(Anti-)Anti-Rootkit Techniques - Part III: Hijacking Pointers Hijacking .data ptrs to execute rootkit code

Released part III of my anti anti rootkit series recently. I showcase a way to implement a 'threadless' rootkit by using a spin on the .data pointer hijacking technique known from kernel game cheats.

This part concludes the trilogy, but theres more to come ;)

eversinc33.com/posts/anti-a...

GitHub - eversinc33/PSXecute: 32bit MIPS I VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator. 32bit MIPS I VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator. - eversinc33/PSXecute

Finished writing my little offensive VM that can execute MIPS I payloads in memory, without allocating executable memory. Repurposed my old PS1 emulator for this and learned to finally appreciate LLVM lol.

Code just published to GitHub:

github.com/eversinc33/P...