Repositories for Designing BSD Rootkits & FreeBSD Device Drivers

[rbranco]

I modified the original code to compile and uploaded it to these repos:

- https://github.com/ricardobranco777/designing-bsd-rootkits
- https://github.com/ricardobranco777/freebsd-device-drivers

There are some that I couldn't make to compile but when I will when I play with the code proper.

 

[eternal_noob]

FreeBSD needs more rootkits. Thank you!

 

[R. Esner]

Here's hoping these get added to the ports system. Much appreciated!

 

[yuripv79]

added to the ports system

Ugh, what for? (or am I missing the huge "sarcasm" sign?).

 

[eternal_noob]

So you can spy on yourself!

 

[rbranco]

FreeBSD needs more rootkits. Thank you!

It's the kernel hacking that is fun.

Here's hoping these get added to the ports system. Much appreciated!

Or complement examples like kld here:
- https://github.com/freebsd/freebsd-src/tree/main/share/examples/kld

 

[Phishfry]

Sounds as fun as smashing my fingers with a 20 pound maul.

You really don't have anything better to do than try and ruin FreeBSD?

Whats next FreeBSD Ransome-ware?

Geez peole who try and tear things down instead of building things up piss me off.

 

[R. Esner]

Sounds as fun as smashing my fingers with a 20 pound maul.

You really don't have anything better to do than try and ruin FreeBSD?

Whats next FreeBSD Ransome-ware?

Geez peole who try and tear things down instead of building things up piss me off.

I don't think this was their intention. It's just 2 repository of examples from books. This is the wrong place to post in though, in my opinion.

rbranco try Off-Topic.

 

[eternal_noob]

Accurate and truthful information is never wrong.

 

[Phishfry]

You don't think is scummy to break into peoples computers?

How should this be on a help forum?

 

[eternal_noob]

Though rootkits have a fairly negative image, they can be used for both good and evil. Designing BSD Rootkits arms you with the knowledge you need to write offensive rootkits, to defend against malicious ones, and to explore the FreeBSD kernel and operating system in the process.

Designing BSD Rootkits

"If you understand C and want to learn how to manipulate the FreeBSD kernel, Designing BSD Rootkits is for you. Peer into the depths of a powerful operating system and bend it to your will!" Richard Bejtlich, TaoSecurity View a sample chapter, Chapter 2: Hooking Download the source code files...

nostarch.com

 

[SirDice]

You don't think is scummy to break into peoples computers?

I can buy a crowbar in the hardware shop. I need it to rip out the old wooden floor in my house in order to replace it. Or I could use it to break into your home. It's not the tool that's at fault here.

 

[Phishfry]

Sure and child porn is OK because it keep predators at bay.
NOT

 

[Phishfry]

Just so many excuses why its OK.

Do you have lockpick tools laying around too?
"Just Learning" to defend my home.

 

[SirDice]

Weird flex. There's plenty of research that shows that's never the case.

Do you have lockpick tools laying around too?

I do actually.

 

[eternal_noob]

<deleted off-topic comment>

 

[Phishfry]

Like the KIA hackers assholes that carjacking cheap cars.
Why?
You are ruining our society.

As a locksmith I know that there is no impenetrable lock.
How evil are you to take years to break security systems.

 

[SirDice]

Like the KIA hackers assholes that carjacking cheap cars.
Why?
You are ruining our society.

So, who's fault is it? The people that showed how crap that security actually is? KIA for putting crap security on their keyfobs? Or the people that actually carjack someone?

As a locksmith I know that there is no impenetrable lock.

Neither is an unhackable system. But knowing where the faults are does mean you know how you could improve it.

How evil are you to take years to break security systems.

Depends on their intent. (Intention (criminal_law))

 

[eternal_noob]

Ignoring the fact that there are rootkits doesn't make them disappear. So it's better to raise awareness and to teach about them.

 

[SirDice]

So it's better to raise awareness and to teach about them.

Exactly.

 

[R. Esner]

Sure and child porn is OK because it keep predators at bay.
NOT

Do you really have to mention child porn to backup your argument against someone's exploration of the kernel through examples from BSD books?

Everything ever has exploits, not acknowledging those found only makes those who find (and create) them extremely powerful.

How evil are you to take years to break security systems.

Have you heard of pentesting?

 

[DanDare]

I know so little. I think 'standard' ethics says that one should inform in private to secteam about new flaws. But then impose a time period where information goes public, anyway.
This info not going public after this, is a security flaw itself.

"Will the cat succeed in catching the rats, or will the rats outsmart the cat?"

 

[rbranco]

Relax... The repository doesn't contain a collection of rootkits. One of the examples is how to hijack a system call. I modified it to hijack close() to do a fsync() before, just to see how it works and how it's done, not because it's such a great idea.

 

[gpatrick]

Designing BSD Rootkits was a good read.

 

[unitrunker]

Unless I missed something, a rootkit does not enable you to break into someone else's computer. It would need to be installed after gaining access.

There's probably someone reading this that purposely installed a rootkit on their own laptop to "phone home" in case it is ever stolen.