Giter VIP home page Giter VIP logo

Comments (4)

h3xduck avatar h3xduck commented on July 17, 2024 1

Yeah we didn't test the rootkit on Arch, you will have to use Ubuntu 21.04 if you want to compile it.

For the record, these are issues with using TripleCross in a different distro and version that I can think of:

  • Your compiler toolchain is different than the one in Ubuntu 21.04 (we used Clang v12). This results in the compiler sometimes generating instructions which are not valid in BPF (this is your case). You either will have to switch compiler or try with different fixes, -fno-stack-protector might work in your case.
  • The library injection module depends on specific opcodes of functions at glibc which may vary between versions. We used glibc 2.33

We may extend it to other versions in the future, but for now you may need to patch it yourself or switch to the supported system.

from triplecross.

h3xduck avatar h3xduck commented on July 17, 2024

@yasindce1998 can you check the distro and version you are using?

lsb_release -a

The rootkit has only been tested in Ubuntu 21.04, if you are using this version already, which clang version are you on?

clang -v

from triplecross.

yasindce1998 avatar yasindce1998 commented on July 17, 2024

@h3xduck Apologies for the late response and Thank you for reviewing it.
Here is what you needed.

~ lsb_release -a
LSB Version:    n/a
Distributor ID: Arch
Description:    Arch Linux
Release:        rolling
Codename:       n/a
➜  ~ clang -v
clang version 13.0.1
Target: x86_64-pc-linux-gnu
Thread model: posix
InstalledDir: /usr/bin
Found candidate GCC installation: /usr/bin/../lib/gcc/x86_64-pc-linux-gnu/12.1.0
Found candidate GCC installation: /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/12.1.0
Selected GCC installation: /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/12.1.0
Candidate multilib: .;@m64
Candidate multilib: 32;@m32
Selected multilib: .;@m64
➜  ~

Extra informations

Operating System: Arch Linux                      
          Kernel: Linux 5.18.5-arch1-1
    Architecture: x86-64
 Hardware Vendor: Lenovo
  Hardware Model: Lenovo E41-25

from triplecross.

yasindce1998 avatar yasindce1998 commented on July 17, 2024

@h3xduck Thank you! I can switch to Ubuntu 21.04. Thank you for the clarification!

from triplecross.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.