kernel-event-collector-module
kernel-event-collector-module copied to clipboard

vmware

→

Metadata

This is the Linux kernel module event collector for the Carbon Black Cloud.

Reame
Issues

Results 3 kernel-event-collector-module issues

Sort by recently updated

PID wrap/reuse can cause network connections to be incorrectly de-duped

The network tracking table (net-hooks.c) tracks network connection for a process, to dedup net-conn events. The tracking table tracks the process only using the PID value & does not include...

benhsmith

unable to find original function for restore

The module sometimes logs the message "unable to find original function for restore" to the system log. The log is emitted during module unload.

benhsmith

Error copying UDP DNS response data

The module may log "Error copying UDP DNS response data" to the system log when TCP packages with source port 53 are observed. This is due to a problem in...

benhsmith

About

This is the Linux kernel module event collector for the Carbon Black Cloud.

18

Stars

11

Forks

Watchers

Owner

vmware

← Metadata

18

Stars

11

Forks

Watchers

Owner

vmware

Metadata

This is the Linux kernel module event collector for the Carbon Black Cloud.

Back

kernel-event-collector-module kernel-event-collector-module copied to clipboard

Metadata

PID wrap/reuse can cause network connections to be incorrectly de-duped

unable to find original function for restore

Error copying UDP DNS response data

← Metadata

Owner

Metadata

kernel-event-collector-module
kernel-event-collector-module copied to clipboard