Anti Incident Response - SANS Computer Forensics
Anti Incident Response - SANS Computer Forensics
Anti Incident Response - SANS Computer Forensics
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
11<br />
Unix Process Injection Mechanisms<br />
• ptrace()<br />
– PTRACE_POKEDATA<br />
– PTRACE_SYSCALL<br />
–sbrk()<br />
– PTRACE_DETACH<br />
© 2012 CrowdStrike, Inc. All rights reserved.