kernel-exploitation

What problem does it solve?

This Skill helps you convert Linux kernel vulnerability findings (UAF, OOB, race, and type confusion) into a structured exploitation plan aimed at privilege escalation.

Core Features & Use Cases

• Kernel exploitation workflow: Guides end-to-end reasoning from vulnerability identification to building primitives, bypassing mitigations, and selecting escalation targets.
• Mitigation-aware attack paths: Integrates KASLR, SMEP, SMAP, KPTI, FG-KASLR, and CFI constraints into exploit strategy selection and return-to-user design.
• Heap technique playbooks: Covers SLUB internals and practical cross-cache exploitation to achieve controlled reuse for structures like msg_msg, pipe_buffer, and sk_buff.
• Use Case: When a CTF provides a kernel memory corruption bug, use this Skill to choose the correct primitive (read/write/RIP control), decide between commit_creds and modprobe_path overwrite, and design the final safe return to userspace.

Quick Start

Ask the AI to create a mitigation-aware exploitation plan for your kernel vulnerability by identifying the primitive you can build, the most suitable kernel target (commit_creds vs modprobe_path), and the required KASLR/SMEP/SMAP/KPTI return-to-userspace method.