- 2.63.0 (latest)
- 2.62.0
- 2.61.0
- 2.60.0
- 2.59.0
- 2.57.0
- 2.56.0
- 2.55.0
- 2.54.0
- 2.53.0
- 2.52.0
- 2.51.0
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.39.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.27.0
- 2.26.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.11.1
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.1
- 2.6.0
- 2.5.6
- 2.3.2
public final class KernelRootkit extends GeneratedMessageV3 implements KernelRootkitOrBuilder
Kernel mode rootkit signatures.
Protobuf type google.cloud.securitycenter.v2.KernelRootkit
Inheritance
Object > AbstractMessageLite<MessageType,BuilderType> > AbstractMessage > GeneratedMessageV3 > KernelRootkitImplements
KernelRootkitOrBuilderStatic Fields
NAME_FIELD_NUMBER
public static final int NAME_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_CODE_MODIFICATION_FIELD_NUMBER
public static final int UNEXPECTED_CODE_MODIFICATION_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_FTRACE_HANDLER_FIELD_NUMBER
public static final int UNEXPECTED_FTRACE_HANDLER_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_INTERRUPT_HANDLER_FIELD_NUMBER
public static final int UNEXPECTED_INTERRUPT_HANDLER_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_KERNEL_CODE_PAGES_FIELD_NUMBER
public static final int UNEXPECTED_KERNEL_CODE_PAGES_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_KPROBE_HANDLER_FIELD_NUMBER
public static final int UNEXPECTED_KPROBE_HANDLER_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_PROCESSES_IN_RUNQUEUE_FIELD_NUMBER
public static final int UNEXPECTED_PROCESSES_IN_RUNQUEUE_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_READ_ONLY_DATA_MODIFICATION_FIELD_NUMBER
public static final int UNEXPECTED_READ_ONLY_DATA_MODIFICATION_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
UNEXPECTED_SYSTEM_CALL_HANDLER_FIELD_NUMBER
public static final int UNEXPECTED_SYSTEM_CALL_HANDLER_FIELD_NUMBER
Field Value | |
---|---|
Type | Description |
int |
Static Methods
getDefaultInstance()
public static KernelRootkit getDefaultInstance()
Returns | |
---|---|
Type | Description |
KernelRootkit |
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
Returns | |
---|---|
Type | Description |
Descriptor |
newBuilder()
public static KernelRootkit.Builder newBuilder()
Returns | |
---|---|
Type | Description |
KernelRootkit.Builder |
newBuilder(KernelRootkit prototype)
public static KernelRootkit.Builder newBuilder(KernelRootkit prototype)
Parameter | |
---|---|
Name | Description |
prototype | KernelRootkit |
Returns | |
---|---|
Type | Description |
KernelRootkit.Builder |
parseDelimitedFrom(InputStream input)
public static KernelRootkit parseDelimitedFrom(InputStream input)
Parameter | |
---|---|
Name | Description |
input | InputStream |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
input | InputStream |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseFrom(byte[] data)
public static KernelRootkit parseFrom(byte[] data)
Parameter | |
---|---|
Name | Description |
data | byte[] |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
data | byte[] |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteString data)
public static KernelRootkit parseFrom(ByteString data)
Parameter | |
---|---|
Name | Description |
data | ByteString |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
data | ByteString |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parseFrom(CodedInputStream input)
public static KernelRootkit parseFrom(CodedInputStream input)
Parameter | |
---|---|
Name | Description |
input | CodedInputStream |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
input | CodedInputStream |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseFrom(InputStream input)
public static KernelRootkit parseFrom(InputStream input)
Parameter | |
---|---|
Name | Description |
input | InputStream |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
input | InputStream |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
IOException |
parseFrom(ByteBuffer data)
public static KernelRootkit parseFrom(ByteBuffer data)
Parameter | |
---|---|
Name | Description |
data | ByteBuffer |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
public static KernelRootkit parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
Parameters | |
---|---|
Name | Description |
data | ByteBuffer |
extensionRegistry | ExtensionRegistryLite |
Returns | |
---|---|
Type | Description |
KernelRootkit |
Exceptions | |
---|---|
Type | Description |
InvalidProtocolBufferException |
parser()
public static Parser<KernelRootkit> parser()
Returns | |
---|---|
Type | Description |
Parser<KernelRootkit> |
Methods
equals(Object obj)
public boolean equals(Object obj)
Parameter | |
---|---|
Name | Description |
obj | Object |
Returns | |
---|---|
Type | Description |
boolean |
getDefaultInstanceForType()
public KernelRootkit getDefaultInstanceForType()
Returns | |
---|---|
Type | Description |
KernelRootkit |
getName()
public String getName()
Rootkit name, when available.
string name = 1;
Returns | |
---|---|
Type | Description |
String | The name. |
getNameBytes()
public ByteString getNameBytes()
Rootkit name, when available.
string name = 1;
Returns | |
---|---|
Type | Description |
ByteString | The bytes for name. |
getParserForType()
public Parser<KernelRootkit> getParserForType()
Returns | |
---|---|
Type | Description |
Parser<KernelRootkit> |
getSerializedSize()
public int getSerializedSize()
Returns | |
---|---|
Type | Description |
int |
getUnexpectedCodeModification()
public boolean getUnexpectedCodeModification()
True if unexpected modifications of kernel code memory are present.
bool unexpected_code_modification = 2;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedCodeModification. |
getUnexpectedFtraceHandler()
public boolean getUnexpectedFtraceHandler()
True if ftrace
points are present with callbacks pointing to regions
that are not in the expected kernel or module code range.
bool unexpected_ftrace_handler = 4;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedFtraceHandler. |
getUnexpectedInterruptHandler()
public boolean getUnexpectedInterruptHandler()
True if interrupt handlers that are are not in the expected kernel or module code regions are present.
bool unexpected_interrupt_handler = 8;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedInterruptHandler. |
getUnexpectedKernelCodePages()
public boolean getUnexpectedKernelCodePages()
True if kernel code pages that are not in the expected kernel or module code regions are present.
bool unexpected_kernel_code_pages = 6;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedKernelCodePages. |
getUnexpectedKprobeHandler()
public boolean getUnexpectedKprobeHandler()
True if kprobe
points are present with callbacks pointing to regions
that are not in the expected kernel or module code range.
bool unexpected_kprobe_handler = 5;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedKprobeHandler. |
getUnexpectedProcessesInRunqueue()
public boolean getUnexpectedProcessesInRunqueue()
True if unexpected processes in the scheduler run queue are present. Such processes are in the run queue, but not in the process task list.
bool unexpected_processes_in_runqueue = 9;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedProcessesInRunqueue. |
getUnexpectedReadOnlyDataModification()
public boolean getUnexpectedReadOnlyDataModification()
True if unexpected modifications of kernel read-only data memory are present.
bool unexpected_read_only_data_modification = 3;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedReadOnlyDataModification. |
getUnexpectedSystemCallHandler()
public boolean getUnexpectedSystemCallHandler()
True if system call handlers that are are not in the expected kernel or module code regions are present.
bool unexpected_system_call_handler = 7;
Returns | |
---|---|
Type | Description |
boolean | The unexpectedSystemCallHandler. |
hashCode()
public int hashCode()
Returns | |
---|---|
Type | Description |
int |
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Returns | |
---|---|
Type | Description |
FieldAccessorTable |
isInitialized()
public final boolean isInitialized()
Returns | |
---|---|
Type | Description |
boolean |
newBuilderForType()
public KernelRootkit.Builder newBuilderForType()
Returns | |
---|---|
Type | Description |
KernelRootkit.Builder |
newBuilderForType(GeneratedMessageV3.BuilderParent parent)
protected KernelRootkit.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Parameter | |
---|---|
Name | Description |
parent | BuilderParent |
Returns | |
---|---|
Type | Description |
KernelRootkit.Builder |
newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Parameter | |
---|---|
Name | Description |
unused | UnusedPrivateParameter |
Returns | |
---|---|
Type | Description |
Object |
toBuilder()
public KernelRootkit.Builder toBuilder()
Returns | |
---|---|
Type | Description |
KernelRootkit.Builder |
writeTo(CodedOutputStream output)
public void writeTo(CodedOutputStream output)
Parameter | |
---|---|
Name | Description |
output | CodedOutputStream |
Exceptions | |
---|---|
Type | Description |
IOException |