Lucid Dreams II: Harness Development 文章描述了如何使用Lucid模糊测试工具构建针对nftables的模糊测试框架。通过添加自定义系统调用`lucid_fuzz`和编写用户空间程序与内核交互，实现了对nftables控制平面的深入测试。该方法结合了调试、覆盖率收集和模糊测试功能，为后续实现数据平面交互奠定了基础。... 2025-10-13 00:0:0 | 阅读: 126 | 收藏 | The Human Machine Interface - h0mbre.github.io lucid harness nftables ncap mutator

Lucid Dreams I: Lucid’s First Time Fuzzing 文章描述了作者使用Lucid全系统快照模糊测试工具进行实际模糊测试的过程。改进了快照方法以提高性能，并开发了一个针对Netlink协议的模糊测试框架。通过优化快照恢复机制、引入Redqueen技术以及使用高质量种子输入，显著提高了代码覆盖率和效率。最终实现了对多个Netlink子系统的有效模糊测试，并发现了一些潜在问题。... 2025-10-4 00:0:0 | 阅读: 3 | 收藏 | The Human Machine Interface - h0mbre.github.io netlink lf redqueen fuzzer mutator

Patch-Gapping the Google Container-Optimized OS for $0 这篇文章讲述了作者在研究Linux内核sched子系统时发现的一个未初始化指针（UAF）漏洞的过程。该漏洞允许攻击者通过特定的`tc`命令操作触发未初始化指针使用，并可能导致权限提升。作者通过分析kCTF参赛作品中的补丁发现该漏洞，并尝试复现和利用它。然而，在实际测试中遇到了一些问题，最终未能成功利用该漏洞进行攻击。... 2025-2-13 00:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io qdisc drr corruption px 64kb

Fuzzer Development 4: Snapshots, Code-Coverage, and Fuzzing less... 2024-6-23 12:0:0 | 阅读: 7 | 收藏 | The Human Machine Interface - h0mbre.github.io fuzzer emulation bochs lucid snapshots

Fuzzer Development 4: Snapshots, Code-Coverage, and Fuzzing BackgroundThis is the next installment in a series of blogposts detailing th... 2024-6-23 08:0:0 | 阅读: 4 | 收藏 | The Human Machine Interface - h0mbre.github.io bochs bx lucid memory mmu

Fuzzer Development 3: Building Bochs, MMU, and File I/0 27 minute read... 2024-3-5 13:0:0 | 阅读: 5 | 收藏 | The Human Machine Interface - h0mbre.github.io lucid bochs anonymous brk musl

Fuzzer Development 3: Building Bochs, MMU, and File I/0 BackgroundThis is the next installment in a series of blogposts detailing th... 2024-3-5 08:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io bochs lucid anonymous brk memory

Fuzzer Development: Sandboxing Syscalls 6 minute read... 2024-2-17 13:0:0 | 阅读: 5 | 收藏 | The Human Machine Interface - h0mbre.github.io bochs lucid fuzzer library musl

Fuzzer Development 2: Sandboxing Syscalls IntroductionIf you haven’t heard, we’re developing a fuzzer on the blog these... 2024-2-17 08:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io lucid bochs iov usize memory

Fuzzer Development: The Soul of a New Machine h0mbre Binary Exploitation... 2023-11-4 12:0:0 | 阅读: 10 | 收藏 | The Human Machine Interface - h0mbre.github.io caveman h0mbre coast github enjoy

Fuzzer Development 1: The Soul of a New Machine Introduction && Credit to GamozolabsFor a long time I’ve wanted to develop a... 2023-11-4 08:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io bochs memory fuzzer lucid mprotect

Escaping the Google kCTF Container with a Data-Only Exploit 39 minute read... 2023-7-29 12:0:0 | 阅读: 6 | 收藏 | The Human Machine Interface - h0mbre.github.io cqe comm cq lx nsproxy

Escaping the Google kCTF Container with a Data-Only Exploit IntroductionI’ve been doing some Linux kernel exploit development/study and v... 2023-7-29 08:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io cqe comm cq nsproxy lx

PAWNYABLE UAF Walkthrough (Holstein v3) 27 minute read... 2022-10-29 12:0:0 | 阅读: 7 | 收藏 | The Human Machine Interface - h0mbre.github.io ptmx ssize structs lx gbuf

PAWNYABLE UAF Walkthrough (Holstein v3) IntroductionI’ve been wanting to learn Linux Kernel exploitation for some ti... 2022-10-29 08:0:0 | 阅读: 4 | 收藏 | The Human Machine Interface - h0mbre.github.io ptmx ssize structs lx gbuf

Fuzzing Like A Caveman 6: Binary Only Snapshot Fuzzing Harness 39 minute read... 2022-4-2 12:0:0 | 阅读: 7 | 收藏 | The Human Machine Interface - h0mbre.github.io xstat harness memory objdump fxstat

Fuzzing Like A Caveman 6: Binary Only Snapshot Fuzzing Harness IntroductionIt’s been a while since I’ve done one of these, and one of my goa... 2022-4-2 08:0:0 | 阅读: 1 | 收藏 | The Human Machine Interface - h0mbre.github.io xstat harness memory objdump fxstat

Fuzzing Like A Caveman 5: A Code Coverage Tour for Cavepeople IntroductionWe’ve already discussed the importance of code coverage previously i... 2021-1-16 13:0:0 | 阅读: 8 | 收藏 | The Human Machine Interface - h0mbre.github.io edges breakpoints comparisons 0x001006cf fuzzer

CVE-2020-12928 Exploit Proof-of-Concept, Privilege Escalation in AMD Ryzen Master AMDRyzenMasterDriver.sys 20 minute read... 2020-10-13 12:0:0 | 阅读: 9 | 收藏 | The Human Machine Interface - h0mbre.github.io buff modulus hfile 0xc memory

Fuzzing Like A Caveman 4: Snapshot/Code Coverage Fuzzer! 21 minute read... 2020-6-13 12:0:0 | 阅读: 6 | 收藏 | The Human Machine Interface - h0mbre.github.io fuzzer errno iov memory dragonfly