- 2
- 21 489
ghostinthehive
Приєднався 22 жов 2020
Malware Research and Detection | Offensive Capabilities Engineering
If you liked this content you can support the creator and buy her a book!
www.buymeacoffee.com/ghostinthehive
If you liked this content you can support the creator and buy her a book!
www.buymeacoffee.com/ghostinthehive
Debugging the Linux Kernel with Qemu and GDB
Tutorial on setting up a debugging environment to debug the Linux Kernel using The Qemu Emulator and GDB.
Walkthrough: ghostinthehive.github.io/thehive/Debugging-Linux-Kernel.html
Step by step implementation of the setup
Kernel Newbies: kernelnewbies.org/KernelBuild
Definitely a pocket list for people interested in the Linux Kernel!!
Qemu Docs: en.wikibooks.org/wiki/QEMU/Installing_QEMU
------
Think this content is useful! Support the creator and buy her a book! :)
www.buymeacoffee.com/ghostinthehive
Walkthrough: ghostinthehive.github.io/thehive/Debugging-Linux-Kernel.html
Step by step implementation of the setup
Kernel Newbies: kernelnewbies.org/KernelBuild
Definitely a pocket list for people interested in the Linux Kernel!!
Qemu Docs: en.wikibooks.org/wiki/QEMU/Installing_QEMU
------
Think this content is useful! Support the creator and buy her a book! :)
www.buymeacoffee.com/ghostinthehive
Переглядів: 18 672
Відео
Reverse Engineering: Process Hollowing | Process Doppelgang-ing Hybrid used by The Osiris Dropper
Переглядів 2,8 тис.4 роки тому
This Video is a follow-up on The Unpacking Of Osiris, Covering how the Dropper used a Hybrid of Process Hollowing Process Dopplegang-ing for its Injection. Unpacking Osiris: ghostinthehive.github.io/thehive/Unpacking-Osiris.html Process Injection Techniques Part1: www.pnx9-kb.xyz/rem-essentials-windows-malware-evasion-part1 Process Injection Techniques Part2: www.pnx9-kb.xyz/rem-essentials-wind...
Was very helpful, thanks you! It will be great to have an article or video about the using the kernel image and making the .img file, about initrd or initramfs, all those concepts.
this is not knowledge being shared… this is the blond trying to lead…. 🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️🤦♂️ … eg the role of initrd is to be an initial root fs so that “linux can execute some important binaries” …. .. that is not EXPLAINING…that is spitting back the file’s description .. indeed it is a root file system… .. explaining would be telling why it does exist rather than just use the “real root file system”… but for that, you would need to UNDERSTAND IT YOURSELF
Iam not blond.
Thanks a bunch for sharing, helped me getting my debug env for kernel development up and running!
Very nice.
thanks a lot
Hi, you have nice and informative video but just wondering to know where this 1234 port no is specified on target side ?
gdb specifies port 1234 for remote debugging when the debugger and the debugged application are on the same host, so you dont need an explicit hostname:port to configure the connection over the same host. note that this type of connection is over sockets. I hope that answers your question!
It's really a simple yet imformative guide for the newbiees, love it.
Thank you!
Super helpful. I took it a step further and attached a rootfs and run under VSCode. Any reason you don't have commenting enabled on your blog? I was hoping to provide steps for those who want those extra pieces
More vids please!
Thank you so much for making this tutorial. The -s -S flag in qemu and hb in gdb saved me a lot of time figuring out breaking into kernel and create breakpoint.
For beginners, this video opens a whole new world.
thanks a lot, it helped
Guide to run Linux and Secure OS: ua-cam.com/video/m8WlSanGDwI/v-deo.html ua-cam.com/video/CWG2WuOJtIc/v-deo.html ua-cam.com/video/FthDUSW3yQY/v-deo.html
Awesome, really helpful!
please upload more reverse engineering videos in english
Thanks! This means a lot to me!
super ra mowa
Thank you so much! Very informative, I learned a lotta things which I didn't know earlier. Please continue making these videos!
Thanks for such a great content. Looking forward more videos
Nice video! I wish I had seen this couple of months ago when I had to do this at work. There were some videos, but I think this one was the most informative
what do you do for work? :)
Pleaase make more video on kernel crash debugging
شرحك جميل ، وحاجة تفرح لما بلاقى حد عربى بيهتم بموضوع انا مهتم بيه جدا وهو الـ Development فى الـ Linux Kernel بس عندى سؤال هو انت اسمك اى ؟😁😅
شكرا جدا علي الشرح والتوضيح .. لكن الصوت دا عربي 🙂
شكرا ليك .. هايكون في محتوي عربي قريب إن شاء الله :)
@@ghostinthehive2027 شرحك في جزئية ال process hollowing كانت ممتازة جدا . موهبه تبسيط المعلومة حاجة مش سهله علي فكرة. 🙂
@@ghostinthehive2027 فين طيب
This is awesome, please keep going :)
Thank You!
Please make a series out of this or continue to make content. I am going to share this on my discord. The content provided is very informative .
Thanks! I plan on making more video content in the coming period. :)
Great Work, keep up the great work :)
0 dislike, keep it up
NICE WORK BB
Nice one keep posting many such video's on reversing
Cool Channel name and nice video. Keep it up bro 😁😁😁
I think its a woman ) So keep it up Sis )
First 👋👋