h3xduck
|
106f141c7e
|
Added new kprobe to the filesystem ebpf section. Now receiving read events, and storing them in a map for later use, along with a reference to the user-space memory buffer
|
2022-01-14 21:18:51 -05:00 |
|
h3xduck
|
193d9ec28f
|
Fixed the whole header setup, now correctly using the kernel headers instead of normal development ones. Ready to go on with original plan of file system hooking
|
2022-01-06 13:31:52 -05:00 |
|
h3xduck
|
f8774ac9cf
|
[BUILD IS FAILING] Added file system hooks and other improvements. Uploading because of needing to backup
|
2022-01-04 20:09:59 -05:00 |
|
h3xduck
|
0863566292
|
Included a global config struct for controlling which hooks and functions of the rootkit should be active. Still work to be done in the bpf side
|
2021-12-31 09:54:47 -05:00 |
|