https://hardenedlinux.org/tags/rce/ Recent content in rce on HardenedLinux Hugo -- gohugo.io en-us Mon, 13 Apr 2026 00:00:00 +0000 https://hardenedlinux.org/blog/2026-04-13-stealthy-rce-on-hardened-linux-noexec--userland-execution-poc/ Mon, 13 Apr 2026 00:00:00 +0000 https://hardenedlinux.org/blog/2026-04-13-stealthy-rce-on-hardened-linux-noexec--userland-execution-poc/ Running arbitrary ELFs on noexec,nosuid,nodev mounts – without ever whispering execve(2) to the kernel. A straight-from-the-underground deep dive into the userland-exec toolkit. We built it. We drop it. We own the box. The Radical Threat Model (because “defense in depth” is just marketing until you test it) Sysadmins think they’ve won when they slap this on: mount -t tmpfs -o noexec,nosuid,nodev tmpfs /tmp/noexec_demo Add SELinux enforcing or a tight AppArmor profile and they call it a day.