adulau/aha
1
0
Fork 0
mirror of https://github.com/adulau/aha.git synced 2024-12-26 10:46:11 +00:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • 59e6fc3bc2
         chg: [uncommited] historical uncommited files added + paper and PhD thesis main Alexandre Dulaunoy 2021-08-06 23:06:36 +0200
  • f1039eec4d Found back the substitute program Gerard Wagener 2010-11-30 13:26:29 +0100
  • 0741943282 AHA captures now insults typed by a user Gerard Wagener 2010-10-26 14:24:22 +0200
  • e2714b2ef9 Disabled AHA printks Gerard Wagener 2010-10-12 09:39:10 +0200
  • c3a37be48c GUI database filename is now read from the configuration file Gerard Wagener 2010-10-12 09:25:28 +0200
  • b863cb2717 Added GUI for demonstrating AHA Gerard Wagener 2010-10-11 18:40:31 +0200
  • 4ec88462fc Added temporary tracing messages in aha.c Gerard Wagener 2010-10-11 18:12:10 +0200
  • d54122dd6c AHA with the GUI was too slow Gerard Wagener 2010-10-11 18:11:11 +0200
  • cdb9e2970b More debug messages in ahalib Gerard Wagener 2010-10-11 16:42:13 +0200
  • e5442b7ccb Updated config file Gerard Wagener 2010-10-11 16:41:58 +0200
  • 8fbbbd8611 Updated startuml Gerard Wagener 2010-10-11 16:41:40 +0200
  • b77e688b55 Integrated GUI Gerard Wagener 2010-10-11 16:41:10 +0200
  • 750e4c71f1 Try #0 fix IOError from aha - worker Gerard Wagener 2010-01-21 13:58:49 +0100
  • 3008f3ba7c Fixed some bugs in exception handling Gerard Wagener 2010-01-21 13:46:00 +0100
  • 58e19929ba aha-eye uses getopt Gerard Wagener 2010-01-21 12:35:28 +0100
  • 91e3e177a7 Add TODO note to improve the handling for PID recycling Gerard Wagener 2010-01-21 12:11:32 +0100
  • 10ebb80fa9 AHA is now playing the game Gerard Wagener 2010-01-21 12:04:23 +0100
  • 0171dd64d5 Discard empty subtrees induced by sshd Gerard Wagener 2010-01-21 10:46:58 +0100
  • 85d792e0fb Fixed bug where process vectors are mixed Gerard Wagener 2010-01-20 22:46:45 +0100
  • b48be3e0e0 annotated list causes the confusions but need ppid in anotated list too Gerard Wagener 2010-01-20 22:00:20 +0100
  • c68124b88d A process do sys_execve multiple times Gerard Wagener 2010-01-20 21:48:51 +0100
  • b58b2ecea2 First version of exporting information like ssh addresses and timestamps besides process vectors Gerard Wagener 2010-01-20 19:09:13 +0100
  • 181a5ca1bf Initial version of recovering process vectors Gerard Wagener 2010-01-20 18:24:36 +0100
  • 26f4e7096c Exporter also recovers the process tree Gerard Wagener 2010-01-20 18:23:57 +0100
  • 9f5b296497 Rollback to primitive aha-worker: Task only record files Gerard Wagener 2010-01-20 18:22:58 +0100
  • 51da827445 Fixed a wrong assumption: A clone of sshd is not necessarly a related to a user Gerard Wagener 2010-01-20 17:05:06 +0100
  • 54d3a0d153 Removed some debug messages from the library Gerard Wagener 2010-01-20 17:02:11 +0100
  • 047dc87859 Traceback exceptions Gerard Wagener 2010-01-20 10:00:16 +0100
  • 4f7ed8bdc5 Sometimes SSH related information is lost .... Gerard Wagener 2010-01-19 17:36:55 +0100
  • e226c7303a Preliminar running version of tracking IP addresses with process ids Gerard Wagener 2010-01-19 17:19:37 +0100
  • 628f6f6236 Add function to query all the children of sshd Gerard Wagener 2010-01-19 15:40:20 +0100
  • 46cb4e483f Fixed regression tests for type error Gerard Wagener 2010-01-19 14:44:09 +0100
  • 52d235b957 Removed print messages Gerard Wagener 2010-01-19 14:12:50 +0100
  • 8a57773fcc Broken worker: First clone of ssh does not include information 2nd maybe too Gerard Wagener 2010-01-19 13:57:26 +0100
  • a515f03904 Include timestamp into the message generated by the kernel Gerard Wagener 2010-01-18 21:52:20 +0100
  • 48764f8eb8 Add text exporter function for user annotated user list Gerard Wagener 2010-01-18 21:46:29 +0100
  • 593b8e2d8c Annotate process trees Gerard Wagener 2010-01-18 20:57:03 +0100
  • aa8cf2d75c Remove debug print Gerard Wagener 2010-01-18 17:43:59 +0100
  • 6f75d2f7d0 Worker should is also maintaining a process list Gerard Wagener 2010-01-18 17:41:21 +0100
  • 0c51cfd662 Clean up process trees in aha Gerard Wagener 2010-01-18 17:00:47 +0100
  • bd4b19f8a7 Kernel logs when thread ends Gerard Wagener 2010-01-18 16:13:21 +0100
  • ddf2ede927 Fixed message parser library Gerard Wagener 2010-01-18 14:26:06 +0100
  • 1144fdee80 Dump environment variables as well for the sys_execve system calls Gerard Wagener 2010-01-18 14:21:30 +0100
  • 36228e179a Cleaned aha.h Gerard Wagener 2010-01-18 12:02:11 +0100
  • d8d6d4450a UML kernel reads polling interval from a config file Gerard Wagener 2010-01-18 11:57:07 +0100
  • f8290a30db Avoid maximal recursion error Gerard Wagener 2010-01-18 09:39:24 +0100
  • ddc4d50b77 Remove processes from the system from the processtree Gerard Wagener 2010-01-18 09:35:38 +0100
  • 912fb42b02 Add todo default action Gerard Wagener 2010-01-15 11:55:58 +0100
  • a4c919c452 Try #3 seems to run Gerard Wagener 2010-01-15 11:40:18 +0100
  • f3d7347537 Try 2: If booted works, but does not boot Gerard Wagener 2010-01-15 11:13:19 +0100
  • 3fd629f6f3 Try #1: Integrate process tree analysis in aha Gerard Wagener 2010-01-15 10:20:47 +0100
  • 5117feb142 Reassemble process trees Gerard Wagener 2010-01-15 09:55:26 +0100
  • defd699bd8 Add idea to implement signal handler to flush the file Gerard Wagener 2010-01-14 15:49:51 +0100
  • 9a996274ef Put unique filename / message name in logs for replay Gerard Wagener 2010-01-14 15:39:58 +0100
  • ca75ba0ac5 Removed temp printk Gerard Wagener 2010-01-14 15:09:42 +0100
  • 6c86c14a9b Set message types for differentiating between clone and execve messages Gerard Wagener 2010-01-14 15:04:16 +0100
  • a644bbe929 Try #1: Bug fix for the buffers Gerard Wagener 2010-01-14 14:38:46 +0100
  • 1e178854a5 This version has a major bugs with buffer sizes due to failed inline optimizations my fault :-( Gerard Wagener 2010-01-14 11:50:14 +0100
  • 41edea30d9 Found another place where forks should be investigated Gerard Wagener 2010-01-12 19:21:35 +0100
  • 71d68f1386 Found the place where clones can be traced Gerard Wagener 2010-01-12 18:14:01 +0100
  • 165804ff13 Updated config file for the current development version Gerard Wagener 2010-01-12 17:50:10 +0100
  • ad8a82b369 aha.py gets parameters from config file Gerard Wagener 2010-01-12 17:07:41 +0100
  • b07b91ce18 Do not used printk but PRINTK macro that can be enabled / disabled Gerard Wagener 2010-01-12 16:49:22 +0100
  • d0fa66220d Add description for internal function Gerard Wagener 2010-01-12 16:40:05 +0100
  • 3ec5e63ca7 Add some logging information if file write failed Gerard Wagener 2010-01-12 16:38:44 +0100
  • f8929ed150 Tried to split up the code Gerard Wagener 2010-01-12 16:35:11 +0100
  • 2f50e920ff Add new shared header file Gerard Wagener 2010-01-12 14:17:27 +0100
  • c429e39943 Version that compiles where aha code was moved to aha.c Gerard Wagener 2010-01-12 14:10:47 +0100
  • 0c1d3789ba Removed aha.h out of the main include directory Gerard Wagener 2010-01-12 13:46:44 +0100
  • 1a4985b872 Moved header file to arch/um/include/shared Gerard Wagener 2010-01-12 13:45:38 +0100
  • e10bc5fe3d Commented out my code from arch/um/kernel/exec aiming migration to aha.c Gerard Wagener 2010-01-12 13:43:45 +0100
  • 9fe3d93db2 Add aha.c stub Gerard Wagener 2010-01-12 13:42:43 +0100
  • 1204901470 Modified Makefile of uml kernel to compile aha.o Gerard Wagener 2010-01-12 13:42:07 +0100
  • c4db6aede0 Standard config Gerard Wagener 2010-01-10 20:11:32 +0100
  • 56df953f17 Some random notes Gerard Wagener 2010-01-10 20:11:03 +0100
  • 7ce1919c2f Script to start UML; can't remember arguments :) Gerard Wagener 2010-01-10 20:09:59 +0100
  • b30d45db44 aha-worker parses now also the messages and put them in a log file Gerard Wagener 2010-01-09 18:37:30 +0100
  • 3859a6d83b Focus only on decisions and retrieval of messages; rest went to ahalib Gerard Wagener 2010-01-09 18:36:36 +0100
  • 317b01bcf4 Put common classes between aha and aha-worker in a different file Gerard Wagener 2010-01-09 18:35:51 +0100
  • 91a9818bd7 Reduced sleeptime to facilitate debugging Gerard Wagener 2010-01-09 18:35:22 +0100
  • 0c401688fc Add sample / unfinished configuration file for the aha framework Gerard Wagener 2010-01-08 22:26:05 +0100
  • e50b1b2c29 Forgot that the index 0 was reserved Gerard Wagener 2010-01-08 22:25:24 +0100
  • 16989baa5f Temporary code to randomly insult user when vi is started multiple times Gerard Wagener 2010-01-08 22:23:41 +0100
  • cfaae0fe35 Kernel handle variable insult messages Gerard Wagener 2010-01-08 21:56:10 +0100
  • 55c0994faa Removed cleanup todo; aha-worker from the home os is doing that now Gerard Wagener 2010-01-08 18:13:03 +0100
  • efcbc9b988 Add insulting program Gerard Wagener 2010-01-08 18:08:10 +0100
  • 6b61d01bb4 Implement in kernel space decisions from AHA Gerard Wagener 2010-01-08 17:33:22 +0100
  • 9c41027eea AHA can block calls. Currently vi is blocked Gerard Wagener 2010-01-08 17:32:12 +0100
  • fbc4051c25 Add worker process that cleans up periodically Gerard Wagener 2010-01-08 15:16:01 +0100
  • a9d6882588 Forgot to include additional header file Gerard Wagener 2010-01-07 20:45:51 +0100
  • adf5e80cda First version that asks aha framework for permission to execute it Gerard Wagener 2010-01-07 20:42:50 +0100
  • 509cf94a40 Fixed bug where aha generated empty messages Gerard Wagener 2010-01-07 20:33:23 +0100
  • 582318e4cb Decision engine creates messages Gerard Wagener 2010-01-07 18:00:39 +0100
  • 4d468f9ad9 Changed fromat of the end tag such that it is easier parsable by the aha decision engine Gerard Wagener 2010-01-07 17:59:45 +0100
  • 42f3981edd First attempt to automatically grasp kernel events from the UML Gerard Wagener 2010-01-07 16:48:45 +0100
  • 7cf462a52c add todo: clone system calls need to be monitored too. Now I have concurrent access Gerard Wagener 2010-01-07 14:49:58 +0100
  • fc8522fbef PID and PPID and real_parent is logged Gerard Wagener 2010-01-07 14:48:05 +0100
  • 45c34f8314 Cleaned up the code a bit Gerard Wagener 2010-01-07 13:47:12 +0100
  • e1e908b8cb Nasty code to generate unique files with the output of sys_execve arguments Gerard Wagener 2010-01-06 22:57:07 +0100
  • 7025b6f9cb printk program name and command line arguments Gerard Wagener 2010-01-05 21:20:31 +0100