Bypassing noexec and executing arbitrary binaries
TL;DR: Execute a binary on a Linux system when execution is not allowed (e.g. restricted PHP environment, read-only filesystem or noexec mount flag). By using only Bash and making syscall(2)’s from Bash (!) and piping the ELF binary straight from the Internet into Bash’s address
space - without touching the harddrive and without ptrace() or mmap()….