linux-rootkit

Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)
git clone git://git.deurzen.net/linux-rootkit
Log | Files | Refs
commit 74cb52740cb4b3c0a806c3afa5748e53eee40644
parent 7b94f38bd035e55eec9a973cc62cc26b935e3195
Author: Tizian Leonhardt <tizianleonhardt@web.de>
Date:   Fri,  5 Feb 2021 13:46:46 +0100

Add vfree to improve coverage

Diffstat:

Mproject/extract_sizeret.py | 3++-


1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/project/extract_sizeret.py b/project/extract_sizeret.py
@@ -22,7 +22,8 @@ break_arg = {
 free_funcs = {
     # *v*free variants all call kfree
     "kfree": "rdi",
-    "kmem_cache_free" : "rsi",
+    "vfree": "rdi",
+    "kmem_cache_free": "rsi"
 }
 
 entries = set()