add example of 34

2026-02-03 02:04:30 +08:00 · 2023-10-16 16:53:33 +00:00
parent 010e61c5f1
commit 32e23bbed0
11 changed files with 289 additions and 2 deletions
--- a/src/34-syscall/README.md
+++ b/src/34-syscall/README.md
@@ -0,0 +1,20 @@
+# ebpf modify syscall parameters
+
+## modify open filename
+
+```bash
+make
+./victim
+```
+
+```bash
+sudo ./ecli run package.json -- --rewrite --target_pid=$(pidof victim)
+```
+
+## modify exec commands
+
+TODO
+
+## reference
+
+- <https://github.com/pathtofile/bad-bpf/blob/main/src/exechijack.bpf.c>