Hooks the getdents system call such that the struct linux_dirent* buffer you return to the calling process does not include any dirent's for filenames that start with magic_prefix.
pinwhell / filecloakingrootkit Goto Github PK
View Code? Open in Web Editor NEWThis project forked from ksaravan910/filecloakingrootkit
Hooks the getdents system call such that files with a certain prefix are excluded from ls -l output.