Skip to content

Instantly share code, notes, and snippets.

@ronin13

ronin13/gist:8387266e48b6390d73fb

Last active August 29, 2015 14:22
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save ronin13/8387266e48b6390d73fb to your computer and use it in GitHub Desktop.
Save ronin13/8387266e48b6390d73fb to your computer and use it in GitHub Desktop.
Download ZIP
curl crash
Raw
gistfile1.txt
hostile.sh -m 100 curl -L http://google.com
===============
Thread 2 (Thread 0x7fd1b0039740 (LWP 31959)):
#0 0x00007fd1af2e6e8d in poll () from /usr/lib/libc.so.6
#1 0x00007fd1afa16131 in ?? () from /usr/lib/libcurl.so.4
#2 0x00007fd1afa0a180 in curl_easy_perform () from /usr/lib/libcurl.so.4
#3 0x000000000040a6b2 in ?? ()
#4 0x000000000040bfdd in ?? ()
#5 0x000000000040247a in ?? ()
#6 0x00007fd1af228790 in __libc_start_main () from /usr/lib/libc.so.6
#7 0x00000000004025c9 in ?? ()
Thread 1 (Thread 0x7fd1ad155700 (LWP 31961)):
#0 0x00007fd1ad323b03 in ?? () from /usr/lib/libresolv.so.2
#1 0x00007fd1ad32558f in ?? () from /usr/lib/libresolv.so.2
#2 0x00007fd1ad322c72 in __libc_res_nquery () from /usr/lib/libresolv.so.2
#3 0x00007fd1ad3232b5 in ?? () from /usr/lib/libresolv.so.2
#4 0x00007fd1ad32369e in __libc_res_nsearch () from /usr/lib/libresolv.so.2
#5 0x00007fd1ac544af9 in _nss_dns_gethostbyname4_r () from /usr/lib/libnss_dns.so.2
#6 0x00007fd1af2daec1 in gaih_inet () from /usr/lib/libc.so.6
#7 0x00007fd1af2dce6e in getaddrinfo () from /usr/lib/libc.so.6
#8 0x00007fd1afa1def7 in ?? () from /usr/lib/libcurl.so.4
#9 0x00007fd1afa2799a in ?? () from /usr/lib/libcurl.so.4
#10 0x00007fd1afa2645b in ?? () from /usr/lib/libcurl.so.4
#11 0x00007fd1af5b1354 in start_thread () from /usr/lib/libpthread.so.0
#12 0x00007fd1af2efbfd in clone () from /usr/lib/libc.so.6
@ronin13
Copy link
Author

ronin13 commented Jun 12, 2015

hostile.sh -m 100 curl -L http://google.com

            Hostile Engaged

Seed used 1434118957

            Hostile Engaged -> malloc

Frequency used 100

Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
zsh: segmentation fault (core dumped) hostile.sh -m 100 curl -L http://google.com

@ronin13
Copy link
Author

ronin13 commented Jun 12, 2015

With export LD_PRELOAD="/usr/lib/libjemalloc.so.1"

hostile.sh -m 100 curl -L http://google.com

            Hostile Engaged

Seed used 1434120362

            Hostile Engaged -> malloc

Frequency used 100

Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
Mid=evil on malloc()
curl: (27) Out of memory

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment