![]() ![]() Thus, we have only one part of the program, the other Trying to load the module into memory with "kldload -v captain.ko" fails because of the "captain_kmod" module not being available. There are data structures associated to the strings "captain" and "captain_kmod", which look like the meta data used to tell the kernel what are the module name, version, and dependencies on other modules when registering it (as declared in "sys/module.h" in the kernel sources). ![]() The uprintf function is used, which is a kernel function.We have strings with "mod" in it, like "set_modmetadata_set".The "module_register_init" kernel function is called.By looking at the strings and functions of the binary, we conclude that the binary is a kernel module: Trying to run the binary on the command line of a FreeBSD machine doesn’t work as the file is not recognized as an executable. ![]() The goal is to understand what this binary does, and use this knowledge on the Kenshoto FreeBSD 6.x server to get a secret key. We are informed that it is running on Kenshoto's server. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |