034)
https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034
Qualys Security Blog
PwnKit: Local Privilege Escalation Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034) | Qualys Security Blog
The Qualys Research Team has discovered a memory corruption vulnerability in polkit’s pkexec, a SUID-root program that is installed by default on every major Linux distribution.
The Bvp47 - a Top-tier #Linux #Backdoor of US #NSA Equation Group hidden for 10 years
https://www.pangulab.cn/en/post/the_bvp47_a_top-tier_backdoor_of_us_nsa_equation_group/
https://www.pangulab.cn/en/post/the_bvp47_a_top-tier_backdoor_of_us_nsa_equation_group/
www.pangulab.cn
The Bvp47 - a Top-tier Backdoor of US NSA Equation Group
New Linux bug gives root on all major distros, exploit released.
A new Linux vulnerability known as 'Dirty Pipe' allows local users to gain root privileges through publicly available exploits.
Today, security researcher Max Kellermann responsibly disclosed the 'Dirty Pipe' vulnerability and stated that it affects Linux Kernel 5.8 and later versions, even on Android devices.
The vulnerability is tracked as CVE-2022-0847 and allows a non-privileged user to inject and overwrite data in read-only files, including SUID processes that run as root.
Kellerman discovered the bug after tracking down a bug that was corrupting web server access logs for one of his customers.
Kellerman states that the vulnerability is similar to the Dirty COW vulnerability (CVE-2016-5195) fixed in 2016.
https://www.bleepingcomputer.com/news/security/new-linux-bug-gives-root-on-all-major-distros-exploit-released/
https://dirtypipe.cm4all.com/
📡@cRyPtHoN_INFOSEC_EN
#linux #root #vulnerability
A new Linux vulnerability known as 'Dirty Pipe' allows local users to gain root privileges through publicly available exploits.
Today, security researcher Max Kellermann responsibly disclosed the 'Dirty Pipe' vulnerability and stated that it affects Linux Kernel 5.8 and later versions, even on Android devices.
The vulnerability is tracked as CVE-2022-0847 and allows a non-privileged user to inject and overwrite data in read-only files, including SUID processes that run as root.
Kellerman discovered the bug after tracking down a bug that was corrupting web server access logs for one of his customers.
Kellerman states that the vulnerability is similar to the Dirty COW vulnerability (CVE-2016-5195) fixed in 2016.
https://www.bleepingcomputer.com/news/security/new-linux-bug-gives-root-on-all-major-distros-exploit-released/
https://dirtypipe.cm4all.com/
📡@cRyPtHoN_INFOSEC_EN
#linux #root #vulnerability
This new Linux malware is 'almost impossible' to detect
Symbiote is parasitic malware that provides rootkit-level functionality
A joint research effort has led to the discovery of Symbiote, a new form of Linux malware that is "almost impossible" to detect.
Symbiote has several interesting features. For example, the malware uses Berkeley Packet Filter (BPF) hooking, a function designed to hide malicious traffic on an infected machine. BPF is also used by malware developed by the Equation Group.
The malware is pre-loaded before other shared objects, allowing it to hook specific functions – including libc and libpcap – to hide its presence. Other files associated with Symbiote are also concealed and its network entries are continually scrubbed.
https://www.zdnet.com/article/this-new-linux-malware-is-almost-impossible-to-detect/
#linux #symbiote #malware
Symbiote is parasitic malware that provides rootkit-level functionality
A joint research effort has led to the discovery of Symbiote, a new form of Linux malware that is "almost impossible" to detect.
Symbiote has several interesting features. For example, the malware uses Berkeley Packet Filter (BPF) hooking, a function designed to hide malicious traffic on an infected machine. BPF is also used by malware developed by the Equation Group.
The malware is pre-loaded before other shared objects, allowing it to hook specific functions – including libc and libpcap – to hide its presence. Other files associated with Symbiote are also concealed and its network entries are continually scrubbed.
https://www.zdnet.com/article/this-new-linux-malware-is-almost-impossible-to-detect/
#linux #symbiote #malware
ZDNET
This new Linux malware is 'almost impossible' to detect
Symbiote is parasitic malware that provides rootkit-level functionality.
0xor0ne@infosec.exchange - Nice three parts series on Linux kernel exploitation
Part 1: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/
Part 2: https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/
Part 3: https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/
#Linux #infosec #cybersecurity #kernel
Part 1: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/
Part 2: https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/
Part 3: https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/
#Linux #infosec #cybersecurity #kernel
0xor0ne@infosec.exchange - Great website if you need a quick reference to Linux kernel syscalls (numbers)
https://syscalls.mebeim.net
#Linux #kernel #programming
https://syscalls.mebeim.net
#Linux #kernel #programming
0xor0ne@infosec.exchange - Very cool series about persistence in Linux environments
Persistence map: https://pberba.github.io/assets/posts/common/20220201-linux-persistence.pdf
Auditd, Sysmon, Osquery: https://pberba.github.io/security/2021/11/22/linux-threat-hunting-for-persistence-sysmon-auditd-webshell/
Account Creation and Manipulation: https://pberba.github.io/security/2021/11/23/linux-threat-hunting-for-persistence-account-creation-manipulation/
Systemd, Timers, and Cron: https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/
Initialization Scripts and Shell Configuration: https://pberba.github.io/security/2022/02/06/linux-threat-hunting-for-persistence-initialization-scripts-and-shell-configuration/
Systemd Generators: https://pberba.github.io/security/2022/02/07/linux-threat-hunting-for-persistence-systemd-generators/
#Linux #kernel #malware #cybersecurity #infosec
Persistence map: https://pberba.github.io/assets/posts/common/20220201-linux-persistence.pdf
Auditd, Sysmon, Osquery: https://pberba.github.io/security/2021/11/22/linux-threat-hunting-for-persistence-sysmon-auditd-webshell/
Account Creation and Manipulation: https://pberba.github.io/security/2021/11/23/linux-threat-hunting-for-persistence-account-creation-manipulation/
Systemd, Timers, and Cron: https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/
Initialization Scripts and Shell Configuration: https://pberba.github.io/security/2022/02/06/linux-threat-hunting-for-persistence-initialization-scripts-and-shell-configuration/
Systemd Generators: https://pberba.github.io/security/2022/02/07/linux-threat-hunting-for-persistence-systemd-generators/
#Linux #kernel #malware #cybersecurity #infosec
#Speech Note Transcribes #Voice to #Text on #Linux
https://www.omglinux.com/speech-note-transcribe-voice-to-text-on-linux/
https://www.omglinux.com/speech-note-transcribe-voice-to-text-on-linux/
OMG! Linux
Speech Note Transcribes Voice to Text on Linux - OMG! Linux
Speech Note is an offline, AI-powered app able to transcribe your speech into text in a variety of different languages. A reader got in touch to point me
Media is too big
VIEW IN TELEGRAM
#Linux Desktop application that provides live #captioning
FUTO Fellowship program interview; linux captions software
👉 Live Captions github: https://github.com/abb128/LiveCaptions
🔵 Q&A w/ billionaire alt-tech investor/philanthropist Eron Wolf
https://www.youtube.com/watch?v=OJPmbcU-Vzo
🔵 FUTO Fellows program: https://futo.org/fellows/
🔵 FUTO Youtube channel - @futotech
⚠️ Google's breaches of privacy have gone TOO FAR!
https://www.youtube.com/watch?v=_vWAF13KigI
#speech #recognition #stt #voice
FUTO Fellowship program interview; linux captions software
👉 Live Captions github: https://github.com/abb128/LiveCaptions
🔵 Q&A w/ billionaire alt-tech investor/philanthropist Eron Wolf
https://www.youtube.com/watch?v=OJPmbcU-Vzo
🔵 FUTO Fellows program: https://futo.org/fellows/
🔵 FUTO Youtube channel - @futotech
⚠️ Google's breaches of privacy have gone TOO FAR!
https://www.youtube.com/watch?v=_vWAF13KigI
#speech #recognition #stt #voice
15 Best Tools for #Linux #Font Management
https://www.ubuntupit.com/best-linux-font-tools-and-how-to-install-linux-fonts-on-ubuntu/
@BonesTechGarage
https://www.ubuntupit.com/best-linux-font-tools-and-how-to-install-linux-fonts-on-ubuntu/
@BonesTechGarage
UbuntuPIT
15 Best Tools for Linux Font Management
A huge list of robust, modern, and innovative Linux font tools has made it very simple to manage Linux fonts for even the newest of users.
11 Best Note-Taking Apps for #Linux in 2024
https://www.tecmint.com/note-taking-apps-linux/
@BonesTechGarage
#notes
https://www.tecmint.com/note-taking-apps-linux/
@BonesTechGarage
#notes
11 Best Open Source Note-Taking Apps for Linux
11 Best Note-Taking Apps for Linux in 2024
A note-taking app allows you to record notes on the go, whether you are in class or studying, reading somewhere, at work, or in a meeting.
How to Anonymize Your Linux System with Whoami
#Whoami is a comprehensive toolkit that can anonymize a running #Linux session. It comes with scripts that can hide your machine’s real IP address, change its default DNS resolvers, and secure your browser. This article will show you how to install Whoami and run some of its modules to anonymize your Ubuntu system.
Note: Don’t confuse this with the whoami command that displays the username of the current user. Also, Whoami works for any Debian and Arch based distro.
https://www.maketecheasier.com/anonymize-linux-with-whoami/
@BonesTechGarage
#Whoami is a comprehensive toolkit that can anonymize a running #Linux session. It comes with scripts that can hide your machine’s real IP address, change its default DNS resolvers, and secure your browser. This article will show you how to install Whoami and run some of its modules to anonymize your Ubuntu system.
Note: Don’t confuse this with the whoami command that displays the username of the current user. Also, Whoami works for any Debian and Arch based distro.
https://www.maketecheasier.com/anonymize-linux-with-whoami/
@BonesTechGarage
Make Tech Easier
How to Anonymize Your Linux System with Whoami
Whoami is a powerful toolkit that manages some of your system's security options. Learn how to install and use Whoami in Ubuntu today.
#NVIDIA 560 #Linux Graphics #Driver to Fully Adopt Open-Source GPU Kernel Modules
https://9to5linux.com/nvidia-560-linux-graphics-driver-to-fully-adopt-open-source-gpu-kernel-modules
https://9to5linux.com/nvidia-560-linux-graphics-driver-to-fully-adopt-open-source-gpu-kernel-modules
9to5Linux
NVIDIA 560 Linux Graphics Driver to Fully Adopt Open-Source GPU Kernel Modules - 9to5Linux
NVIDIA to fully transition to the open-source GPU kernel modules with the upcoming NVIDIA 560 graphics driver for Linux systems.