Random links

MISC issue where Stephane Duverger and I wrote about Linux kernel exploitation (remote and local).

Meterpretux, a Unix implementation of a Meterpreter-like for Metasploit.

kernelsec, a Debian/Ubuntu repository with grsecurity kernel packages.

metasm, a Ruby assembler/disassembler/linker/compiler/decompiler/debugger.

Wifi fuzzing, how we found this Madwifi security flaw (CVE-2006-6332) (and 3 others in other vendors drivers) and wrote a reliable remote kernel exploit for it (French). We also gave a follow-up talk at hack.lu where we focused on access point security flaws (read from slide 41)

crctools, some tools to compensate a CRC. Give it a file and a target CRC and it'll patch the file so that the new CRC of the file matches. In other words it can generate a preimage for any given CRC which implies it can generate collisions.

Slipfest, a HIPS evaluation suite. Tool and CanSecWest slides.

obsdretf, PoC: how to bypass W^X in OpenBSD < 3.9. 'Advisory' and Securitech slides (French, but look only at last slide). I also wrote a few lines about this attack in an article about address space protection in this MISC issue.

mips.elf.external.resolution.txt, a few notes on Linux MIPS reverse engineering

dtdumper, a small utility to dump GDT/LDT and IDT tables on Linux and BSD.

SSTIC 2005, a short talk ("rump session") I gave in June 2005 where I spoke about local vulnerabilities in GNU/Linux, esp. NULL pointer dereferences in the Linux Kernel (in French).

Security CA, collection of various GPG keys.

ASLR26, the first security patch for the 2.6 kernel (DEPRECATED, use PaX or grsecurity).

PaX obscurity patch (Not maintained).

Not so random links

various exploits

a few vulnerabilities

contact me, you can use my gpg key

About Julien Tinnes

I am currently a security engineer and project manager at France Telecom R&D. I am responsible for the conception and development of security tools and infrastructures for penetration tests and security evaluations. Our targets include embedded devices, operating systems, regular applications and web applications.

I am also a part-time lecturer for various French engineering schools: ENST (Ecole Nationale Superieure des Télécommunications - Telecom Paris), INT (Institut National des Télécommunications) and ECE (Ecole Centrale d'Electronique).
I give lectures about system architectures and various security-related topics.

Valid XHTML 1.1!