Use "ld" to exec "dd" without file system's exec permission

arget13 / DDexec

A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.

GNU General Public License v3.0

798 stars 83 forks source link

Use "ld" to exec "dd" without file system's exec permission #10

Closed fabianofurtado closed 2 years ago

fabianofurtado commented 2 years ago

Hi... As described in the README.md, making dd executable only by root WILL NOT prevent this technique being executed by the filesystem: you could call "ld" before calling "dd". Please, add $loader variable to your script to use the "ld" and "dd" together. Thanks in advance.

arget13 commented 2 years ago

This is by default disabled. You can make export USE_INTERP=1 and then run the script in order to use this technique.