- kubernetes
- lxc
- microk8s
- command_injection
- cookie_tampering
- csrf
- http_header_injection
- local_file_inclusion
- methodology
- re_registration
- remote_file_inclusion
- url_forgery
- wordpress
- xpath
- xss
- print_nightmare
- generate_wordlists
- haiti
- hashcat_utils
- firewalls
Enumeration
Exploit
CPUs
Hashes
Imagemagick
Level3_hypervisor
Docker_sec
Linux
MacOS
Network
Padding
Samba
Ssl_tls
Web
Bypass_rate_limiting
Content_security_policy
Forced_browsing
Idor
Javascript
Jwt
Nodejs
Php
Ssti
Windows
Portable Executables
Dll_hijacking
Docs
Macros
Payloads
Print_nightmare
CVE-2021-1675
Nightmare-dll
Process_injection
Service_escalation
Zero_logon
Yaml
Hashes
Bruteforce
Password_cracking
Password_guessing
Persistence
Post exploitation
Reverse engineering
Android
Java
Windows
Reverse shells
Windows
Meltdown
-
Each page table entries has the following flag values
- SUP (user or kernel mode)
- READ
- WRITE
-
Flags are checked by the MMU
-
Pipelined steps of an instruction are the following
- Fetch
- Decode
- Execute
- Memory access
- Register write back
-
A pipeline can execute one of each steps concurrently every clock cycle.
- The MMU may jump between instruction queued in the pipeline to make use of time while the current instruction stalls.
-
Speculative execution is the reordering of instructions to speed up execution inside the pipeline.
- If a condition is executed speculatively, kernel memory may be executed. No error is thrown, because the is no assurance if the condition will actually be executed in the end.
-
Kernel Page Table Isolation can be used to mitigate meltdown.
