linux_kernel_hacking
linux_kernel_hacking copied to clipboard
xcellerator
Linux Kernel Hacking
I decided to make a simple input/output proc device using https://xcellerator.github.io/posts/docker_escape/ and editing the code. https://gist.github.com/ninjamar/fbf236cc09d3a00460b880d0220054b3 The idea is you echo text to /proc/input and it the text is read...
``` qgb@ubuntu:~/github/linux_kernel_hacking/3_RootkitTechniques/3.9_hiding_logged_in_users$ make make -C /lib/modules/4.4.0-142-generic/build M=/home/qgb/github/linux_kernel_hacking/3_RootkitTechniques/3.9_hiding_logged _in_users modules make[1]: Entering directory '/usr/src/linux-headers-4.4.0-142-generic' CC [M] /home/qgb/github/linux_kernel_hacking/3_RootkitTechniques/3.9_hiding_logged_in_users/rootkit.o /home/qgb/github/linux_kernel_hacking/3_RootkitTechniques/3.9_hiding_logged_in_users/rootkit.c:170:62: error: type default s to ‘int’ in declaration of ‘buf’ [-Werror=implicit-int] static asmlinkage...
Hi, sorry to bother, I'm kind of new to this kind of stuff. I think I found a problem in the "Hiding a directory" section. If you load the kernel...
``` /* If hide_pid is contained in the first struct in the list, then we have to shift everything else up by it's size */ if ( current_dir == dirent_ker...
in later versions, this section of code that in ftrace_helper.h won't compile `static void notrace fh_ftrace_thunk(unsigned long ip, unsigned long parent_ip, struct ftrace_ops *ops, struct pt_regs *regs) { struct ftrace_hook...
First of all thank you so much because of Rootkit article. Regarding the tutorial you made, do you have a video explaining it step by step? And can you please...
### Howdy! First things to say: *I have long found this repo (and other stuff, the blog, etc) that you made quite helpful. You have my total respect and thanks!*...
I want to integrate all the functions in one file, but, I meet lots of bug, For example, static struct ftrace_hook hooks[] = { HOOK("sys_getdents64", hook_getdents64, &orig_getdents64), HOOK("sys_getdents", hook_getdents, &orig_getdents),...
This PR aims to address https://github.com/xcellerator/linux_kernel_hacking/issues/20.
