SamSuka
LiveOverflow
LiveOverflow

patreon


Deepdive Containers - Kernel Sources and nsenter

Let's play around with Docker a bit more. We learn about the nsenter command, how kernel code execution allows escaping from docker and we look at Linux Kernel source code of getpid().  

Daniel Mitre's blog: https://medium.com/@flag_seeker/linux-container-from-scratch-339c3ba0411d
bocker: https://github.com/p8952/bocker/
Elixir: https://elixir.bootlin.com/linux/latest/source/kernel/sys.c#L891
Denis Andzakovic: https://pulsesecurity.co.nz/articles/docker-rootkits

Deepdive Containers - Kernel Sources and nsenter

More Creators