Skip to content

marcinguy/meltdown-kernel-read-poc

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 

Repository files navigation

meltdown-kernel-read-poc

Read Kernel virtual mapping via Meltdown

It is possible to read Kernel Virtual Mappings via Meltdown.

However, exploits available on the Internet/Github are not capable of this. Several few steps had to be made in order this to work.

I did it:

  • disabled KASLR
  • using Kernel Module to calculate task_struct offsets (different accross Kernels)
  • used a module to verify Memory allocations
  • and finally, reading it via Meltdown (see screenshot below)

Meltdown Kernel Read PoC

Code will not be published for a while. Still too many unpatched systems out there.

About

Read Kernel virtual mapping via Meltdown

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published