Anthony Lineberry on /dev/mem Rootkits
“Malicious Code Injection via /dev/mem” by Anthony Lineberry: dtors.org/papers/malicious-code-injection-via-dev-mem.pdf
“Alice in Kernel Land: Malicious Code Injection via /dev/mem” (slides to Anthony Lineberry's Black Hat Europe 2009 presentation): dtors.org/papers/injection-via-dev-mem.pdf
“Runtime Kernel kmem Patching” by Silvio Cesare: doc.bughunter.net/rootkit-backdoor/kmem-patching.html
“Linux on-the-fly kernel patching without LKM” by sd and devik, Phrack 58 (December 28, 2001): www.trust-us.ch/phrack/show.php@p=58&a=7
“Linux Kernel Rootkits” by Rainer Wichmann: www.la-samhna.de/library/rootkits/index.html
“Who needs /dev/kmem?” by Jonathan Corbet: lwn.net/Articles/147901
“The details on loading rootkits via /dev/mem” by Jonathan Corbet: lwn.net/Articles/328695
Mick Bauer (email@example.com) is Network Security Architect for one of the US's largest banks. He is the author of the O'Reilly book Linux Server Security, 2nd edition (formerly called Building Secure Servers With Linux), an occasional presenter at information security conferences and composer of the “Network Engineering Polka”.
|Raspi-Sump||Dec 16, 2014|
|diff -u: What's New in Kernel Development||Dec 12, 2014|
|Non-Linux FOSS: Don't Type All Those Words!||Dec 10, 2014|
|Computing without a Computer||Dec 08, 2014|
|Autokey: Shorthand for Typists||Dec 04, 2014|
|How Can We Get Business to Care about Freedom, Openness and Interoperability?||Dec 03, 2014|
- Readers' Choice Awards 2014
- diff -u: What's New in Kernel Development
- Cooking with Linux - Serious Cool, Sysadmin Style!
- How Can We Get Business to Care about Freedom, Openness and Interoperability?
- Synchronize Your Life with ownCloud
- Days Between Dates?
- Computing without a Computer
- Non-Linux FOSS: Don't Type All Those Words!
- Autokey: Shorthand for Typists