-
Notifications
You must be signed in to change notification settings - Fork 12
phimuemue/rootkit-praktikum
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
Rootkit Programming - Final Excersise Note: You can have a look at the thing at https://github.com/phimuemue/rootkit-praktikum You should have received a PDF describing all relevant things we implemented for this praktikum (this PDF should reside in the folder doc). To build and load the rootkit, you should be able to simply do the following: make insmod cool_mod.ko Commands can then be entered directly into a shell and have the following format (three hashes, one space, command, arguments): ###<space>hidetcp<space>1234<space> Here's a list of commands for the module: command argument example ------------------------------------------------ hideproc yes, PID ### hideproc 1234 unhideproc yes, PID ### unhideproc 1234 hidemodule no ### hidemodule unhidemodule no ### hidemodule hidetcp yes, port ### hidetcp 1123 hideudp yes, port ### hideudp 123 unhidetcp yes, port ### unhidetcp 1123 unhideudp yes, port ### unhideudp 123 hidefiles no ### hidefiles unhidefiles no ### unhidefiles escalate no ### escalate Each <space> has to be replaced by a real space.