linux-rootkit

Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)
git clone git://git.deurzen.net/linux-rootkit
Log | Files | Refs
commit 971d2e79b0d36dbe0e7294944540311e615acc14
parent cce29bf62501ebcac4794cdf4720a1cc487a7eba
Author: deurzen <m.deurzen@tum.de>
Date:   Fri,  5 Feb 2021 20:10:49 +0100

beautifies print

Diffstat:

Mproject/extract_sizeret.py | 2+-


1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/project/extract_sizeret.py b/project/extract_sizeret.py
@@ -47,7 +47,7 @@ class RkPrintMem(gdb.Command):
             return None
 
         for addr, (type, size, caller) in mem_map.items():
-            print(f"type: {type}, size: {size}, addr: {hex(addr)}, caller: {caller}")
+            print(f"type: {type[7:]}, size: {size} B, addr: {hex(addr)}, caller: {caller}")
 
 RkPrintMem()