Add task struct ref - linux-rootkit - Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)

commit d8ab0d2c79f3419e9b7ba30082d0ab01dacbb9f1
parent 37959d5b7703dfc2474b686edfc04351fe8fa4ef
Author: Tizian Leonhardt <tizianleonhardt@web.de>
Date:   Sat,  6 Feb 2021 00:36:12 +0100

Add task struct ref

Diffstat:
M project/occ.sh  | 2 +-

1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/project/occ.sh b/project/occ.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 #Extract all occurences of function calls and the assigned variables from kernel sources
-funcs=("kmalloc" "kzalloc" "vmalloc" "vzalloc")
+funcs=("kmalloc" "kzalloc" "vmalloc" "vzalloc" "alloc_task_struct_node")
 out=".funcs"
 
 rm -f cscope.out cscope.files $out

	linux-rootkit Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)
	git clone git://git.deurzen.net/linux-rootkit
	Log \| Files \| Refs