printk
2025-04-04
printk is the Linux kernel’s logging function, able to print formatted strings similar to printf() in userspace. It outputs messages to the ... Read More
reference count to avoid LKM removal
2025-04-04
rootkits and EDR software may increase their reference count using try_module_get(THIS_MODULE). This tricks the kernel into thinking that the module ... Read More
tmhook module
2025-04-04
tmhook is a loadable kernel module associated with Trend Micro Deep Security on Linux systems Read More
Trend Micro
2025-04-04
Trend Micro is a global cybersecurity company. https://www.trendmicro.com Read More
Trend Micro Deep Security
2025-04-04
Trend Micro Deep Security is an enterprise security platform that provides HIDS and HIPS, anti-malware, firewall, integrity monitoring, and more. Read More
/dev/kmem
2025-04-03
/dev/kmem is a special file on Linux and Unix-like systems that provides access to the kernel’s virtual memory. It was historically used for ... Read More
/dev/mem
2025-04-03
/dev/mem is a special file on Linux and Unix-like systems that provides access to the system’s physical memory. Read More
/dev/null
2025-04-03
/dev/null is a special file on Linux and Unix-like machines that discards all data written to it and returns EOF on read, commonly used to supress ... Read More
/proc/kallsyms
2025-04-03
/proc/kallsyms on procfs-enabled hosts is a virtual file that lists the kernel’s symbol table, including addresses and names of functions and ... Read More
/proc/modules
2025-04-03
/proc/modules on procfs-enabled systems is a virtual file that lists currently loaded Loadable Kernel Modules and related metadata such as their size ... Read More