279
edits
Changes
Jump to navigation
Jump to search
m
wikify
==Introduction==
Well, as I wished to do something with the recent MoHH exploit, a friend came with a nice suggestion: making an eLoader. And I said myself "why not, let's give it a try". After a couple of weeks of research and coding, I can tell I'm able to load some non-signed [[ELF|ELFs ]] on OFW using this exploit. How is this acheived? Well, you have to get some basic knowledge about how the whole thing works. Let's start with it.
First of all, we have to keep in mind that '''the exploit allows us to run our code, but we're still limited to user mode'''. This is not a kernel exploit, so we're stuck in user mode. This means we cannot access kernel memory whatsoever, so patching syscalls/functions is out of the order of the day.
