Rootkit Programming
In this course, we will teach you various methods of gaining persistent root access to a system. If you are interested in low-level programming inside the Linux kernel, messing with libc and the hypervisor, this course is for you!
Hints
- https://linux-kernel-labs.github.io/refs/heads/master/labs/kernel_modules.html
- https://docs.kernel.org/driver-api/virtio/writing_virtio_drivers.html
- https://docs.kernel.org/core-api/dma-api-howto.html#what-memory-is-dma-able
- Source Code Browser for the Linux Kernel: https://elixir.bootlin.com/linux/v6.11.11/source
nc courses.sec.in.tum.de 32768- You need to base64 encode your kernel module before and copy and paste that into the netcat terminal session. Do not forget to insmod your kernel module afterwards! For convenience, you might want to use the following script: rootkit-connect.py
Registration Form
Valid applications received: 16