Fork: 1
miura250 / linux_kernel_hacking
Download ZIP 43commits
Transfer to URL with SHA
linux_kernel_hacking / 3_RootkitTechniques / 3.6_hiding_ports /
latest commit e87bc47d09
@Harvey Phillips Harvey Phillips authored on 14 Aug 2020
..
Makefile hiding ports wip 4 years ago
README.md hiding ports wip 4 years ago
ftrace_helper.h hide ports: builds and hooks, still needs guts 4 years ago
rootkit.c hide ports: builds and hooks, still needs guts 4 years ago
test.sh hooking appears to work, but no effect yet 4 years ago
README.md

Linux Kernel Hacking

3.6: Hiding open ports

WORK IN PROGRESS

Most linux applications that search for local open ports (netstat included) use the /proc/net/tcp pseudo-file to do so. By hooking this function, we can choose to hide a particular open port from userspace.

To use:

  • TBC