Syscalls are talked about in section 2.7
Forensic Analysis of a Live Linux System, Part Two
http://www.securityfocus.com/infocus/1773
This article is more in depth on this point; it's by the same author.
Detecting Kernel-level Compromises With gdb
http://www.securityfocus.com/infocus/1811
I hope this helps.
Steven
-----Original Message-----
From: H. S. [mailto:[EMAIL PROTECTED]
Sent: Monday, January 31, 2005 12:01 PM
To: [email protected]
Subject: syscall list
Hi,
I don't remember how to extract the syscall list from the
kernel. There
was an article some time ago about this, and checking the
syscall address
to make sure it was not changed in the kernel. Could anyone
point me to
this article? I've tried to google around but didn't find it.
Best Regards
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to
"[EMAIL PROTECTED]"
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security
System.
For more information please visit
http://www.messagelabs.com/email
______________________________________________________________________
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
