CVE-2022-0847 Dirty Pipe: Emulation and Detection
In this lab, you’ll practice vulnerability management by researching, assessing, testing, and mitigating an emerging threat. When you’re finished, you’ll be able to emulate the Dirty Pipe vulnerability, detect attempts to exploit it, and protect your networks and systems.
Terms and conditions apply.
Challenge
Getting Started in the Lab Environment
Just like the universe, your lab is being created from nothing. That can take a couple of minutes, so start here with an explanation of the lab environment and your initial instructions, and you'll be ready to hit the ground running as soon as the sparks stop fizzing off the virtual hard drives.
Challenge
Emulate
Determine if the lab system is vulnerable to Dirty Pipe by running a script that checks the Linux kernel version and compares it against known vulnerable versions, then prove that the vulnerability is exploitable by running bleeding edge proof of concept code to gain root access to the system.
Challenge
Detect
Create audit rules based on what you’ve learnt about the vulnerability and how it works, to alert on specific system calls.
Challenge
Protect
Patch the kernel so that a non-vulnerable version of the splice system call is installed, but retain the original kernel so you carry out further testing.
Challenge
The Last Challenge
Welcome to the final challenge! This is your last chance to experiment in the environment. Clicking Finish Lab will end this little world that flittered into existence just for you.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
Recommended prerequisites
- You should be comfortable working at the Linux command line and running typical administrative tasks.
- Experience with bash scripting and the C programming language would be beneficial to get the most from this lab, but it's not essential.