linux-rootkit

Feature-rich interactive rootkit that targets Linux kernel 4.19, accompanied by a dynamic kernel memory analysis GDB plugin for in vivo introspection (e.g. using QEMU)
git clone git://git.deurzen.net/linux-rootkit
Log | Files | Refs

i20lecture.cls (4281B)

      1 \NeedsTeXFormat{LaTeX2e}
      2 \ProvidesClass{i20lecture}[2016/09/01 I20Lecture]
      3 
      4 \LoadClass[xcolor={usenames,dvipsnames}]{beamer}
      5 
      6 \mode<presentation>{\usetheme[wide, dark]{tum}}
      7 %% Available Options:
      8 %% dark     Use dark theme (default: off)
      9 %% en       English presentation (default: off)
     10 %% minimal  Be minimalistic (default: off)
     11 %% wide     Produce 16:9 slides (default: on)
     12 
     13 \usepackage[utf8]{inputenc}
     14 \usepackage[T1]{fontenc}
     15 \usepackage{default}
     16 \usepackage{amsmath}
     17 \usepackage{wasysym}
     18 \usepackage{calc}
     19 %\usepackage{pdfpcnotes}
     20 \usepackage{tikz}
     21 \usetikzlibrary{positioning, calc, arrows, calendar, scopes, backgrounds, patterns,
     22   shapes, fit, matrix, petri, decorations.pathreplacing}
     23 \usepackage{listings}
     24 \usepackage{booktabs}
     25 \usepackage{dcolumn}
     26 \usepackage[defaultmono, scale = .8]{droidsansmono}
     27 \usepackage{palatino}
     28 \usepackage{url}
     29 \usepackage{pifont}
     30 \usepackage{subfigure}
     31 \usepackage[absolute,overlay]{textpos}
     32 \usefonttheme{serif}
     33 \newcolumntype{d}[1]{D{.}{.}{#1}}
     34 \usepackage{standalone}
     35 \usepackage{eurosym}
     36 \usepackage{extarrows}
     37 \usepackage{todonotes}
     38 
     39 \usepackage{fancyvrb}
     40 \renewcommand*\ttdefault{fdm}
     41 
     42 % https://en.wikibooks.org/wiki/LaTeX/Source_Code_Listings
     43 \lstset{
     44   numbers=left,
     45   numberstyle=\tiny\color{gray},
     46   stepnumber=1,
     47   numbersep=5pt,
     48   showspaces=false,
     49   showstringspaces=false,
     50   showtabs=false,
     51   frame=single,
     52   rulecolor=\color{black},
     53   tabsize=2,
     54   captionpos=b,
     55   breaklines=true,
     56   breakatwhitespace=false,
     57   language=C,
     58   commentstyle=\itshape\color{Mahogany},
     59   stringstyle=\color{BrickRed},
     60   keywordstyle=\bfseries\color{OliveGreen},
     61   keywordstyle=[2]{\color{MidnightBlue}},
     62   keywordstyle=[3]{\color{RoyalPurple}},
     63   escapechar=ß,
     64   xleftmargin=8pt,
     65   xrightmargin=3pt,
     66   basicstyle=\scriptsize\fdmfamily,
     67   morekeywords={u32, __u32, __be32, __le32,
     68     u16, __u16, __be16, __le16,
     69     u8,  __u8,  __be8,  __le8,
     70     size_t, ssize_t, uint64_t}
     71 }
     72 
     73 %kirschju's masm lstlisting
     74 \lstnewenvironment{asmcode}{\lstset{
     75   language=[x86masm]Assembler,
     76   % TODO: Add missing keywords here
     77   keywords={mov, call, ret, xor, rep, int, loop, push, syscall, pop,
     78       cdqe, cqo, cmpsq, cmpxchg16b, jrcxz, lodsq, movsxd, sub, add,
     79       vxorpd, popfq, pushfq, scasq, stosq, iretq, rdtscp, swapgs, leave},
     80     keywords=[2]{rax, eax, ax, ah, al,
     81       rdx, edx, dx, dh, dl,
     82       rcx, ecx, cx, ch, cl,
     83       rbx, ebx, bx, bh, bl,
     84       rsi, esi, si, sih, sil,
     85       rdi, edi, di, dih, dil,
     86       rsp, esp, sp, rbp, ebp, bp, rip, eip, ip,
     87       r8, r8d, r8w, r8b, r9, r9d, r9w, r9b,
     88       r10, r10d, r10w, r10b, r11, r11d, r11w, r11b,
     89       r12, r12d, r12w, r12b, r13, r13d, r13w, r13b,
     90       r14, r14d, r14w, r14b, r15, r15d, r15w, r15b},
     91     keywords=[3]{db, section},
     92   comment=[]{},
     93   morecomment=[s]{/*}{*/},
     94   commentstyle=\itshape\color{Mahogany},
     95   identifierstyle=\color{Black},
     96   stringstyle=\color{Orange},
     97 }}{}
     98 
     99 \lstnewenvironment{ccode}{\lstset{
    100   language=C,
    101   keywordstyle=\bfseries\color{LimeGreen},
    102   commentstyle=\itshape\color{Mahogany},
    103   %identifierstyle=\color{BrickRed},
    104   stringstyle=\color{Orange},
    105   morekeywords={u32, __u32, __be32, __le32,
    106     u16, __u16, __be16, __le16,
    107     u8,  __u8,  __be8,  __le8,
    108     size_t, ssize_t, uint64_t, uint32_t}
    109 }}{}
    110 
    111 %\newcommand{\currentchapter}{}
    112 %\let\oldchapter\chapter
    113 %\renewcommand{\chapter}[1]{
    114 %	\oldchapter{#1}
    115 %	\renewcommand{\currentchapter}{#1}
    116 %}
    117 
    118 \newcommand{\currentsection}{}
    119 \let\oldsection\section
    120 \renewcommand{\section}[1]{
    121 	\oldsection{#1}
    122 	\renewcommand{\currentsection}{#1}
    123 	\renewcommand{\currentsubsection}{\ }
    124 	\renewcommand{\currentsubsubsection}{\ }
    125 }
    126 
    127 \newcommand{\currentsubsection}{}
    128 \let\oldsubsection\subsection
    129 \renewcommand{\subsection}[1]{
    130 	\oldsubsection{#1}
    131 	\renewcommand{\currentsubsection}{#1}
    132 	\renewcommand{\currentsubsubsection}{\ }
    133 }
    134 
    135 \newcommand{\currentsubsubsection}{}
    136 \let\oldsubsubsection\subsubsection
    137 \renewcommand{\subsubsection}[1]{
    138 	\oldsubsubsection{#1}
    139 	\renewcommand{\currentsubsubsection}{#1}
    140 }
    141 
    142 % META
    143 % =========================================================
    144 \title[None]{Rootkit Programming - Final Presentation}
    145 \author[Tizian L., Max v. D.]{Tizian Leonhardt, Max van Deurzen}
    146 \semester{Wintersemester 20/21}
    147 \institute{}
    148 \date{February 8, 2021}
    149 % =========================================================