该文章讨论了一个用户空间的rootkit工具,其通过替换部分系统文件以实现隐藏和避免检测。该工具在Debian Forky 6.16.7内核下进行了测试,并可能适用于其他Linux发行版。 2025-9-26 02:28:11 Author: www.reddit.com(查看原文) 阅读量:0 收藏
Focused on the ongoing discussion and documentation of vulnerabilities and exploitation techniques. Please read the rules before posting here.
This is just a userland rootkit with some binaries of system files that help it avoid detection. Its been tested using Debian Forky using kernel 6.16.7. It might work with other distros, but at this time, this is all that's been tested.
如有侵权请联系:admin#unsafe.sh