在行为检测部分,设计了行为检测算法,利用系统调用函数及其参数信息识别程序行为。
On the part of behavior detection, a behavior detection algorithm was designed, which utilized system calls and their arguments to identify the program behavior.
操作系统通过定义系统调用函数以及相应的接口,实现系统对硬件函数调用的支持,使程序设计者能够像调用普通库函数一样调用硬件函数。
The operating system defines necessary system calls and interfaces to support the calling of hardware functions which follows the same semantic as calling software functions.
本文对套接口编程中的一些核心概念进行了分析。这些概念涉及到套接口的建立机制、传输层端口号、协议地址、套接口系统调用函数调用等概念。
This paper has analysed some important concept in UNIX socket programing. These concepts touch upon socket creating, transport layer port, protocol address, socket function call, etc.
其中最奇妙的事情之一是,在几乎每个平台上都为计划要处理的每个库函数和系统调用都提供自己的声明,而不是包括标准的头文件。
One of these magics was, on nearly every platform, to provide its own declarations for every library function and system call it planned to use, rather than including the standard headers.
对于步骤2来说,我对头文件进行了更新:在系统调用表中为这几个新函数安排空间。
For step 2, I update the header files to make room for the new functions in the system call table.
一旦装入内核并给予其控制,就首先调用这些函数,然后初始化系统的其余部分。
These functions are called first once the kernel is loaded and given control, then the rest of the system is initialized.
典型的TCP客户机和服务器应用程序通过发布tcp系统调用序列来获取某些函数。
A typical TCP client and server application issues a sequence of TCP system calls to attain certain functions.
包装器函数将执行它认为需要的操作,以假装执行了正确的底层系统调用。
The wrapper function does whatever it thinks it needs to in order to pretend to have made the right underlying system call.
就调用方式而言,系统调用与库函数之间没有区别。
In terms of the way it is called, there is no difference between a system call and a library function.
跟踪钩子可以应用于任何函数的入口或出口(当前对于系统调用只支持出口探测点)。
Trace hooks can be applied at the entry or exit of any function (currently exit probe point is supported for system calls only).
下一节详细讨论各种探测类型,这些探测类型包括系统调用、用户函数和内部。
The next section goes into more detail regarding the various types of probes, but for now I'll simply mention the various types of probes: System, User function and Internal.
系统调用或内核函数(link、sethostname、mkdir)。
System calls or kernel functions (link, sethostname, mkdir).
Linux内核提供了几个函数,可以用来将系统调用参数移动到用户空间中,或从中移出。
The Linux kernel provides several functions that you can use to move system call arguments to and from user-space.
Oprofile是一种细粒度的工具,可以为指令集或者为函数、系统调用或中断处理例程收集采样。
OProfile is fine-grained and can collect samples for a set of instructions, or for function, system call, or interrupt handlers.
在典型的软件系统中,函数的调用流是从较高级部分到低级部分进行的;而事件是以相反的方向过滤的,如Figure1所示。
In a typical software system, function calls flow downward from higher-level components to lower-level ones; whereas events percolate up in the opposite direction. Figure 1 illustrates this pattern.
表2列出了用来从perl脚本中调用系统命令的Perl核心函数和操作符。
Table 2 lists Perl core functions and operators leveraged to call system commands from within a Perl script.
正如您所见,syscall函数使用了系统调用表中使用的索引作为第一个参数。
As you can see, the syscall function includes as its first argument the index of the system call table to use.
为了对节点构建序列进行解释,我们从菜单系统调用 node.module 中的 node_page()函数开始讨论。
We will start this explanation of the node building sequence at the point where the menu system calls the node_page() function in the node.module.
在本文中,我将探究LinuxSCI,演示如何向2.6.20内核添加一个系统调用,然后从用户空间来使用这个函数。
In this article, I explore the Linux SCI, demonstrate adding a system call to the 2.6.17 and prior 2.6 kernels, and then use this function from user-space.
请参阅stdiot 以及本文中使用的所有系统调用和函数的手册页。
Read the man pages for stdio, and for all the system calls and functions used in this article.
虽然PHP主要是为了在浏览器中运行,但是也可以通过exec函数执行系统调用。
While PHP is mostly meant to be run inside a browser, it can also perform system calls by way of the exec function.
当我们要执行的基于 Web 的商店调用该价格函数时,由于许多远程调用请求该ERP系统,性能非常糟糕。
When the Web-based store we had to implement called this price function, the performance was very bad because of the many remote calls to the ERP system.
它演示了对一些系统调用和c库函数的适当使用,其中包括fopen、fclose、access、setvbuf、perror、strerror和popen。
It shows appropriate use of some system calls and library functions from c, including fopen, fclose, access, setvbuf, perror, strerror, and popen.
如果您的操作系统支持动态加载,那么Lua可以根据需要来动态加载并调用函数。
If your operating system supports dynamic loading, Lua can load and call functions on demand.
这意味着要使用fchown 、fstat或fchmod系统调用,而不使用取得文件名的函数,比如chown 、chgrp和chmod 。
This means use the fchown , fstat , or fchmod system calls, instead of the functions taking file names, such as chown , CHGRP , and chmod .
被测系统并未直接调用全局函数Math . random,来决定每个轴初始的图片状态。
The system under test does not make a direct global function call to Math.random in order to determine the initial image state of the reels.
在原始脚本中,由系统通过rss -summary函数调用{local: rss - summary (“planet . rss2 . xml ”)}中的规范来决定处理哪一个提要。
Within your original script, the system decides which feed to process through the specification within the call to the rss-summary function: {local: rss-summary (" planet.rss2.xml ")}.
类似地,printf和fprintf这样的函数调用write系统调用完成其工作。
Similarly, functions such as printf and fprintf invoke the write system call to do their work.
系统调用探测(即syscall 探测)用来探测libc库和内核中的函数。
System call probes, or syscall probes, are probes used to probe functions in the libc library as well as the kenel.
最后,系统调用keyctl提供许多用来管理密钥的函数。
Finally, the syscall keyctl provides a number of functions for managing keys.
应用推荐