Qian-YM

User added to our systems on Sun Jan 26 2025

Repositories (1)

1 snippets stored for this repo

// 检查 Rootkit 内核模块
	printMsg("### Rootkit 内核模块")
	kallsymsOutput, err := runCommand("grep", "-E", "hide_tcp4_port|hidden_files|hide_tcp6_port|diamorphine|module_hide|module_hidden|is_invisible|hacked_getdents|hacked_kill|heroin|kernel_unlink|hide_module|find_sys_call_tbl|h4x_delete_module|h4x_getdents64|h4x_kill|h4x_tcp4_seq_show|new_getdents|old_getdents|should_hide_file_name|should_hide_task_name", "/proc/kallsyms")
	if err != nil {
		printCode("Error running grep on /proc/kallsyms: " + err.Error())
	} else if strings.TrimSpace(kallsymsOutput) != "" {