Lately I have come to the point where I had to ask myself: How is this kernel thing really working. After some days of thinking about what could I implement there no idea has come up. (Ok, ok there was: a simple kernel network package filter) I decided to take the vicious way: A kernel module which should be able to hide himself from seen from inside the system + a remote shell started by a magic packet.
In this post I’m going to explain the basics of kernel modules and how to hook the sys_newuname function without the use of the sys_call_table
more here..........http://none.io/posts/2015-02-28-Hacking-the-Linux-kernel-%E2%80%94-Basics-and-address-juggling.html
In this post I’m going to explain the basics of kernel modules and how to hook the sys_newuname function without the use of the sys_call_table
more here..........http://none.io/posts/2015-02-28-Hacking-the-Linux-kernel-%E2%80%94-Basics-and-address-juggling.html