It may happen, that a need arises to write a Loadable Kernel Module for pre-built Linux kernel without properly configured sources. In general, it may be a painful process and I try to show, how this job may be done in a relatively painless manner.
It has been a while since my last article. Special thanks to those who decided to stay with me despite the long break and welcome to new readers!
Detailed description of user space signal handling in Linux with demo code for both i386 and x86_64 platforms.
One of the ways to obfuscate the code is the so-called "Stealth API Import. This article provides an in-depth insight into the issue.
Brief introduction to Windows SEH and VEH internals