https://github.com/caledoniaproject/patchguard

*NIX Kernel PatchGuard Implementation
https://github.com/caledoniaproject/patchguard

Last synced: 8 months ago
JSON representation

*NIX Kernel PatchGuard Implementation

• Host: GitHub
• URL: https://github.com/caledoniaproject/patchguard
• Owner: CaledoniaProject
• Created: 2013-07-20T03:32:58.000Z (almost 13 years ago)
• Default Branch: master
• Last Pushed: 2013-08-17T10:19:22.000Z (almost 13 years ago)
• Last Synced: 2025-04-03T08:01:47.023Z (about 1 year ago)
• Language: C
• Size: 129 KB
• Stars: 5
• Watchers: 2
• Forks: 5
• Open Issues: 0
• Metadata Files:
  • Readme: readme.md

Awesome Lists containing this project

README

          
What's Patchguard?

---

Patchguard protects critical system calls from being tampered, e.g sys_open, socket_seq_show.

Specifically, it's capable of restoring:

- SSDT Hooks

- Inline Hooks

Important notice

---

Patchguard must be loaded ahead of any rootkits. Currently there's no way to regain tampered bytes anywhere.

Supported and fully tested on:

---

- Linux 3.2 +

- FreeBSD 9 + (Ongoing)