Skip to content
/ edit_leaked_file_descriptor Public

An all-in-one tool to edit a leaked file descriptor in SetUID binaries.

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ProfessionallyEvil/edit_leaked_file_descriptor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
src
src
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

edit_leaked_file_descriptor

An all-in-one tool to edit a leaked file descriptor in SetUID binaries.

Links to Blog

Blog: TBD

Overview

This repo is used to provides C code to help exploit a leaked or inherited file handle in a SetUID drop-privileges process or child process. This tool will

  • Enumerate the /proc/self/fd folder for interesting fds that are open
  • List them in a menu to select the target easily
  • use lseek() and read() to copy the file contents to /tmp/si_fd_edit
  • Open the /tmp/si_fd_edit in nano for editing
  • Upon exiting the editor, it will ask if you want to overwrite the original file with the edits
  • If you select yes, it will lseek() to the beginning and write your modified file to the original

Building the Tool with the Supplied MakeFile

This tool can be built by simply running the make make command.

Known Issues

  • If the edit results in the edited file being smaller that the original, there will be trailing garbage from the original file left over.

About

An all-in-one tool to edit a leaked file descriptor in SetUID binaries.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages