能单独把内核一些模块单独抽出来么？比如 inlinehook这种工具块。

bmax121 / KernelPatch

Patching and hooking the Linux kernel with only a stripped Linux kernel image.

GNU General Public License v2.0

736 stars 128 forks source link

Closed w296488320 closed 8 months ago

w296488320 commented 9 months ago

市面上很少用存c实现的inlinehook ，还有各种内核相关的工具库。我最近也在搞这块，发现能用的很少。

bmax121 commented 8 months ago

请细说

w296488320 commented 8 months ago

比如inlinehook那部分，我现在自己也在做内核这块，但是hook用的kprobe做的hook 。相当于你把内核那部分工具类，单独抽出来。

bmax121 commented 8 months ago

kprobe 毫无疑问更标准