-
Notifications
You must be signed in to change notification settings - Fork 12
/
README
35 lines (26 loc) · 1.22 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
Rootkit Programming - Final Excersise
Note: You can have a look at the thing at
https://github.com/phimuemue/rootkit-praktikum
You should have received a PDF describing all relevant things we implemented
for this praktikum (this PDF should reside in the folder doc).
To build and load the rootkit, you should be able to simply do the following:
make
insmod cool_mod.ko
Commands can then be entered directly into a shell and have the following
format (three hashes, one space, command, arguments):
###<space>hidetcp<space>1234<space>
Here's a list of commands for the module:
command argument example
------------------------------------------------
hideproc yes, PID ### hideproc 1234
unhideproc yes, PID ### unhideproc 1234
hidemodule no ### hidemodule
unhidemodule no ### hidemodule
hidetcp yes, port ### hidetcp 1123
hideudp yes, port ### hideudp 123
unhidetcp yes, port ### unhidetcp 1123
unhideudp yes, port ### unhideudp 123
hidefiles no ### hidefiles
unhidefiles no ### unhidefiles
escalate no ### escalate
Each <space> has to be replaced by a real space.