Advanced Mac OS X Rootkits.pdf - Reverse Engineering Mac OS X
Advanced Mac OS X Rootkits.pdf - Reverse Engineering Mac OS X
Advanced Mac OS X Rootkits.pdf - Reverse Engineering Mac OS X
- No tags were found...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Miscellaneous Agent services• Agent must provide initial <strong>Mac</strong>h ports:–host port–task_for_pid() (if pid == 0 => returns kerneltask port)• As <strong>OS</strong> X is a <strong>Mac</strong>h/Unix hybrid, justcontrolling <strong>Mac</strong>h is not enough–i.e. How to list processes?• Instead of implementing Unix functionalityin Agent, inject <strong>Mac</strong>h RPC server code into41