It is the third post in the series and, in my opinion, the most intriguing one compared to the previous two, focusing on extracting symbol addresses in Linux. This one tries to minimize the use of regular files, shared objects, and file operations and minuscules the attention that is caused by the existence of files. I really love it.
In the previous post, I explained a challenge I faced a few months ago. We saw that I tried to handle the challenge with a hybrid solution(I named it hybrid because it uses both user-space and kernel-space code). The solution used a regular file as a shared object between user-space and kernel-space code. Honestly, my first solution did not appeal to me. Now, I want to improve the idea. Let’s see.
Months ago, I started working on a prototype project related to attack surface management(ASM). The project needs some kernel programming to optimize and extend some functionalities. After days of work, I faced a problem that was not a problem!