REMote RAM Disk - remotely accessible sandboxed virtual storage device.
.
├── client
│ ├── inc
│ │ └── Client.hpp
│ └── src
│ ├── Client.cpp
│ └── client_main.cpp
├── driver
│ ├── Makefile
│ └── ramd.c
├── install_client.sh
├── install_server.sh
├── LICENSE
├── README.md
├── server
│ ├── inc
│ │ ├── PipeWrapper.hpp
│ │ └── Server.hpp
│ └── src
│ ├── PipeWrapper.cpp
│ ├── Server.cpp
│ └── server_main.cpp
└── shared
├── inc
│ ├── Connection.hpp
│ ├── Protocol.hpp
│ ├── remramd_exception.hpp
│ └── Utils.hpp
└── src
├── Connection.cpp
├── Protocol.cpp
├── remramd_exception.cpp
└── Utils.cpp
./driver - contains block device driver that represents fully functional RAM disk that uses I/O multiqueue.
./client - remramd client that gets a remote shell from the server via providing server's IP address and TCP port.
./server - remramd fork server that manages a minimal CLI and client processes.
- Driver
RAM disk implementation using modern block subsystem API - I/O multiqueue.
-
Client
- Randomizes valid TCP port for
netcatTCP listener. - Sends this port to the server.
- Waits for server's permission.
- If declined - exits, else - gets a remote shell via
netcatinside of the chroot jail. Each client uses a RAM disk as a block device for storing it's data in chroot jail.
Enter
exitto disconnect from the server. - Randomizes valid TCP port for
-
Server (high level overview)
- Creates a thread that constantly accepting new connection attempts.
- If new client wants to connect, the notifiation is popped on the server showing IP address and port for remote shell for this client.
- There is an option to drop the pending connection request via one of the menu options.
- If server side wants this client to connect, the server forks a new process, creates a chroot jail for it, cd and chroots into the prepared jail, drops privileges from root to server side defined permissions (may be any unprivileged uid & gid) and opens a reverse shell for the client inside of the isolated environment with server side defined amount of exposed binaries for each client individually.
At any point of time, the server can print out all current clients' data, drop a specific client, check for pending connections etc.
- Linux kernel version >= 5.0
- gcc with C++17 support
- netcat
Client 127.0.0.1:33889 - local client process on another terminal tab
Client 10.0.0.4:6640 - my smartphone (Android 10) that runs remramd_client
~/testjail is RAM disk mount point
~/testjail/127.0.0.1:33889 - local client process jail
~/testjail/10.0.0.4:6640 - my smartphone's client jail
- Server side
Compile the server and the driver by running chmod +x install_server.sh && sudo ./install_server.sh.
First of all, go to driver directory and enter sudo insmod ramd.ko in order to load the driver into the kernel. lsblk command will show a new device /dev/ramd which is a given RAM disk. You can provide a size for the disk via setting ramd_size argument, e.g. sudo insmod ramd.ko ramd_size=500 will create 512 MB RAM disk (disk size is aligned to 2^x bytes). Default capacity is 1 GB.
Then you need to create a partition that will be formatted further. sudo fdisk /dev/ramd to partition the device (go for a default suggestions). lsblk will show /dev/ramd1 partition. Now the partition needs to be formatted to one of the filesystem formats, let's pick a well-known ext4. Enter sudo mkfs -t ext4 /dev/ramd1. Now, the partition is ready to be mounted anywhere in your filesystem. Create an arbitrary directory and mount the formatted partition on it, e.g. mkdir -p ~/jail && sudo mount /dev/ramd1 ~/jail. Now RAM disk is ready to be used as a separate virtual block device.
In order to run the server, enter sudo ./remramd_server <jail path> <listening TCP port> <backlog>.
Example: sudo ./remramd_server /home/user/jail 1337 10 - the server will listen on TCP port #1337 with a backlog of 10 pending connections. Every client will be jailed at /home/user/jail/<client's IP address> directory.
- Client side
Compile the client by running chmod +x install_client.sh && ./install_client.sh.
You need to know server's IP address and TCP listening port. Usage: ./remramd_client <server IP> <port>.