DEVHIDE
Login Or Sign up

Find syscalls whitelisted by seccomp

190 Views Asked by At

So I stumbled across a program in C that uses seccomp to filter out a few syscalls. Is there anyway, other than bruteforcing, to find out the syscalls that are actually allowed.

Thanks in advance

c system-calls seccomp
Original Q&A
2

There are 2 best solutions below

0
On

You can refer to Kafel, write a policy and disassemble the generated eBPF code with its dump_policy_bpf tool.

0
On

If you can compile the C program, you can call seccomp_export_pfc function.

Related Questions in C

Related Questions in SYSTEM-CALLS

Related Questions in SECCOMP

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.