Linux x86 run time process manipulation
[------------------------------------------------------------------------]
[-- Uninformed Research -- informative information for the uninformed. --]
[------------------------------------------------------------------------]
[-- Genre : Development --]
[-- Name : needle --]
[-- Desc : Linux x86 run-time process manipulation --]
[-- Url : http://www.uninformed.org/ --]
[-- Use : EVILNESS --]
[------------------------------------------------------------------------]
[-- Author : skape (mmiller@hick.org) --]
[-- Date : 01/19/2003 --]
[------------------------------------------------------------------------]
[-- Table of contents: --]
1) Overview
1.1) Topics
1.2) Techniques
1.3) Execution Diversion
2) Memory Allocation
3) Memory Management
4) Library Injection
5) Code Injection
5.1) Forking
5.2) Threading
5.3) Function Trampolines
6) Conclusion
7) References
[-- 1) Overview --]
So, you want to be evil and modify the image of an executing
process? Well, perhaps you've come to the right place. This
document deals strictly with some methodologies used to to
alter process images under Linux. If you're curious about how
to do something similar to the things listed in this document in
Windows, please read the ``References`` section.
[-- 1.1) Topics --]
The following concepts will be discussed in this document as they
relate t
Ïà¹ØÎĵµ£º
Ò». yumÊÇʲô
yum = Yellow dog Updater, Modified
Ö÷Òª¹¦ÄÜÊǸü·½±ãµÄÌí¼Ó/ɾ³ý/¸üÐÂRPM°ü.
ËüÄÜ×Ô¶¯½â¾ö°üµÄÒÐÀµÐÔÎÊÌâ.
ËüÄܱãÓÚ¹ÜÀí´óÁ¿ÏµÍ³µÄ¸üÐÂÎÊÌâ
¶þ. yumÌصã
*¿ÉÒÔͬʱÅäÖöà¸ö×ÊÔ´¿â(Repository)
*¼ò½àµÄÅäÖÃÎļþ(/etc/yum.conf
*×Ô¶¯½â¾öÔö¼Ó»òɾ³ýrpm°üʱÓöµ½µÄÒÐÀµÐÔÎÊÌâ
*ʹÓ÷½±ã
*± ......
c++¿âÎļþÖеķûºÅµÄº¬Ò壺
ËùÓеķûºÅ¶¼ÊÇÒÔÏ»®Ïß¼ÓÉÏ´óд×ÖĸҲ¾ÍÊÇ"_Z"¿ªÍ·£¬¶ÔÓÚÔÚ ÀàÀï»òÕßÃüÃû¿Õ¼äÖеķûºÅ£¬ºóÃæ½ô¸ú"N"£¬È»ºóÊǸ÷¸öÃüÃû¿Õ¼äºÍÀàµÄÃû×Ö£¬Ã¿¸öÃû×ÖÇ°ÊÇÃû×Ö×Ö·û´®µÄ³¤¶È£¬ËæºóÊÇ´óд×Öĸ"E"£¬¶ÔÓÚÒ»¸öº¯Êý£¬ËûµÄ²ÎÊýÁÐ±í¶¼ÔÚEºóÃ棬 ......
telnetÓësshÖ»ÊÇ»ùÓÚ×Ö·û½çÃæµÄÔ¶³Ì¿ØÖÆ£¬Èç¹ûÏëÒª¶Ôlinux·þÎñÆ÷ʱÐÐ×ÀÃæµÄÔ¶³Ì¿ØÖƵĻ°£¬ÎÒÃÇ¿ÉÒÔ°²
×°vnc-server·þÎñÀ´ÊµÏÖ
1. ²é¿´Vnc°²×°°æ±¾¡£
ps aux|grep Xvnc
2.ÉèÖÃVNC×ÀÃæ
2.1
ÎÒÃÇҪΪÓÐȨ¿ÉÒԵǼµÄÓû§ÉèÖõǼ×ÀÃ棬ÐÞ¸ÄÅäÖÃÎļþ/etc/sysconfig/vncservers £º
VNCSERVERS="2:username"
VNCSERVERARGS ......
¹ýÄê»ØÀ´£¬¹«Ë¾ÓÐЩ¸Ä¶¯£¬ÔÏȵÄWinceƽ̨»»³ÉLinuxÁË£¬×Ô¼ºµÄѧϰ¼Æ»®Ò²ÒªËæÖ®¸Ä±ä£¬ËäȻ֮ǰû½Ó´¥¹ýLinuxϵͳÏà¹ØµÄ֪ʶ£¬µ«Òª×¥×¡»ú»áŬÁ¦Ñ§Ï°¡£
Ìýѧ³¤Ëµ£¬ÒªÑø³ÉЩBlogµÄÏ°¹ß£¬°Ñ×Ô¼ºµÄѧϰÐĵüÇÏÂÀ´£¬·½±ãÔÚѧҪÊDzéÔÄ£¬ÓеÀÀí£¬ÏÖÔÚ¿ªÊ¼×ܽáÐĵÃ֪ʶ¡£
ÔÚ¹«Ë¾¿ª·¢ÓõÄÊÇѧУµÄSEP 4020mini¿ª·¢°å£¬
³õÆÚÊÇÊìϤ» ......
1¡¢ÌØȨ¼¶
¡¡¡¡IntelÌåϵ½á¹¹ÒýÈëÌØȨ¼¶ÊÇΪÁËʵÏÖ±£»¤¡£Ëùν386±£»¤Ä£Ê½¾ÍÊÇÔÚ´Ë»ù´¡ÉϽ¨Á¢ÆðÀ´µÄ¡£ÏµÍ³ÖÐÿ¸ö¶Î£¨CS¡¢DS¡¢SS£©¶¼ÓÐ×Ô¼ºµÄÌØȨ¼¶£¬ÏµÍ³ÖÐÿ¸öÈÎÎñ»ò³ÌÐòÒ²¶¼ÓÐ×Ô¼ºµÄÌØȨ¡£
¡¡¡¡2¡¢²Ù×÷ģʽ
¡¡¡¡´¦ÀíÆ÷¼Óµç»òÖØÆôºó£¬Ê×ÏȽøÈëʵģʽ£¬²Ù×÷ϵͳ³õʼ»¯²¿·Ö¸ºÔð´Óʵģʽµ½±£»¤Ä£Ê½µÄÇл»¡£
¡¡¡¡3¡¢¶Î¡¢¶Îà ......
