monks:适用于 Linux 的 Procmon 替代品-源码
适用于 Linux 的 Procmon 替代方案 -
什么是僧人
Monks 是一个内核模块,它劫持 sys 调用,跟踪哪些进程调用了哪些 sys 调用,使用了什么参数,返回值是什么等,并将该信息发送到一个不错的 ncurses 接口。
换句话说,Monks 就像strace ,但可以跟踪任何级别的任何用户的所有和每一个进程。
这就是它的工作原理:
为什么叫这个名字?
一开始我Procmon项目命名为Procmon ,但是因为这个名字已经是注册商标,不想Procmon ,所以我决定叫它Monks ,它代表MONitoring Kernel Syscalls 。
设置僧侣
请记住,这是一个 WIP,您最终可能会得到一个完全冻结的内核! 不要在生产机器上运行这一点。 我不对任何数据丢失或以任何方式损坏负责。 也就是说,我每天都在相当多的虚拟机上测试这个模块,准确地说是 7。 x86 和
文件下载
资源详情
[{"title":"( 63 个子文件 438KB ) monks:适用于 Linux 的 Procmon 替代品-源码","children":[{"title":"monks-master","children":[{"title":"monks","children":[{"title":"netlink.h <span style='color:#111;'> 436B </span>","children":null,"spread":false},{"title":"lkm.c <span style='color:#111;'> 2.45KB </span>","children":null,"spread":false},{"title":"monks-viewer.c <span style='color:#111;'> 4.93KB </span>","children":null,"spread":false},{"title":"lkm.h <span style='color:#111;'> 285B </span>","children":null,"spread":false},{"title":"ui.c <span style='color:#111;'> 4.30KB </span>","children":null,"spread":false},{"title":"ui.h <span style='color:#111;'> 4.85KB </span>","children":null,"spread":false},{"title":"utils.c <span style='color:#111;'> 459B </span>","children":null,"spread":false},{"title":".gitignore <span style='color:#111;'> 3B </span>","children":null,"spread":false},{"title":"utils.h <span style='color:#111;'> 134B </span>","children":null,"spread":false},{"title":"Makefile <span style='color:#111;'> 658B </span>","children":null,"spread":false},{"title":"monks-viewer.h <span style='color:#111;'> 597B </span>","children":null,"spread":false},{"title":"netlink.c <span style='color:#111;'> 1.38KB </span>","children":null,"spread":false}],"spread":false},{"title":"screenshots","children":[{"title":"monks.gif <span style='color:#111;'> 58.22KB </span>","children":null,"spread":false},{"title":"monks.xcf <span style='color:#111;'> 81.56KB </span>","children":null,"spread":false},{"title":"screenshot1.jpeg <span style='color:#111;'> 289.87KB </span>","children":null,"spread":false}],"spread":true},{"title":"common","children":[{"title":"deserialize.h <span style='color:#111;'> 221B </span>","children":null,"spread":false},{"title":"string_utils.h <span style='color:#111;'> 394B </span>","children":null,"spread":false},{"title":"structures.h <span style='color:#111;'> 541B </span>","children":null,"spread":false},{"title":"string_utils.c <span style='color:#111;'> 1.32KB </span>","children":null,"spread":false},{"title":"mem_ops.c <span style='color:#111;'> 461B </span>","children":null,"spread":false},{"title":"serialize.c <span style='color:#111;'> 1.36KB </span>","children":null,"spread":false},{"title":"serialize.h <span style='color:#111;'> 234B </span>","children":null,"spread":false},{"title":"mem_ops.h <span style='color:#111;'> 335B </span>","children":null,"spread":false},{"title":".gitignore <span style='color:#111;'> 54B </span>","children":null,"spread":false},{"title":"deserialize.c <span style='color:#111;'> 970B </span>","children":null,"spread":false}],"spread":true},{"title":"udis86","children":[{"title":"udis86.h <span style='color:#111;'> 1.52KB </span>","children":null,"spread":false},{"title":"libudis86","children":[{"title":"decode.h <span style='color:#111;'> 5.32KB </span>","children":null,"spread":false},{"title":"itab.h <span style='color:#111;'> 14.82KB </span>","children":null,"spread":false},{"title":"extern.h <span style='color:#111;'> 3.54KB </span>","children":null,"spread":false},{"title":"udis86.c <span style='color:#111;'> 12.50KB </span>","children":null,"spread":false},{"title":"types.h <span style='color:#111;'> 7.59KB </span>","children":null,"spread":false},{"title":"udint.h <span style='color:#111;'> 2.63KB </span>","children":null,"spread":false},{"title":"decode.c <span style='color:#111;'> 30.17KB </span>","children":null,"spread":false},{"title":".gitignore <span style='color:#111;'> 49B </span>","children":null,"spread":false},{"title":"Makefile <span style='color:#111;'> 92B </span>","children":null,"spread":false},{"title":"itab.c <span style='color:#111;'> 275.75KB </span>","children":null,"spread":false}],"spread":true}],"spread":true},{"title":".gitignore <span style='color:#111;'> 43B </span>","children":null,"spread":false},{"title":"Makefile <span style='color:#111;'> 206B </span>","children":null,"spread":false},{"title":"README.md <span style='color:#111;'> 3.42KB </span>","children":null,"spread":false},{"title":"monks_kmodule","children":[{"title":"netlink.h <span style='color:#111;'> 339B </span>","children":null,"spread":false},{"title":"control.h <span style='color:#111;'> 392B </span>","children":null,"spread":false},{"title":"msgs.h <span style='color:#111;'> 456B </span>","children":null,"spread":false},{"title":"sct_hook.c <span style='color:#111;'> 8.91KB </span>","children":null,"spread":false},{"title":"main.c <span style='color:#111;'> 1.53KB </span>","children":null,"spread":false},{"title":"udis_utils.h <span style='color:#111;'> 339B </span>","children":null,"spread":false},{"title":"sct_hook.h <span style='color:#111;'> 14.02KB </span>","children":null,"spread":false},{"title":"sections.lds <span style='color:#111;'> 94B </span>","children":null,"spread":false},{"title":"control.c <span style='color:#111;'> 2.82KB </span>","children":null,"spread":false},{"title":"utils.c <span style='color:#111;'> 2.37KB </span>","children":null,"spread":false},{"title":"stubs.S <span style='color:#111;'> 8.72KB </span>","children":null,"spread":false},{"title":".gitignore <span style='color:#111;'> 109B </span>","children":null,"spread":false},{"title":"main.h <span style='color:#111;'> 191B </span>","children":null,"spread":false},{"title":"utils.h <span style='color:#111;'> 729B </span>","children":null,"spread":false},{"title":"Makefile <span style='color:#111;'> 1.11KB </span>","children":null,"spread":false},{"title":"syscalls","children":[{"title":"write.c <span style='color:#111;'> 2.18KB </span>","children":null,"spread":false},{"title":"syscall.h <span style='color:#111;'> 104B </span>","children":null,"spread":false},{"title":"README <span style='color:#111;'> 559B </span>","children":null,"spread":false},{"title":"close.c <span style='color:#111;'> 1.82KB </span>","children":null,"spread":false},{"title":".gitignore <span style='color:#111;'> 10B </span>","children":null,"spread":false},{"title":"Makefile <span style='color:#111;'> 63B </span>","children":null,"spread":false},{"title":"read.c <span style='color:#111;'> 2.17KB </span>","children":null,"spread":false}],"spread":false},{"title":"udis_utils.c <span style='color:#111;'> 2.78KB </span>","children":null,"spread":false},{"title":"netlink.c <span style='color:#111;'> 1.97KB </span>","children":null,"spread":false}],"spread":false}],"spread":true}],"spread":true}]
评论信息
其他资源
- Spark面试2000题(1~6期 外加60题)
- K最邻近分类器设计matlab
- QQ可用 Directshow实现的虚拟摄像头(win10+vs2013,c++代码)
- Deep Belief Network深度信念网络(DBN的Matlab代码)
- 计算机四级网络工程师考试题库(含详细解析)
- 用matlab编写的流体计算和传热程序-matlab编写的流体计算和传热程序.rar
- Timer屏保程序.zip
- dubbo zookeeper demo下载
- DFPlayer_Mini_mp3 arduino 库文件
- flowshop测试算例
- 解决opencv3.2 OpenCVUtils.cmake:1047错误
- IAR For ARM 7.7 破解 绿色版
- 阿里云短信服务接口开发所需jar包
- sgx官方文档
- C/C++:小球下落问题求解.rar(含完整注释)
- Controllers.docx
- 晶体软件导入3ds max绘制三维结构通用方法.docx
- DCT图像重建
- TD-LTE系统内干扰及同频组网
- SpringMvc+JdbcTemplate+oracle的小项目实例
- 计算机网络——自顶向下方法 课后答案
- struts2-2.2.1-all 版本
- 一个完成的java项目
- logo识别项目
- ad0809采集串口传输
- jquery点击向上弹出二级菜单,再点击隐藏
免责申明
【只为小站】的资源来自网友分享,仅供学习研究,请务必在下载后24小时内给予删除,不得用于其他任何用途,否则后果自负。基于互联网的特殊性,【只为小站】 无法对用户传输的作品、信息、内容的权属或合法性、合规性、真实性、科学性、完整权、有效性等进行实质审查;无论 【只为小站】 经营者是否已进行审查,用户均应自行承担因其传输的作品、信息、内容而可能或已经产生的侵权或权属纠纷等法律责任。
本站所有资源不代表本站的观点或立场,基于网友分享,根据中国法律《信息网络传播权保护条例》第二十二条之规定,若资源存在侵权或相关问题请联系本站客服人员,zhiweidada#qq.com,请把#换成@,本站将给予最大的支持与配合,做到及时反馈和处理。关于更多版权及免责申明参见 版权及免责申明
本站所有资源不代表本站的观点或立场,基于网友分享,根据中国法律《信息网络传播权保护条例》第二十二条之规定,若资源存在侵权或相关问题请联系本站客服人员,zhiweidada#qq.com,请把#换成@,本站将给予最大的支持与配合,做到及时反馈和处理。关于更多版权及免责申明参见 版权及免责申明