Skip to content

Priyabug/Race-Condition-Detection-and-Mitigation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
README.md
README.md
 
 
attack_process.c
attack_process.c
 
 
repeat.c
repeat.c
 
 
sticky_experiment.c
sticky_experiment.c
 
 
target_process.sh
target_process.sh
 
 
vulnerable program.c
vulnerable program.c
 
 

Repository files navigation

Race-Condition-Detection-and-Mitigation

Description

A race condition arises when multiple processes simultaneously access and modify the same data, and the execution outcome depends on the sequence of these accesses. If a privileged program contains a race-condition vulnerability, attackers can execute a parallel process to "race" against the privileged program, aiming to alter its behavior. Here we have exploited the vulnerability and gain the root privilege. In addition to the attacks, and we will also discuss about various protection schemes that can be used to counter the race-condition attacks. The lab covers the following topics:
• Race condition vulnerability
• Sticky symlink protection
• Principle of least privilege

image

Languages and Utilities Used

  • Python
  • Ununtu 20.04 VM

Environments Used

  • Windows 11 Home (21H2)

Program walk-through:

Task 1: Choosing Our Target
Task 2: Launching the Race Condition Attack

2.A: Simulating a Slow Machine
2.B: The Real Attack
2.C: An Improved Attack Method
Task 3: Countermeasures

3.A: Applying the Principle of Least Privilege
3.B: Using Ubuntu’s Built-in Scheme

About

It explores race condition vulnerabilities, detection techniques, and mitigation strategies, providing insights into how they are exploited and how to prevent them.

Topics

python ubuntu detection target-machine mitigation race-conditions countermeasure attack-program improved-attack

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages