whatisgithub

What is linux-kernel-exploits?

secwiki/linux-kernel-exploits — explained in plain English

Analysis updated 2026-06-26

5,598CAudience · researcherComplexity · 4/5Setup · hard

In one sentence

A curated reference index of Linux kernel privilege escalation exploits organized by CVE number, covering vulnerabilities from kernel 2.4 through 4.x, intended for security researchers and authorized penetration testers studying how kernel flaws work.

Mindmap

mindmap
  root((linux-kernel-exploits))
    Content
      CVE index
      Exploit code
      Affected versions
    Kernel areas
      Networking
      USB drivers
      User namespaces
    Notable CVEs
      Dirty Cow
      glibc flaws
      Sudo bugs
    Audience
      Security researchers
      Penetration testers
      CTF participants
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Look up which CVE exploits affect a specific Linux kernel version during an authorized security assessment.

USE CASE 2

Study how a specific class of Linux kernel vulnerability works for security research or CTF preparation.

USE CASE 3

Find reference code for a known privilege escalation bug when practicing in a legal lab environment.

What is it built with?

C

How does it compare?

secwiki/linux-kernel-exploitsziparchive/ziparchiveandmarti1424/sc-im
Stars5,5985,5925,618
LanguageCCC
Setup difficultyhardeasymoderate
Complexity4/52/53/5
Audienceresearcherdeveloperdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · hard Time to first run · 1h+

Each exploit requires a matching vulnerable kernel version, there is no unified setup, look inside individual CVE folders for details.

So what is it?

This repository is a curated collection of privilege escalation exploits targeting the Linux kernel. Privilege escalation means taking a user account with limited permissions and gaining full administrative (root) access to the system by exploiting a security flaw. The collection is maintained by SecWiki, a Chinese security community, and the repository description is written in Chinese. The README is structured as a long list of known vulnerabilities, each identified by a CVE number. CVE stands for Common Vulnerabilities and Exposures, which is the standard naming system used by the security industry to track and reference specific bugs. Each entry links to a folder in the repository containing code or scripts related to that vulnerability, and notes which kernel versions are affected. The vulnerabilities span roughly a decade of Linux kernel releases, from the 2.4 and 2.6 series through the 4.x line. Some entries target specific kernel subsystems such as networking, USB drivers, or user namespaces. Others target shared system libraries like glibc or utilities like Sudo that run on top of the kernel. Well-known entries include "Dirty Cow" (CVE-2016-5195), a widely exploited memory flaw that affected Linux kernels released after 2007. This repository is intended for security researchers, penetration testers, and people studying how kernel vulnerabilities work in a controlled or authorized context. It is not a tool for production software development. Each entry is essentially a reference and a starting point for understanding a specific class of bug rather than a finished, packaged tool. The README does not explain how to set up or run any individual exploit. For details on a specific CVE, you would look inside the corresponding folder.

Copy-paste prompts

Prompt 1
I'm studying Linux kernel privilege escalation for a CTF. Explain how the Dirty Cow exploit works and what kernel versions it affects.
Prompt 2
I'm doing an authorized pentest on a Linux server running kernel 3.14. Which CVEs in this collection target that kernel version?
Prompt 3
Explain what a user namespace exploit is and why it was a common privilege escalation vector in Linux kernel 4.x.
Prompt 4
Walk me through what happens at the kernel level during a memory-corruption privilege escalation exploit step by step.

Frequently asked questions

What is linux-kernel-exploits?

A curated reference index of Linux kernel privilege escalation exploits organized by CVE number, covering vulnerabilities from kernel 2.4 through 4.x, intended for security researchers and authorized penetration testers studying how kernel flaws work.

What language is linux-kernel-exploits written in?

Mainly C. The stack also includes C.

How hard is linux-kernel-exploits to set up?

Setup difficulty is rated hard, with roughly 1h+ to a first successful run.

Who is linux-kernel-exploits for?

Mainly researcher.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.