# 0xdeadbeefnetwork/ssh-keysign-pwn

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/0xdeadbeefnetwork-ssh-keysign-pwn).**

738 stars · 95 forks · C

## Links

- GitHub: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn
- awesome-repositories: https://awesome-repositories.com/repository/0xdeadbeefnetwork-ssh-keysign-pwn.md

## Description

Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels.

## Tags

### Part of an Awesome List

- [Vulnerability Exploits](https://awesome-repositories.com/f/awesome-lists/security/vulnerability-exploits.md) — Exploit for ssh-keysign vulnerability.