search

m0nad / Diamorphine

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
Other
1.82k stars 431 forks source link

a suggestion #17

Closed hackendltd closed 4 years ago

hackendltd commented 4 years ago

Hi I hope to support the ability to hide the listening port And hide all network links to this port. thank you.

hackendltd commented 4 years ago

centos7 elrepo kernel 5.6.2-1.el7.elrepo.x86_64 make error

[root@localhost Diamorphine]# make make -C /lib/modules/5.6.2-1.el7.elrepo.x86_64/build M=/usr/src/debug/Diamorphine modules make[1]: Entering directory /usr/src/kernels/5.6.2-1.el7.elrepo.x86_64' CC [M] /usr/src/debug/Diamorphine/diamorphine.o /usr/src/debug/Diamorphine/diamorphine.c: In function ‘get_syscall_table_bf’: /usr/src/debug/Diamorphine/diamorphine.c:42:30: error: ‘sys_close’ undeclared (first use in this function) for (i = (unsigned long int)sys_close; i < ULONG_MAX; ^ /usr/src/debug/Diamorphine/diamorphine.c:42:30: note: each undeclared identifier is reported only once for each function it appears in make[3]: *** [/usr/src/debug/Diamorphine/diamorphine.o] Error 1 make[2]: *** [/usr/src/debug/Diamorphine] Error 2 make[1]: *** [sub-make] Error 2 make[1]: Leaving directory/usr/src/kernels/5.6.2-1.el7.elrepo.x86_64' make: *** [all] Error 2

m0nad commented 4 years ago

I'm aware that Diamorphine is not working above kernels 4.16, feel free to send a pull requests. Related to #15

m0nad commented 4 years ago

Commit 4438984 should fix this, please test and report any issues