Vulnerability Development mailing list archives
Re: Capturing System Calls
From: rdighe () NORTELNETWORKS COM (Rajiv Dighe)
Date: Thu, 22 Jun 2000 14:27:37 -0400
Is modifying libc a possibility? or that a big no no too? FreeBSD & Linux *do* come with full libc source. so theoratically you can replace libc with your version that will contain the hooks that you need. everyone else has already mentioned about strace/ktrace/truss. so I won't bother. --Rajiv ----- Original Message ----- From: "Green Charles Contr AFRL/IFGB" <Charles.Green () RL AF MIL> To: <VULN-DEV () SECURITYFOCUS COM> Sent: Thursday, June 22, 2000 12:23 PM Subject: Capturing System Calls
On UNIX Systems, (FreeBSD, Linux, Solaris) is there a way to
capture/modify
system calls calls from an application with out modifying the kernel (or using kernel modules) - preferably in userspace? The reason I ask is that
a
group of us are being asked to evaluate a piece of software for my company but they've put some heavy restrictions on how we do it. One of the restriction is that we're not allowed to modify the kernel.
Current thread:
- Capturing System Calls, (continued)
- Capturing System Calls Green Charles Contr AFRL/IFGB (Jun 22)
- Re: Capturing System Calls Christofer C. Bell (Jun 22)
- Re: Capturing System Calls Steve Mosher (Jun 22)
- Re: Capturing System Calls Chon-Chon Tang (Jun 22)
- Re: Capturing System Calls Jonathan Leto (Jun 22)
- Re: Capturing System Calls Michal Zalewski (Jun 22)
- Re: Capturing System Calls Ryan Permeh (Jun 22)
- Re: Capturing System Calls Pavel Kankovsky (Jun 22)
- Re: Capturing System Calls Todd Garrison (Jun 22)
- Re: Capturing System Calls Andrew Reisse (Jun 22)
- Re: Capturing System Calls Rajiv Dighe (Jun 22)
- Re: Capturing System Calls Granquist, Lamont (Jun 22)
- Re: Capturing System Calls Michal Zalewski (Jun 22)
- Re: Fwd: ShowFile CGI Security Vulnerability Blue Boar (Jun 21)
- Re: Another new worm??? Crispin Cowan (Jun 22)
- Re: Another new worm??? Justin Lintz (Jun 21)
- Re: Another new worm??? Steve Mosher (Jun 22)