Linux server2.hpierson.com 3.10.0-1160.105.1.el7.x86_64 #1 SMP Thu Dec 7 15:39:45 UTC 2023 x86_64
Apache
: 162.0.216.123 | : 216.73.216.152
28 Domain
?7.4.33
yvffpqmy
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
usr /
share /
systemtap /
tapset /
linux /
i386 /
[ HOME SHELL ]
Name
Size
Permission
Action
aux_syscalls.stp
2.94
KB
-rw-r--r--
sysc_execve.stp
1.94
KB
-rw-r--r--
sysc_get_thread_area.stp
2.31
KB
-rw-r--r--
sysc_iopl.stp
2.4
KB
-rw-r--r--
sysc_ipc.stp
1.49
KB
-rw-r--r--
sysc_mmap2.stp
2.42
KB
-rw-r--r--
sysc_set_thread_area.stp
2.24
KB
-rw-r--r--
sysc_set_zone_reclaim.stp
1.53
KB
-rw-r--r--
sysc_sigaltstack.stp
2.63
KB
-rw-r--r--
sysc_vm86.stp
1.05
KB
-rw-r--r--
sysc_vm86old.stp
1.13
KB
-rw-r--r--
syscall_num.stp
28.63
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : sysc_set_thread_area.stp
# set_thread_area ____________________________________________ /* * asmlinkage int * sys_set_thread_area(struct user_desc __user *u_info) */ @define _SYSCALL_SET_THREAD_AREA_NAME %( name = "set_thread_area" %) @define _SYSCALL_SET_THREAD_AREA_ARGSTR %( argstr = u_info_str %) @define _SYSCALL_SET_THREAD_AREA_REGARGS %( u_info_uaddr = pointer_arg(1) u_info_str = _struct_user_desc_u(u_info_uaddr) %) probe syscall.set_thread_area = dw_syscall.set_thread_area !, nd_syscall.set_thread_area {} probe syscall.set_thread_area.return = dw_syscall.set_thread_area.return !, nd_syscall.set_thread_area.return {} # dw_set_thread_area _____________________________________________________ probe dw_syscall.set_thread_area = kernel.function("sys_set_thread_area") { @_SYSCALL_SET_THREAD_AREA_NAME u_info_uaddr = $u_info u_info_str = _struct_user_desc_u(u_info_uaddr) @_SYSCALL_SET_THREAD_AREA_ARGSTR } probe dw_syscall.set_thread_area.return = kernel.function("sys_set_thread_area").return { @_SYSCALL_SET_THREAD_AREA_NAME @SYSC_RETVALSTR($return) } # nd_set_thread_area _____________________________________________________ probe nd_syscall.set_thread_area = nd1_syscall.set_thread_area!, tp_syscall.set_thread_area { } probe nd1_syscall.set_thread_area = kprobe.function("sys_set_thread_area") { @_SYSCALL_SET_THREAD_AREA_NAME asmlinkage() @_SYSCALL_SET_THREAD_AREA_REGARGS @_SYSCALL_SET_THREAD_AREA_ARGSTR } /* kernel 3.5+, but undesirable because it affects all syscalls */ probe tp_syscall.set_thread_area = kernel.trace("sys_enter") { __set_syscall_pt_regs($regs) @__syscall_gate(@const("__NR_set_thread_area")) @_SYSCALL_SET_THREAD_AREA_NAME @_SYSCALL_SET_THREAD_AREA_REGARGS @_SYSCALL_SET_THREAD_AREA_ARGSTR } probe nd_syscall.set_thread_area.return = nd1_syscall.set_thread_area.return!, tp_syscall.set_thread_area.return { } probe nd1_syscall.set_thread_area.return = kprobe.function("sys_set_thread_area").return { @_SYSCALL_SET_THREAD_AREA_NAME @SYSC_RETVALSTR(returnval()) } /* kernel 3.5+, but undesirable because it affects all syscalls */ probe tp_syscall.set_thread_area.return = kernel.trace("sys_exit") { __set_syscall_pt_regs($regs) @__syscall_gate(@const("__NR_set_thread_area")) @_SYSCALL_SET_THREAD_AREA_NAME @SYSC_RETVALSTR($ret) }
Close
