Asian Journal of Information Technology

125
Views

1
Downloads

Finding Hided Processes in Linux

Yuan Yuan and Dai Guanzhong
Page: 618-621 | Received 21 Sep 2022, Published online: 21 Sep 2022

By Research Area

Medicine & Public Health Life Sciences Engineering Mathematics Biomedicine Physics Chemistry Computer Science Earth Sciences Social Sciences Business and Management Psychology Materials Science Economics Education Environment Philosophy Statistics Law Political Science and International Relations Pharmacy Dentistry Energy Linguistics Geography Finance Criminology and Criminal Justice Medicine Cultural and Media Studies History Architecture / Design Literature Biomedical Sciences Religious Studies Education & Language Food Science & Nutrition Public Health

By Volume and Issue

Abstract

This research analyses the mechanism of using LKMs backdoors to hide processes. According to the flaw in backdoors’ design and the characteristics of/proc filesystem, a new method for finding hided processes is presented. That is traversing all possible PID directories to find out each existent process in fact. Through comparing them with the ordinary output, the hided processes would be discovered. At last the code realized in Perl has been presented. The experiment shows that this method can find the processes hided by LKMs backdoors efficiently.

How to cite this article:

Yuan Yuan and Dai Guanzhong . Finding Hided Processes in Linux.
DOI: https://doi.org/10.36478/ajit.2007.618.621
URL: https://www.makhillpublications.co/view-article/1682-3915/ajit.2007.618.621