Hiding in Linux Netfilter. Kopycat is a nice implementation of Netfilter hooking [custom_local_in]. It works as LKM. Based on my experiences, there is no evidence in /proc/modules, /proc/kallsym or /sys/**. No additional entries in iptables obviously.

turns TCP traffic into HTTP using Netfilter Queue

OtterRoot : Netfilter Universal Root 1-day : https://t.co/YeUyJ5AaDO

CVE-2023-52927 - Turning a Forgotten Syzkaller Report into kCTF Exploit Article by @seadragnol about finding an unfixed netfilter use-after-free bug reported by syzbot. The researcher exploited it to pwn the kernelCTF COS instance. https://t.co/2KMWA3nJJM

I was gonna use this at p2o to pop a netfilter bug-- but they switched to RedHat from Ubuntu, and RedHat doesn't even stop you entering unrpiv namespaces by default, so it's superfluous mitigations do not exist, and they cannot hurt you. happy friday!!

How Container Networking Works 🧵 1/6: Network namespaces (netns) A separate network namespace gives a Linux container its own virtualized (and fully isolated from the host) network "context" - a loopback device, a route table, netfilter/iptables rules, etc.

什么菩萨行为？PandoraNext 的作者在他的电报群里说: 《给@ja_netfilter_group 发ChatGPT邮箱，免费拉你成为Plus。最好别用大号！》，然后我就用新注册一个号，然后成功上车team团队版。群里已经疯狂星期四了，这一车明天估计能冲到7000人，哈哈哈哈，围观群地址 https://t.co/lBBHJxDbVZ

I think this is kind of level unblocked :) Thanks Pablo, Florian and the netfilter and kernel community for all the help and support to get this complex and subtle bug fixed

Searching, analyzing,and exploiting stack buffer overflow in the netfilter subsystem from the softirq context جستجو، تجزیه و تحلیل و استفاده از سرریزی بوفرهای استک در زیرسیستم netfilter از محیط softirq #Netfilter #SoftIRQ #PacketProcessing #Firewall #NetworkSecurity #LinuxKernel

Vulnerabilidad crítica de Netfilter en el núcleo de Linux ⏩CVE-2023-6040 https://t.co/hznK9QE7Fo

Vulnerabilidad del kernel de Linux (CVE-2024-26925) ⏬ Subsistema netfilter, específicamente dentro del componente nf_tables https://t.co/rk1hvmHqlQ

Empower a new generation of students with the Lenovo Chromebook powered by @MediaTek Kompanio 500 series featuring best-in-class solutions like the Chrome Education Upgrade, @LanSchool and Lenovo NetFilter.

Linux NetFilter Kernel Zafiyeti Linux Sistemlerde Root Yetkisi Veriyor https://t.co/pIUo5EC5tY

Linux kernel Netfilter Use-After-Free leads to LPE https://t.co/iCdG6F0ppR #CyberSecurity #Infosec

OtterRoot: Netfilter Universal Root 1-day

微妙に WLC にパケットを落とされる問題を生んでしまっているけど、Ruby で書いた PLAT と Linux の netfilter で NAT64 やってます。 500Mbps+ を YJIT と Ractor で処理! #rubykaigi #rubykaigiNOC

Linux Kernel NetFilter XTABLES out-of-bounds read vulnerability https://t.co/cE5abw03GF #Pentesting #Vulnerability #Linux #Kernel #CyberSecurity #Infosec

Linux Kernel netfilter: ipset: Missing Range Check LPE

#exploit #Kernel_Security OtterRoot: Netfilter Universal Root 1-day https://t.co/RHJzTKYoEJ ]-> PoC: