Skip to content

Releases: spencerdodd/kernelpop

Binary Buildable

11 Apr 06:20
@spencerdodd spencerdodd
v1.2
b850839
Compare
Choose a tag to compare
Binary Buildable Latest
Latest

I have made a number of changes in this release. The largest of which is that you can now build binaries of the project! This is hugely useful for dropping on systems that don't have python.

major changes

  • you can build the project into a binary with pyinstaller

  • you can modify the directory location in which the exploit source code will be written to disk, compiled, and executed with the -p flag (i.e. kernelpop -e {exploit} -p /tmp)

  • you can now dump specific exploit source code to a location of your choosing with the -d flag (paired with a selected exploit...i.e. kernelpop -e {exploit} -d

  • more exploits

  • various bugfixes

to build a binary

I made a build script at create_executable.sh. However, if you would like to do it manually, here are the steps:

  1. install pyinstaller
$ pip install pyinstaller`
  1. build the binary
$ cd path/to/kernelpop
$ pyinstaller kernelpop.py --onefile
$ cp dist/kernelpop .

that's it!

UPDATE: the build script that was originally in the release made weird binaries. Use a build script from 42e4936 if you want to use a script. I have added the fixed build script as a separate file to the release.

I will continue to update the project and add more exploits. If you find an issue or have a requested feature, let me know and I will do my best to integrate it!

Assets 4
Loading

Python Version-Agnostic Support

09 Apr 19:28
@spencerdodd spencerdodd
v1.1
d9bc4c1
Compare
Choose a tag to compare
Python Version-Agnostic Support

I have updated the project to be python version-agnostic, meaning that it should work with both python2 and python3. As a tool that is designed to function with the libraries and packages on the system it is run on in-place, it should not rely on a specific version of python and should strive to be as inclusive as possible. This release should drastically widen the potential use-cases for kernelpop.

Again, please let me know if you find any issues!

Assets 2
Loading

Initial Release

09 Mar 17:41
@spencerdodd spencerdodd
v1.0
36627fd
Compare
Choose a tag to compare
Initial Release

This is the first official version of kernelpop! I know that will use it likely have already been using it, but I've made some major changes with the project and I think that it is much more accurate and complete than it was previously.

Some additions from the pre-release:

  • now matches discovered exploits to a confidence rating based on the distro specific kernel version along with the base linux kernel

  • exploits have much more specificity in terms of vulnerable ranges

  • json output

Some things were scrapped:

  • brute modes

  • exploit reliability indicators (never really qualified)

Some usage notes:

  • this project works best on Ubuntu or Debian systems. This is mainly because the process for determining kernel patches for CVEs was fairly straightforward. If you use this on other systems, there are likely to be bugs. Please report them!

  • the project requires python3. I may port it to 2 at some point, but no intention at the moment. If it becomes a requested feature, I can work on it (open an issue if you want!)

If you have any feature requests, suggestions, improvements, or notice that I am doing things blatantly incorrectly, please let me know! You can contact me at spencer@coastalsec.io or open an issue on the project.

Thanks!

Assets 2
Loading