Skip to content
/ User-Level-System-Call-Hook-Report Public

To use zpoline to achieve monitoring and modification of system calls.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

wutingting0829/User-Level-System-Call-Hook-Report

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
README.md
README.md
 
 
main.c
main.c
 
 
mystery
mystery
 
 
report.pdf
report.pdf
 
 

Repository files navigation

User-Level System Call Hook Report

To use zpoline to achieve monitoring and modification of system calls.

Overview

Zpoline: a system call hook mechanism based on binary rewriting Zpoline employs binary rewriting techniques to redirect the originally intended syscall instructions to a user-defined hook function, enabling users to implement user-level system call hooking. In this project, you need to use zpoline to achieve monitoring and modification of system calls. The recommended operating environment is Ubuntu 22.04 x86_64.

(If you are using an M1/M2 Mac, you will require a virtual machine that supports x86 emulation.)

Requirement

  1. Build zpoline from source code : GitHub - yasukata/zpoline: system call hook for Linux
  2. Execute the default system call hook by zpoline. LIBZPHOOK=./apps/basic/libzphook_basic.so LD_PRELOAD=./libzpoline.so /bin/ls
  3. Check the system call table to determine which system calls have been invoked by the ls program.

About

To use zpoline to achieve monitoring and modification of system calls.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages