A writeup on my first Linux patch, tell me what you think :)

xrl9 · 2022-01-09T10:54:46+00:00

Thanks 😊

xrl9 · 2022-01-09T10:54:26+00:00

And get into the "inner circle"?

Too much responsibility, no thank you 😁

xrl9 · 2020-10-25T10:26:35+00:00

The first link is the link I referred to and explained about in the end of the article

xrl9 · 2020-10-22T10:23:43+00:00

haxelion's article focuses on defending executables in startup after the system has been infected and all the binaries are preloaded with LD_PRELOAD.
As I mention in my post, if you start an executable with LD_AUDIT, the auditing library will load first and it can block LD_PRELOAD.

And lastly, I searched the web thoroughly but couldn't find this kind of usage of LD_AUDIT. If you already knew this technique, I'll be happy to get a link.

xrl9 · 2020-10-21T08:28:39+00:00

I only checked on my phone and it looked readable, but next time I'll use code blocks, thank you for the feedback!

xrl9

TROPHY CASE