tools
/
out-of-tree
Watch 1
Star 0
Fork 0
Code Releases 1 Activity
out-of-tree kernel {module, exploit} development tool
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
200 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
out-of-tree
dump_stack() 5864109080
Do not fail for kernel module if there is no test script 		4 days ago
config Move to fmt.Errorf 6 months ago
examples Print kernel config skeleton to stdout 6 months ago
qemu Rename qemu package 4 months ago
tools Use relative path for bootstrap script 4 months ago
.gitignore Remove snap support 6 months ago
.travis.yml Revert "CI: Test also without go modules to catch upstream API changes" 1 week ago
LICENSE Change license to GNU AGPLv3 8 months ago
README.md Move upstream to code.dumpstack.io 4 months ago
bootstrap.config.go Implements bootstrap, fixes #3 6 months ago
bootstrap.go Improve logging 6 months ago
debug.go Use same version of aurora everywhere 1 week ago
gen.go Move upstream to code.dumpstack.io 4 months ago
go.mod Use same version of aurora everywhere 1 week ago
go.sum Use same version of aurora everywhere 1 week ago
kernel.go Avoid errors in case when no kernels in container 4 days ago
main.go Move upstream to code.dumpstack.io 4 months ago
pew.go Do not fail for kernel module if there is no test script 4 days ago
pew_test.go Use go timers for kill docker by timeout, fixes #12 6 months ago

README.md

Build Status Go Report Card

out-of-tree

out-of-tree kernel {module, exploit} development tool

Screenshot

Requirements

Qemu, docker and golang is required.

Also do not forget to set GOPATH and PATH e.g.:

$ echo 'export GOPATH=$HOME' >> ~/.bashrc
$ echo 'export PATH=$PATH:$HOME/bin' >> ~/.bashrc
$ source ~/.bashrc

Gentoo

# emerge app-emulation/qemu app-emulation/docker dev-lang/go

macOS

$ brew install go qemu
$ brew cask install docker

Fedora

$ sudo dnf install go qemu moby-engine

Also check out docker post-installation steps.

Build from source

$ go get -u code.dumpstack.io/tools/out-of-tree
$ out-of-tree bootstrap

Then you can check it on kernel module example:

$ cd $GOPATH/src/code.dumpstack.io/tools/out-of-tree/examples/kernel-module
$ out-of-tree kernel autogen # generate kernels based on .out-of-tree.toml
$ out-of-tree pew

Examples

Run by absolute path

$ out-of-tree --path /path/to/exploit/directory pew

Test only with one kernel:

$ out-of-tree pew --kernel='Ubuntu:4.10.0-30-generic'

Run debug environment:

$ out-of-tree debug --kernel='Ubuntu:4.10.0-30-generic'

Test binary module/exploit with implicit defined test ($BINARY_test)

$ out-of-tree pew --binary /path/to/exploit

Test binary module/exploit with explicit defined test

$ out-of-tree pew --binary /path/to/exploit --test /path/to/exploit_test

Guess work kernels:

$ out-of-tree pew --guess

Use custom kernels config

$ out-of-tree --kernels /path/to/kernels.toml pew

Generate all kernels

$ out-of-tree kernel genall --distro Ubuntu --ver 16.04

Development

Read Qemu API.

Generate images

$ cd $GOPATH/src/code.dumpstack.io/tools/out-of-tree/tools/qemu-debian-img/
$ docker run --privileged -v $(pwd):/shared -e IMAGE=/shared/ubuntu1404.img -e RELEASE=trusty -t gen-ubuntu1804-image
$ docker run --privileged -v $(pwd):/shared -e IMAGE=/shared/ubuntu1604.img -e RELEASE=xenial -t gen-ubuntu1804-image