Krzysztof Dmowski @xaphanpl

**The New Oil** @thenewoil@mastodon.thenewoil.org · May 5

May 5

The New Oil @thenewoil@mastodon.thenewoil.org

Watch out for any #Linux #malware sneakily evading #syscall-watching #antivirus

https://www.theregister.com/2025/04/29/linux_io_uring_security_flaw/

The Register · Apr 29Watch out for any Linux malware sneakily evading syscall-watching antivirusBy Iain Thomson

#cybersecurity #FOSS #Curing

**cryptax** @cryptax@mastodon.social · Feb 28

Feb 28

cryptax @cryptax@mastodon.social

Decai decompiling a malicious shellcode.
The instructions are not so readable, if you're not used to syscalls int 0x80. AI does it for you.

https://asciinema.org/a/4PY8wn2TPg2oBdDQ0Q5bgMYjk

asciinema.orgNice decompilation of Linux shellcodesha256: fd8441f8716ef517fd4c3fd552ebcd2ffe2fc458bb867ed51e5aaee034792bde Uses Mistral AI. The assembly instructions spot calls to syscall, and see it's socket calls, sleep etc.

#r2ai #decai #r2

Replied in thread

**Felix Palmen** @zirias@bsd.cafe · Feb 27

Feb 27

Felix Palmen @zirias@bsd.cafe

@ax6761 Well, you could call it an implementation glitch. #uname is *meant* to give you information about "the OS", but has always been implemented as a #syscall, therefore actually telling you something about the #kernel.

In #FreeBSD, the kernel doesn't *have* to be the exact same version as the userland, and for security updates, a new kernel is only built when some patch actually affects the kernel.

Note that on a #Linux system, it's arguably even "worse", as Linux is nothing but the kernel. TO know version information about the rest of your installed OS, you'll have to use distribution specific information (or more recently look at the now standardized /etc/osrelease).

**cryptax** @cryptax@mastodon.social · Feb 17

Feb 17

cryptax @cryptax@mastodon.social

I'm surprised at how badly #Ghidra decompiles this very simple function.

It's a syscall 0x57 which is unlink (remove a file).

I'm surprised it decompiles saying it *returns 0x57* ...

#decompiler #syscall #linux

**hubertf** @hubertf@mastodon.social · Feb 13

Feb 13

hubertf @hubertf@mastodon.social

On thread vs. process permissions

In common Unix and POSIX systems, all threads in a process are supposed to have the same permission. So why does the vortex8 program work as exploited, where one thread sets different permissions than another one using setresuid/setresgid?

Reference: https://man7.org/linux/man-pages/man2/setresuid.2.html

Answer in thread.

man7.orgsetresuid(2) - Linux manual page

#ctf #cybersecurity #posix

**IT News** @itnewsbot@schleuss.online · Jun 8, 2024

Jun 8, 2024

IT News @itnewsbot@schleuss.online

Make Your Code Slower With Multithreading - With the performance of modern CPU cores plateauing recently, the main performance... - https://hackaday.com/2024/06/07/make-your-code-slower-with-multithreading/ #multithreading #softwarehacks #performance #profiling #spinlocks #syscall #futex #mutex #perf

Hackaday · Jun 8, 2024Make Your Code Slower With MultithreadingWith the performance of modern CPU cores plateauing recently, the main performance gains are with multiple cores and multithreaded applications. Typically, a fast GPU is only so mind-bogglingly qui…

**Peter N. M. Hansteen** @pitrh@mastodon.social · Dec 13, 2023

Dec 13, 2023

Peter N. M. Hansteen @pitrh@mastodon.social

syscall(2) removed from -current https://www.undeadly.org/cgi?action=article;sid=20231213062827 #openbsd #syscall #pinsyscall #development #current #security

www.undeadly.orgsyscall(2) removed from -current

**0xor0ne** @0xor0ne@infosec.exchange · Sep 13, 2023

Sep 13, 2023

0xor0ne @0xor0ne@infosec.exchange

Very useful website if you need a quick reference to Linux kernel syscalls (numbers and parameters for various architectures and kernel versions)

https://syscalls.mebeim.net

#Linux #syscall #kernel

**Alfonso Siciliano** @alfonsosiciliano@bsd.cafe · Aug 29, 2023

Aug 29, 2023

Alfonso Siciliano @alfonsosiciliano@bsd.cafe

New blog post: "FreeBSD 15 System Calls Table".

https://alfonsosiciliano.gitlab.io/posts/2023-08-28-freebsd-15-system-calls.html

alfonsosiciliano.gitlab.ioFreeBSD 15 System Calls Table - Alfonso Siciliano

#UNIX #POSIX #BSD

**signalblur** @signalblur@infosec.exchange · Apr 15, 2023

Apr 15, 2023

signalblur @signalblur@infosec.exchange

Searchable #Linux #Syscall Table for #x86 and #x86_64

@filippo is a wonderful follow. I’m grateful for him making this.

Also for some reason seeing it laid out like this made me think of them like they are the equivalent of the Linux Rules of Acquisition

https://filippo.io/linux-syscall-table/

#StarTrek #Ferengi #RulesOfAcquisition

**OSTechNix** @ostechnix@floss.social · May 10, 2021

May 10, 2021

OSTechNix @ostechnix@floss.social

Trace Syscall Activity In Linux With Process Monitor (Procmon) #SystemCalls #Syscall #ProcessMonitor #Promon #SysinternalsSuite #Microsoft #Linux
https://ostechnix.com/trace-syscall-activity-in-linux-with-process-monitor-procmon/

ostechnix.comTrace Syscall Activity In Linux With Process Monitor (Procmon) - OSTechNixThis brief guide explains what is Process Monitor (Procmon) and how to trace syscall activity in Linux with Process Monitor utility.

**Collabora** @collabora@floss.social · Oct 26, 2020

Oct 26, 2020

Collabora @collabora@floss.social

Next up at 17:15 GMT at #OSSummit, Gabriel Krisman Bertazi presents "Efficient Syscall Emulation on Linux", where he'll look at the new #Syscall User Dispatch mechanism which arrived in #Linux 5.9. See you there! https://sched.co/eCDx #Wine #Windows #Gaming #OpenSource

Recent searches

Search options

Administered by:

Server stats:

#syscall