|

System Call Tracking without ptrace,strace,etc.

ByQ A

How could I log system calls made by another process without using current built in functions like ptrace, strace, audit etc.

I think two options are intercepting the system call table, and another is modifying the entry_64.s file. I want to output these system calls to a file.

Can’t find any suggestions on this anywhere.

What’s the reason that you don’t use ptrace? It is supported from Linux kernel directly. Any other solutions may likely go through a similar way to what ptrace does..

Read more:

Similar Posts

  • Conferences on Cloud Computing 2013

    ByEric Ma

    This post lists important conferences related to Cloud Computing in year 2013. SOSP 2013 SOSP’13: The 24th ACM Symposium on Operating Systems Principles. November 3-6, 2013, Nemacolin Woodlands Resort, Pennsylvania. The biennial ACM Symposium on Operating Systems Principles is the world’s premier forum for researchers, developers, programmers, and teachers of computer systems technology. Academic and…

  • How to install multiple versions of sbt on my Linux host?

    ByEric Ma

    How to install multiple versions of sbt on my Linux host For example, some projects use 0.12.x while some use 0.13.x. Installing neither in the system only is not sufficient enough. You may use the excellent sbt-extras: https://github.com/paulp/sbt-extras Most of the time, it detects the version of sbt needed in the project direoctory automatically: [zma@office…

  • How to get a free Web server SSL/TLS certificates for my websites?

    ByEric Ma

    Can I get a non-self-assigned and free Web server SSL/TLS certificates for my https websites? Asking the users to accept the self-assigned SSL certificates for my websites is not very convenient. Please check https://letsencrypt.org/ . PS: StartSSL used to provide 1 year free SSL. But StartCom CA is closed since Jan. 1st, 2018. Read more:…

  • COM Port Programming in Win32

    ByEric Ma

    The control support for the COM port under Win32 can be used to operate the COM port, such as a monitoring and control program for a single-chip microcontroller. Below is an example code related to COM port control: // Open COM1 hCOM=CreateFile( “COM1″,GENERIC_READ|GENERIC_WRITE,0,NULL,OPEN_EXISTING,0,NULL); if (hCOM==INVALID_HANDLE_VALUE) { MessageBox( GetForegroundWindow(),”Can not open the COM port!”,”Operation Failed”,MB_ICONINFORMATION); return;…

  • Where are the backup files of my iPhone by iTune and how to get the real files from them?

    ByQ A

    I backup my iPhone with iTune to my local computer. Where can I find out the backup files of my iPhone by iTune? And how to get the real files (like songs, notes, etc.) from the backup files? The location of the backup files from iTune It depends on the computer’s operating system: Mac: ~/Library/Application…

  • Micosoft招聘部分算法题

    ByEric Ma

    Micosoft招聘部分算法题 1.链表和数组的区别在哪里? 2.编写实现链表排序的一种算法。说明为什么你会选择用这样的方法? 3.编写实现数组排序的一种算法。说明为什么你会选择用这样的方法? 4.请编写能直接实现strstr()函数功能的代码。 5.编写反转字符串的程序,要求优化速度、优化空间。 6.在链表里如何发现循环链接? 7.给出洗牌的一个算法,并将洗好的牌存储在一个整形数组里。 8.写一个函数,检查字符是否是整数,如果是,返回其整数值。(或者:怎样只用4行代码编写出一个从字符串到长整形的函数?) 9.给出一个函数来输出一个字符串的所有排列。 10.请编写实现malloc()内存分配函数功能一样的代码。 11.给出一个函数来复制两个字符串A和B。字符串A的后几个字节和字符串B的前几个字节重叠。 12.怎样编写一个程序,把一个有序整数数组放到二叉树中? 13.怎样从顶部开始逐层打印二叉树结点数据?请编程。 14.怎样把一个链表掉个顺序(也就是反序,注意链表的边界条件并考虑空链表)? 来源:·日月光华 bbs.fudan.edu.cn Read more: Send Messages to Other Windows Using Win32 API MFC中屏蔽ESC和回车关闭对话框 GNU C Reference Manual RAII-like Error Handling and Resource Management in C Fetching RSS Feed and Outputing Feed Items as HTML in PHP Handling Sparse Files on…

Leave a Reply

Your email address will not be published. Required fields are marked *