Section: .. / linux / security / stjude /
| /// File Name: |
StJude_LKM-0.01.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occuring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | File Size: | 13455 | | Last Modified: | Jul 10 20:48:56 2000 |
| MD5 Checksum: | decfff99f7c1396cc26ac211f6cb649e |
|
| /// File Name: |
StJude_LKM-0.02.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occuring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Changes: | Fixed bug which would prevent the setreuid syscal from being restored upon exit. | | File Size: | 13520 | | Last Modified: | Jul 29 19:10:26 2000 |
| MD5 Checksum: | 4bd7eeca77d479a36df73c38d7cff517 |
|
| /// File Name: |
StJude_LKM-0.03.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for 2.2.11 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occuring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Changes: | Support for SMP kernels, module-sealing is enabled, and a memory leak fix. | | File Size: | 23086 | | Last Modified: | Aug 11 17:40:24 2000 |
| MD5 Checksum: | dcc56176c1d569cabf3b852184f3f903 |
|
| /// File Name: |
StJude_LKM-0.04.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for 2.2.11 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occuring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Fixed bugs, added a Makefile, hid the old execve better, added a homepage. | | File Size: | 20052 | | Last Modified: | Nov 2 10:13:55 2000 |
| MD5 Checksum: | 31c63fad67e2ad7181c7596115b571ac |
|
| /// File Name: |
StJude_LKM-0.05.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for 2.2.0 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work equally well for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Added new response method which will execute an external command to record and deal with the intrusion. It is likely to be noted by an astute individual that this also affords the opportunity to counter-attack the attacker, using their control channel against them. | | File Size: | 21851 | | Last Modified: | Dec 15 22:55:11 2000 |
| MD5 Checksum: | d145e9768dc1a83974534bd301b738da |
|
| /// File Name: |
StJude_LKM-0.06.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for 2.2.0 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work equally well for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Fixed some broken code from 0.05 due to a 2AM release. | | File Size: | 19929 | | Last Modified: | Dec 17 04:11:50 2000 |
| MD5 Checksum: | 1a25c4e6e3db0751c2c2d7825c220e68 |
|
| /// File Name: |
StJude_LKM-0.07.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for 2.2.0 and greater kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work equally well for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Fixes problems on some of the newer Linux distributions. Makefile can now find include files better. | | File Size: | 20274 | | Last Modified: | Mar 19 09:01:28 2001 |
| MD5 Checksum: | ce9148dbc5c4b7de94de7158736f8f5e |
|
| /// File Name: |
StJude_LKM-0.10.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | This is the most stable version yet. Tested with kernel 2.4. Added Learning Parser to facilitate the generation of the Rulebase from the Learning Mode output. Combined with the Override directive, remote root attacks may be thwarted. | | File Size: | 31980 | | Last Modified: | Mar 19 09:06:51 2001 |
| MD5 Checksum: | 3f546a4f181d0c3503edb5afbd3f02aa |
|
| /// File Name: |
StJude_LKM-0.11.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local, and ultimately, remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Several compilation problems are fixed, in addition to a bug where if a process exec'd() without forking, and it was an override rule -- the first execution wouldn't be recorded through learning. | | File Size: | 28941 | | Last Modified: | Mar 20 21:57:39 2001 |
| MD5 Checksum: | c2d2a18ff5f4528d85759d904599fdc7 |
|
| /// File Name: |
StJude_LKM-0.12.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local and remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Updated checks and verified compatibility with 2.4.3, and fixed some theoretical bugs. | | File Size: | 29575 | | Last Modified: | Apr 7 01:18:42 2001 |
| MD5 Checksum: | 880fc6981bb8a8bc7a4b9b4590906e7c |
|
| /// File Name: |
StJude_LKM-0.20.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local and remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Introduced kernel integrity checking, and module support on systems that require module support. Added Read-Only /dev/kmem support. Eliminated the double-execve problem. New configuration script simplifies platform identification, and selection of compile-time options. Updated checks, verified compatibility with 2.4.7, and updated documentation. Changed license to GNU. | | File Size: | 49701 | | Last Modified: | Jul 30 11:05:52 2001 |
| MD5 Checksum: | 82af381dcf19fd6d6ab29092dc9709d5 |
|
| /// File Name: |
StJude_LKM-0.21.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local and remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Addition of Self Integrity Checks to Detect Attacks against StJude itself, Addition of configuration options to hard-code memory offsets into the source instead of discovery during load time permitting the loading of Stmichael from an initrd, before init spawns and the filesystems are mounted. Added in Kernel Licensing Code to Identify the Kernel License for Newer kernels - No more Tainted Kernels. Really Immutable filesystem support for ext3 fs added. Includes modifications to work with more recent ac kernels. | | File Size: | 62617 | | Last Modified: | Aug 7 07:54:38 2002 |
| MD5 Checksum: | 975a1b5bf451a89bc8e38d466d03f459 |
|
| /// File Name: |
StJude_LKM-0.21.tar.gz.sig |
Description:
|
StJude LKM 0.21 GPG signature. Gpg key is available from the public keyservers or from my webpage here.
| | File Size: | 65 | | Last Modified: | Aug 7 07:55:27 2002 |
| MD5 Checksum: | b38d10c0923acb1cddd950657dd855ee |
|
| /// File Name: |
StJude_LKM-0.22.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local and remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Tim Lawless | | Homepage: | http://www.wwjh.net | | Changes: | Redhat 8.0's attempt to stop module rootkits stopped StJude as well - added code to discover the sys_call_table during initialization on systems with a non-exported sys_call_table. Fixed some bugs and include problems. | | File Size: | 64325 | | Last Modified: | Oct 28 03:04:22 2002 |
| MD5 Checksum: | 355bc6c48ce1a8d82edf83a28df0ce89 |
|
| /// File Name: |
StJude_LKM-0.23.tar.gz |
Description:
|
Saint Jude LKM is a Linux Kernel Module for the 2.2.0 and 2.4.0 series of kernels. This module implements the Saint Jude model for improper privilege transitions. This will permit the discovery of local and remote root exploits during the exploit itself. Once discovered, Saint Jude will terminate the execution, preventing the root exploit from occurring. This is done without checking for attack signatures of known exploits, and thus should work for both known and unknown exploits.
| | Author: | Rodrigo Rubira Branco | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | StJude/StMichael now has Rodrigo Rubira Branco as its new maintainer. This release fixes compilation problems with 2.4 kernels and also support the newest StMichael (version 0.12). | | File Size: | 69572 | | Last Modified: | Dec 7 07:44:40 2005 |
| MD5 Checksum: | 2fa0b58e0165b503d494cf8138246b8d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
