linux-rootkit

Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)
git clone git://git.deurzen.net/linux-rootkit
Log | Files | Refs
commit 55c4588254f7cf09ef6ee9b8867c667c0ba25ce3
parent e0cb66e21bacc5da81a337b6ec5045aa6b2029e7
Author: Tizian Leonhardt <tizianleonhardt@web.de>
Date:   Fri,  5 Feb 2021 18:21:08 +0100

Better formatting for output

Diffstat:

Mproject/extract_sizeret.py | 2+-


1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/project/extract_sizeret.py b/project/extract_sizeret.py
@@ -116,7 +116,7 @@ class RKPrintData(gdb.Command):
         sz = int(gdb.parse_and_eval(f"sizeof({t})"))
         dt = gdb.selected_inferior().read_memory(addr, sz)
 
-        print(f"{line.replace(';', '')} => {bytes(dt)}")
+        print(f"{line.replace(';', '')} => 0x{bytes(dt).hex()}")
 
     def type_from_line(self, line):
         t = line.split(" ")[:-1]