Looking for a way to parse a running kernel. Can I do this via / dev / kmem? I am running linux 2.6.32. Or I can use the kernel module to start the kernel. I am new to this. Please, help.
All I want to do is check the kernel image for a malicious module by seeing if any specific instruction has occurred.
source
share