Runtime Process Insemination

Cite

DEF CON

Webb, Shawn (lattera)

Formal Metadata

Title

Runtime Process Insemination

Title of Series

DEF CON 19

Number of Parts

122

Author

Webb, Shawn (lattera)

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/40636 (DOI)

Publisher

DEF CON

Release Date

2013

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Injecting arbitrary code during runtime in linux is a painful process. This presentation discusses current techniques and reveals a new technique not used in other projects. The proposed technique allows for anonymous injection of shared objects, the ability to pwn a process without leaving any physical evidence behind. Libhijack, the tool discussed and released in this presentation, enables injection of shared objects in as little as eight lines of C code. This presentation will demo real-world scenarios of injecting code into end-user processes such as firefox, nautilus, and python. Shawn Webb is a professional security analyst. He works with Linux, FreeBSD, and Windows systems, finding vulnerabilities in in-house applications. He's a proud member and contributor of SoldierX. Twitter: lattera