It may happen, that a need arises to write a Loadable Kernel Module for pre-built Linux kernel without properly configured sources. In general, it may be a painful process and I try to show, how this job may be done in a relatively painless manner.
It has been a while since my last article. Special thanks to those who decided to stay with me despite the long break and welcome to new readers!
Third part of a series of articles on interception of Linux system calls with Loadable Kernel Module. The process of actual patching of the System Call Table is being dissected here.
First part of a series of articles on interception of Linux system calls with Loadable Kernel Module.
Brief introduction to Windows SEH and VEH internals