checksec是一个脚本软件,也就是用脚本写的一个文件,不到2000行,可用来学习shell。
源码参见
http://www.trapkit.de/tools/checksec.html
https://github.com/slimm609/checksec.sh/
下载方法之一为
wget https://github.com/slimm609/checksec.sh/archive/1.6.tar.gz
checksec用来干什么?
用来检查可执行文件属性,例如PIE, RELRO, PaX, Canaries, ASLR, Fortify Source
PIE是什么意思?
(PIC:Position Independnet Code位置无关代码)
position independent executable
https://access.redhat.com/blogs/766093/posts/1975793
https://en.wikipedia.org/wiki/Position-independent_code
RELRO是什么意思?
http://fedoraproject.org/wiki/Security_Features_Matrix
Built with RELRO
RELRO stands for RELocation Read-Only, it is a mitigation technique to harden data sections of an ELF/process.
Pax是什么意思?
Stack Canary
ASLR是什么意思?
checksec使用方法
checksec –file /usr/sbin/sshd
源码解读:
ubuntu测试important!!!!
self.assertShellExitEquals()太重要了
http://bazaar.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master/view/head:/scripts/test-kernel-security.py
http://markmail.org/message/xndxxbczqquqipzv
- def assertShellOutputEquals(self, text, args, stdin=None,
stdout=subprocess.PIPE, stderr=subprocess.STDOUT, msg=”“, invert=False,
expected=None): - ”’Test a shell command matches a specific output”’
- rc, report, out = self._testlib_shell_cmd(args, stdin=stdin,
stdout=stdout, stderr=stderr) - result = ‘Got exit code %d. Looking for exact text “%s” (%s)\n’ % (rc,
text, ” “.join(args)) - if not invert:
- self.assertEquals(text, out, msg + result + report)
- else:
- self.assertNotEquals(text, out, msg + result + report)
- if expected != None:
- result = ‘Got exit code %d. Expected %d (%s)\n’ % (rc, expected, ”
“.join(args)) - self.assertEquals(rc, expected, msg + result + report)
现代Linux操作系统的栈溢出(上)
http://www.freebuf.com/articles/system/24177.html
362
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
