wsxk
commented
2 years ago It seems that busybox sed doesn’t support \x escape… So we need to send the patched ko to host. 关于这点 具体该如何做呢?
Closed lyq1996 closed 1 year ago
wsxk
commented
2 years ago It seems that busybox sed doesn’t support \x escape… So we need to send the patched ko to host. 关于这点 具体该如何做呢?
wsxk
commented
2 years ago 我尝试使用scp来上传文件 但是我失败了
lyq1996
commented
2 years ago @wsxk 我尝试使用scp来上传文件 但是我失败了
可以用base64编码一下ko,然后远程解码。。
wsxk
commented
2 years ago @lyq1996
@wsxk 我尝试使用scp来上传文件 但是我失败了
可以用base64编码一下ko,然后远程解码。。
谢谢,我解决了!
https://lyq.blogd.club/2021/11/07/rootkit-writeup/
0x01 Analysisrootkit is another challenge about kernel exploits after syscall. After connected to host, I found that the kernel load rootkit module at boot. 1[ 3.337631] rootkit: module license