Call trans opt: receveid. 9-18-99 14:32:31 REC:log>
WARNING: carrier anomaly
Trace program: running
> Welcome
38.103.63.57
07.01.2009 - 09:37 (08:37 GMT)
5orry, you have... NO MAIL.
Hooking: The Complete Documentation
- This category contains 1 Papers
- The last paper was added on 2007-03-26 (YYYY-MM-DD)
Linux Per-Process Syscall Hooking
Published on 2006, by Pluf, ©Pluf.
This document describes a new syscall hooking technique for Linux systems and exposes how it can be implemented as part of a virus or a backdoor in order to take full control over an userland application. Although there are some well- known methods for hooking functions, they are mostly based on the ELF format itself. This technique is focused on thoses pieces of code that are externally called by the main program and invoke a system call or system service.
A simple implementation of this hooking mechanism has been developed as a result of the research and it is included with the article. This code provided does not have all the features you wish but includes the required ones, is not a real backdoor but a simple proof of concept, perfect to write your own one.
File infos:
- L0T3K ID: docs-1940
- status: online
- source: www.packetstormsecurity.org
Created: 2009-01-06 21:58 | Modified: 2009-01-02 01:10 | Size: 4332 octets