System Call Hooking
I am trying to do system call hooking in Linux v18.104.22.168
sys-call-table is not an exported symbol in Linux v2.6, so I have downloaded the source code and tried to apply the patches found in Kernel Trap website (kerneltrap.org/node/16668). However I couldn't apply the patches successfully.I think maybe because the patches is for 22.214.171.124.
Is this the correct way or is there any other methods to access the system call table?
I managed to apply the patch manually and able to recompile the kernel. Now I want to access the system call table, i tried to access it by writing a LKM to perform system call hooking by replacing system calls but I am getting "segmentation fault" error when I load my LKM.
Is this the correct method to perform system call hooking? Or is there any other method to access the system call table?